gmail_users_messages_delete
Permanently delete a message. Cannot be undone
Part of the Google Workspace Gmail (gws CLI) MCP server. Enforce policies on this tool with Intercept, the open-source MCP proxy.
WHEN AI AGENTS USE THIS TOOL
AI agents may call gmail_users_messages_delete to permanently remove or destroy resources in Google Workspace Gmail (gws CLI). Without a policy, an autonomous agent could delete critical data in a loop with no way to undo the damage. Intercept blocks destructive tools by default and requires explicit human approval before enabling them.
WHY ENFORCE A POLICY ON GMAIL_USERS_MESSAGES_DELETE
Without a policy, an AI agent could call gmail_users_messages_delete in a loop, permanently destroying resources in Google Workspace Gmail (gws CLI). There is no undo for destructive operations. Intercept blocks this tool by default and only allows it when a human explicitly approves the action.
RECOMMENDED POLICY
Destructive tools permanently remove data. Block by default. Only enable with explicit approval workflows.
tools:
gmail_users_messages_delete:
rules:
- action: deny
reason: "Blocked by default — enable with approval"See the full Google Workspace Gmail (gws CLI) policy for all 79 tools.
DETAILS
Tool Name
gmail_users_messages_delete
Category
Destructive
MCP Server
Google Workspace Gmail (gws CLI)Risk Level
Critical
MORE GOOGLE WORKSPACE GMAIL (GWS CLI) TOOLS
gmail_users_drafts_delete Destructive gmail_users_labels_delete Destructive gmail_users_messages_batchDelete Destructive gmail_users_settings_cse_identities_delete Destructive gmail_users_settings_cse_keypairs_obliterate Destructive gmail_users_settings_delegates_delete Destructive gmail_users_settings_filters_delete Destructive gmail_users_settings_forwardingAddresses_delete Destructive SIMILAR DESTRUCTIVE TOOLS ON OTHER SERVERS
delete_record Airtable delete_session Appium appium_uninstallApp Appium deleteCompassComponent Atlassian Rovo deleteConfluencePage Atlassian Rovo delete_resource AWS RELATED READING
FREQUENTLY ASKED QUESTIONS
What does the gmail_users_messages_delete tool do?
Permanently delete a message. Cannot be undone. It is categorised as a Destructive tool in the Google Workspace Gmail (gws CLI), which means it can permanently delete or destroy data. Block by default and require explicit approval.
How do I enforce a policy on gmail_users_messages_delete?
Add a rule in your Intercept YAML policy under the tools section for gmail_users_messages_delete. You can allow, deny, rate-limit, or validate arguments. Then run Intercept as a proxy in front of the Google Workspace Gmail (gws CLI) MCP server.
What risk level is gmail_users_messages_delete?
gmail_users_messages_delete is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.
Can I rate-limit gmail_users_messages_delete?
Yes. Add a rate_limit block to the gmail_users_messages_delete rule in your Intercept policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
How do I block gmail_users_messages_delete completely?
Set action: deny in the Intercept policy for gmail_users_messages_delete. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
What MCP server provides gmail_users_messages_delete?
gmail_users_messages_delete is provided by the Google Workspace Gmail (gws CLI) MCP server (gws mcp -s gmail). Intercept sits as a proxy in front of this server to enforce policies before tool calls reach the server.
ENFORCE POLICIES ON GOOGLE WORKSPACE GMAIL (GWS CLI)
Open source. One binary. Zero dependencies.