gmail-mcp-server

An MCP server that connects to a user’s Gmail account (via Google OAuth) and exposes tools to send emails, read emails (and mark them as read), list unread emails, mark an email as read, move an email to trash, and open an email in a browser.

Evaluated Mar 30, 2026 (21d ago)

Repo ↗ Communication mcp gmail oauth email integration desktop-app tooling

⚙ Agent Friendliness

/ 100

Can an agent use this?

🔒 Security

/ 100

Is it safe for agents?

⚡ Reliability

/ 100

Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality

Documentation

Error Messages

Auth Simplicity

Rate Limits

🔒 Security

TLS Enforcement

Auth Strength

Scope Granularity

Dep. Hygiene

Secret Handling

Uses Google OAuth and persists tokens locally (token-path). Gmail scope requested is gmail/modify, which is powerful (read+modify) and not least-privilege for all tools (e.g., read-only operations). No details provided about TLS enforcement within the MCP server, token file permissions, logging practices, or structured error handling. Ensure least-privilege scopes where possible and restrict local token file access.

⚡ Reliability

Uptime/SLA

Version Stability

Breaking Changes

Error Recovery

Best When

Used in a desktop/interactive workflow where the MCP client can ask the user before performing email-changing actions (send/trash/read).

Avoid When

Avoid for fully autonomous agents, unattended automation, or scenarios requiring strict least-privilege beyond the single Gmail modify scope noted.

Use Cases

• Draft and send emails programmatically from an MCP-enabled assistant (with user confirmation described in README)
• Read and summarize unread emails from an MCP-enabled assistant
• Find and trash unwanted emails via an MCP tool call
• Mark emails as read after processing

Not For

• Automated email sending/trashing without human oversight
• Use as a general-purpose Gmail REST replacement for high-volume bulk operations
• Handling sensitive/regulated communications without appropriate security review and auditing

Interface

REST API

GraphQL

gRPC

MCP Server

Yes

SDK

Webhooks

Authentication

Methods: OAuth2 (Google OAuth flow initiated in system browser)

OAuth: Yes Scopes: Yes

README instructs adding the Gmail scope https://www.googleapis.com/auth/gmail/modify and performing an interactive auth flow, with tokens persisted to a local --token-path file.

Pricing

Free tier: No

Requires CC: No

No pricing information provided; package appears to be self-hosted.

Agent Metadata

Pagination

none

Idempotent

False

Retry Guidance

Not documented

Known Gotchas

⚠ Tools include side effects (send-email, trash-email, mark-email-as-read) so an MCP client/agent must implement appropriate user confirmation and safeguards.
⚠ The README states the MCP client prompts the user before conducting sensitive activities; if the client does not, the tools could enable unintended email changes.
⚠ OAuth tokens are stored on disk at --token-path; agents running on shared machines should consider file permissions and cleanup.

Alternatives

Use Gmail API directly with your own integration (OAuth + Gmail API) Use Google Apps Script / Workspace add-ons (if appropriate) Use existing email integration platforms with audited connectors (e.g., Zapier/Make-style) Build a smaller MCP wrapper around Gmail API with narrower scopes (e.g., read-only when possible)

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for gmail-mcp-server.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo

API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-30.