Mcp Mail Server
UnverifiedNPMmcp-mail-server
F
Catalogue entry updated 10 days ago
Auth postureNot probedno remote endpoint probed yet
Tools241 Destructive · 1 Execute · 4 Write · 18 Read
Worst categoryDestructivegrade tracks the peak, not the average
Capability mix
Destructive 1Execute 1Write 4Read 18
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Exfiltration pathReads content an attacker can plant and can send data outward — a prompt-injection-to-exfiltration route.
Tools 24
delete_messageconnect_alldisconnect_allreply_to_emailsave_attachment
View all 24 tools
send_emailget_attachmentsget_connection_statusget_messageget_message_countget_messagesget_recent_messagesget_unseen_messageslist_mailboxesopen_mailboxsearch_all_messagessearch_by_bodysearch_by_recipientsearch_by_sendersearch_by_subjectsearch_since_datesearch_unread_from_sendersearch_unreplied_from_sendersearch_with_keyword
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
delete_messagedeny
connect_allrequire approval
disconnect_allrate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →