{"id":"xenoxilus-outlook-mcp","name":"outlook-mcp","homepage":null,"repo_url":"https://github.com/XenoXilus/outlook-mcp","category":"communication","subcategories":[],"tags":["mcp","outlook","microsoft-graph","email","calendar","sharepoint","office-doc-processing","oauth-pkce","nodejs","ai-assistant-tools"],"what_it_does":"outlook-mcp is an MCP server that lets AI assistants interact with Microsoft Outlook email and calendar (and optionally SharePoint files) via the Microsoft Graph API. It supports reading/searching/sending emails, managing calendar events, downloading/parsing attachments and SharePoint files, and saving large downloads to a local work directory to avoid MCP response size limits.","use_cases":["Read and summarize emails and threads","Search for emails by sender/subject/date and retrieve attachments","Draft, reply to, and send emails from an assistant","View and manage calendar events (read/plan/schedule)","Download and extract text from common office documents attached to emails","Fetch and summarize SharePoint files via sharing links or IDs"],"not_for":["Highly sensitive environments that cannot grant broad Microsoft Graph permissions","Use as a general-purpose Outlook API client outside the MCP ecosystem","Workloads requiring strict guarantees of idempotency for send/update operations (not documented)"],"best_when":"You want an MCP-compatible agent toolchain to access the user’s Outlook/Graph data with OAuth (PKCE) authentication and you’re comfortable with Microsoft Graph permission setup.","avoid_when":"You cannot tolerate local token storage/encryption tradeoffs, large-file disk writes, or you cannot obtain the necessary Graph delegated permissions.","alternatives":["Use direct Microsoft Graph API calls from your own backend (with your own auth and safety controls)","Use existing MCP/Graph connectors if available from other vendors with OpenAPI/tool-level docs","Use Azure Logic Apps / Microsoft Power Automate for email/calendar workflows instead of agent-driven API access"],"af_score":56.8,"security_score":74.0,"reliability_score":18.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:36:02.725407+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":["JavaScript","Node.js"],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["OAuth 2.0 with PKCE (browser-based auth)"],"oauth":true,"scopes":true,"notes":"Delegated Microsoft Graph permissions are configured in the Azure App registration. README states no client secret is required (PKCE flow) and that tokens are encrypted and stored locally (OS keychain if available, otherwise encrypted file storage)."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No usage pricing described for the package itself. Costs would primarily be due to Azure/Microsoft Graph tenant configuration and any underlying Graph consumption constraints."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":56.8,"security_score":74.0,"reliability_score":18.8,"mcp_server_quality":75.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":65.0,"rate_limit_clarity":10.0,"tls_enforcement":90.0,"auth_strength":85.0,"scope_granularity":65.0,"dependency_hygiene":45.0,"secret_handling":75.0,"security_notes":"Uses OAuth 2.0 with PKCE and states tokens are encrypted and stored via OS keychain when available. However, the README indicates multiple high-privilege delegated scopes (Mail.ReadWrite, Mail.Send, Files/Sites/Calendars read-write), which increases blast radius if an agent is misconfigured. Rate limiting and operational safety controls (tool-level least-privilege, idempotency, explicit retry/backoff guidance) are not documented here. Dependency list includes several third-party packages; no vulnerability/CVE or maintenance policy is provided in the provided data.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":0.0,"error_recovery":35.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Graph permission consent may be required/admin consent might be needed depending on tenant policies","MCP response size limits require local disk space for large attachments/SharePoint downloads; ensure MCP_OUTLOOK_WORK_DIR is set and writable","Token reset may be needed if auth fails; stored tokens are kept locally and may need clearing","Delegated permissions requested are broad (Mail.ReadWrite/Files.*.ReadWrite/Sites.*.ReadWrite), so agents should be constrained by prompt/tool policy to avoid unintended actions"]}}