gmail-mcp
Verified Safeby cutsome
Overview
An MCP server that integrates with the Gmail API to provide programmatic email search, retrieval of messages (individually and in batches), and attachment management.
Installation
uv run mcp-gmail-serverEnvironment Variables
- GOOGLE_CLIENT_SECRET_PATH
- GOOGLE_TOKEN_PATH
Security Notes
The server follows standard practices for Gmail API integration and OAuth2 authentication, relying on `client_secret.json` and `token.json` files for credentials, whose paths can be customized via environment variables. No 'eval' or apparent malicious patterns were found. Network communication is primarily with Google's APIs. Error handling in utility functions (`decode_base64_text`, `parse_date`, `decode_rfc2047_filename`) uses broad `except Exception` clauses and `errors='ignore'` for decoding, which prioritizes robustness over strict error propagation and could silently mask malformed data issues, though it's not a direct security vulnerability. Sensitive tokens are stored locally in `token.json` after the initial OAuth flow.
Similar Servers
mcp-email-server
This server allows MCP clients to interact with email accounts via IMAP and SMTP protocols, enabling functionalities like listing, fetching, sending, and deleting emails.
gmail-mcp
Manages Gmail emails programmatically, enabling AI systems to read, send, archive, and perform other email operations on behalf of a user.
stateful-auth-for-mcp-servers
Integrates Google Gmail and Calendar APIs to enable an AI agent to read emails and manage calendar events with stateful authorization for event deletions.
mcp-server-email
Automates Freedom of Information (FOI) request handling by integrating with Gmail and Claude, including drafting acknowledgment receipts and facilitating team allocation.