// MCP TOOL REFERENCE

MCP EMAIL SERVICE TOOLS

16 tools from the MCP Email Service MCP Server, categorised by risk level.

View the MCP Email Service policy →
// ALL 16 MCP EMAIL SERVICE TOOLS
READ 8 tools
Read account_list Returns every account known to mailbox: id, email, provider (gmail/qq/163/outlook/...), IMAP/SMTP host. Use... Read account_test_connection Open IMAP and SMTP, return per-account success and message counts. Use to validate credentials. Read email_folders Returns IMAP folder paths, delimiters, flags. Use the Read email_list List emails from one or all accounts. Reads the local SQLite cache when warm (~165ms); pass live=true to hi... Read email_search Cross-account, cross-folder search. Pass at least one of query/from/subject/date_from/date_to/unread_only. ... Read email_show Fetch the body of one or more emails over a single IMAP connection. Each id can be a bare UID + account_id,... Read inbox_organize Returns categorization buckets without acting. Reports per-bucket counts. Read sync_status Returns per-account sync state, last sync time, total cached emails.
WRITE 3 tools
Write email_send DESTRUCTIVE / IRREVERSIBLE. Defaults to dry-run preview; pass confirm=true to actually send. Write sync_force Refresh the local SQLite cache from IMAP. Synchronous; can take 5-30s for first sync. Subsequent runs are i... Write email_mark DESTRUCTIVE. Defaults to dry-run; pass confirm=true to actually flip flags.
DESTRUCTIVE 4 tools
Destructive email_delete DESTRUCTIVE. Defaults to dry-run; pass confirm=true to delete. By default moves to Trash; permanent=true ex... Destructive email_flag DESTRUCTIVE. Defaults to dry-run; pass confirm=true to apply. Destructive cleanup Rule-based classifier into protected_finance/protected_travel/security/support_case (never deleted) vs mark... Destructive email_move DESTRUCTIVE. Defaults to dry-run; pass confirm=true to apply.
EXECUTE 1 tools
Execute digest_run DESTRUCTIVE if confirm=true (sends notifications to Lark/Telegram). Defaults to dry-run preview.

Route MCP Email Service through PolicyLayer and every one of its 16 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the MCP Email Service MCP server have? +

The MCP Email Service MCP server exposes 16 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on MCP Email Service tools? +

Route the MCP Email Service server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do MCP Email Service tools fall into? +

MCP Email Service tools are categorised as Read (8), Write (3), Destructive (4), Execute (1). Each category has a recommended default policy.

Enforce policy on every MCP Email Service tool call.

Start from MCP Email Service, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.