gmail-mcp-server
Verified Safeby vxvomar123
Overview
Automates Gmail operations like sending, reading, organizing, and filtering emails through an AI assistant like Claude Desktop via the Model Context Protocol.
Installation
node dist/index.jsEnvironment Variables
- GMAIL_OAUTH_PATH
- GMAIL_CREDENTIALS_PATH
Security Notes
The server utilizes direct file system operations for attachment handling (reading local files for sending, writing downloaded attachments to specified paths). While tool inputs are validated via Zod schemas, a compromised AI could theoretically direct file operations to sensitive areas or write malicious content. OAuth tokens are stored in plaintext with restricted file permissions (~/.gmail-mcp/credentials.json, chmod 600). However, the project provides comprehensive security documentation (SECURITY.md) detailing these risks, recommending best practices for users and developers (e.g., input validation for file paths, never committing credentials), and outlining a clear vulnerability reporting process. The local web server for OAuth runs only on localhost during authentication and shuts down immediately.
Similar Servers
gmail-mcp
Manages Gmail emails programmatically, enabling AI systems to read, send, archive, and perform other email operations on behalf of a user.
Google-Workspace-MCP
Seamlessly integrates Google Drive, Sheets, and Docs with Claude AI and other AI agents through the Model Context Protocol (MCP) for automation.
slack-mcp-server
Provides an AI assistant, like Claude, programmatic access to Slack conversations, threads, and workspace information through the Model Context Protocol (MCP).
Troj-MCP
A versatile Model Context Protocol (MCP) server for integrating AI models with system operations, file management, calendar, and email tools.