@aaronsb/google-workspace-mcp 2.6.0 → 2.7.0

package/build/factory/manifest/meet.yaml

@@ -0,0 +1,159 @@
+tool_name: manage_meet
+description: "Browse past Google Meet conferences, participants, transcripts, recordings, and AI-generated smart notes. Requires Workspace Business Standard+ for transcripts/recordings."
+requires_email: true
+gws_service: meet
+operations:
+
+  # --- Conference records ---
+
+  listConferences:
+    type: list
+    description: "list recent meeting conferences (default: descending by start time)"
+    resource: conferenceRecords.list
+    params:
+      filter:
+        type: string
+        description: "EBNF filter (e.g. 'space.meeting_code = \"abc-mnop-xyz\"' or 'start_time>=\"2026-01-01T00:00:00Z\"')"
+      maxResults:
+        type: number
+        description: "Max conferences to return (default: 25, max: 100)"
+        default: 25
+        max: 100
+        maps_to: pageSize
+
+  getConference:
+    type: detail
+    description: "get details of a specific conference"
+    resource: conferenceRecords.get
+    params:
+      conferenceId:
+        type: string
+        description: "Conference record ID (from listConferences)"
+        required: true
+        maps_to: name
+
+  # --- Participants ---
+
+  listParticipants:
+    type: list
+    description: "list who attended a conference"
+    resource: conferenceRecords.participants.list
+    params:
+      conferenceId:
+        type: string
+        description: "Conference record ID"
+        required: true
+        maps_to: parent
+      filter:
+        type: string
+        description: "Filter (e.g. 'latest_end_time IS NULL' for active participants)"
+      maxResults:
+        type: number
+        description: "Max participants (default: 100, max: 250)"
+        default: 100
+        max: 250
+        maps_to: pageSize
+
+  # --- Transcripts ---
+
+  listTranscripts:
+    type: list
+    description: "list transcripts for a conference (requires Workspace Business Standard+)"
+    resource: conferenceRecords.transcripts.list
+    params:
+      conferenceId:
+        type: string
+        description: "Conference record ID"
+        required: true
+        maps_to: parent
+
+  getTranscript:
+    type: detail
+    description: "get transcript metadata including Google Docs destination"
+    resource: conferenceRecords.transcripts.get
+    params:
+      transcriptName:
+        type: string
+        description: "Transcript resource name (from listTranscripts)"
+        required: true
+        maps_to: name
+
+  listTranscriptEntries:
+    type: list
+    description: "get structured transcript text — who said what, with timestamps"
+    resource: conferenceRecords.transcripts.entries.list
+    params:
+      transcriptName:
+        type: string
+        description: "Transcript resource name (e.g. conferenceRecords/.../transcripts/...)"
+        required: true
+        maps_to: parent
+      maxResults:
+        type: number
+        description: "Max entries per page (default: 10, max: 100)"
+        default: 100
+        max: 100
+        maps_to: pageSize
+
+  # --- Recordings ---
+
+  listRecordings:
+    type: list
+    description: "list recordings for a conference (saved as MP4 in Drive)"
+    resource: conferenceRecords.recordings.list
+    params:
+      conferenceId:
+        type: string
+        description: "Conference record ID"
+        required: true
+        maps_to: parent
+
+  getRecording:
+    type: detail
+    description: "get recording metadata including Drive file ID and playback link"
+    resource: conferenceRecords.recordings.get
+    params:
+      recordingName:
+        type: string
+        description: "Recording resource name (from listRecordings)"
+        required: true
+        maps_to: name
+
+  # --- Composite operations ---
+
+  getFullTranscript:
+    type: detail
+    description: "get the full who-said-what transcript for a conference (chains transcripts + entries + participant names automatically). Use pageToken to continue reading."
+    resource: conferenceRecords.transcripts.list
+    params:
+      conferenceId:
+        type: string
+        description: "Conference record ID (from listConferences)"
+        required: true
+      pageToken:
+        type: string
+        description: "Page token from a previous getFullTranscript call to continue reading"
+
+  # --- Smart Notes (Gemini) ---
+
+  listSmartNotes:
+    type: list
+    description: "list Gemini-generated smart notes for a conference"
+    resource: conferenceRecords.smartNotes.list
+    params:
+      conferenceId:
+        type: string
+        description: "Conference record ID"
+        required: true
+        maps_to: parent
+
+  getSmartNote:
+    type: detail
+    description: "get smart note metadata including Google Docs destination"
+    resource: conferenceRecords.smartNotes.get
+    params:
+      smartNoteName:
+        type: string
+        description: "Smart note resource name (from listSmartNotes)"
+        required: true
+        maps_to: name

