No blockers found
assessed on 2 of 4 dimensions
ProvenanceOrigin linked to a public source repository.Official MCP Registry · as of Jul 10, 2026
PassSupply chainNo known vulnerabilities in scanned package dependencies (OSV).OSV (Google Open Source Vulnerabilities) · as of Jul 11, 2026
PassMaintenanceRepository maintenance signals not yet ingested.
PendingManifest integrityManifest capture requires running the package (sandbox phase).
PendingBehavioral trustNo live endpoint to observe.
Not applicable
Connect
npm package · v1.2.2 · stdio
npx -y @artymclabin/gmail-mcpGMAIL_OAUTH_PATH
Optional override for the OAuth client keys file path (defaults to ~/.gmail-mcp/gcp-oauth.keys.json)GMAIL_CREDENTIALS_PATH
Optional override for the stored credentials file path (defaults to ~/.gmail-mcp/credentials.json)
Provenance
- Official MCP Registry · as of Jul 10, 2026 · registry-tos
- OSV (Google Open Source Vulnerabilities) · as of Jul 11, 2026 · CC-BY-4.0
Every verdict is attributable to its sources and recomputed from our own landed copy, never read live on this page.