package/build/factory/manifest/sheets.yaml

@@ -0,0 +1,225 @@
+tool_name: manage_sheets
+description: "Read, write, and manage Google Sheets spreadsheets."
+requires_email: true
+gws_service: sheets
+operations:
+
+  get:
+    type: detail
+    description: "get spreadsheet metadata and sheet names"
+    resource: spreadsheets.get
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+
+  create:
+    type: action
+    description: "create a new spreadsheet (optionally with a title)"
+    resource: spreadsheets.create
+    params:
+      title:
+        type: string
+        description: "Spreadsheet title (defaults to 'Untitled spreadsheet')"
+
+  read:
+    type: detail
+    description: "read cell values from a range; rendered rows are prefixed with their sheet row number (e.g. 'R3: …') since blank rows are otherwise invisible"
+    helper: "+read"
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      range:
+        type: string
+        description: "Range to read (e.g. 'Sheet1!A1:D10' or just 'Sheet1')"
+        required: true
+    cli_args:
+      spreadsheetId: "--spreadsheet"
+      range: "--range"
+
+  append:
+    type: action
+    description: "append rows to a spreadsheet (rows land after the last row of existing data in the target range)"
+    resource: spreadsheets.values.append
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      range:
+        type: string
+        description: "Target range; defaults to 'Sheet1'. Use 'MyTab' or 'MyTab!A:Z' to append to a specific tab."
+      values:
+        type: string
+        description: "Comma-separated values for a single row (e.g. 'Alice,100,true')"
+      jsonValues:
+        type: string
+        description: "JSON 2D array of rows for bulk insert (e.g. '[[\"a\",\"b\"],[\"c\",\"d\"]]')"
+      valueInputOption:
+        type: string
+        description: "How input is interpreted: USER_ENTERED (default, parses formulas/types) or RAW"
+        enum: [USER_ENTERED, RAW]
+        default: USER_ENTERED
+
+  getValues:
+    type: detail
+    description: "get values from a specific range (raw API); rendered rows are prefixed with their sheet row number (e.g. 'R3: …')"
+    resource: spreadsheets.values.get
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      range:
+        type: string
+        description: "A1 notation range (e.g. 'Sheet1!A1:B10')"
+        required: true
+
+  updateValues:
+    type: action
+    description: "write values to a specific range"
+    resource: spreadsheets.values.update
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      range:
+        type: string
+        description: "A1 notation range to write to"
+        required: true
+      values:
+        type: string
+        description: "Comma-separated values for a single row (e.g. 'Alice,100,true')"
+      jsonValues:
+        type: string
+        description: "JSON 2D array of rows (e.g. '[[\"a\",\"b\"],[\"c\",\"d\"]]'). Use for multi-row writes."
+      valueInputOption:
+        type: string
+        description: "How input is interpreted: USER_ENTERED (default, parses formulas/types) or RAW"
+        enum: [USER_ENTERED, RAW]
+        default: USER_ENTERED
+
+  clearValues:
+    type: action
+    description: "clear cell values from a range (structure preserved)"
+    resource: spreadsheets.values.clear
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      range:
+        type: string
+        description: "A1 notation range to clear"
+        required: true
+
+  addSheet:
+    type: action
+    description: "add a new tab (sheet) to the spreadsheet"
+    resource: spreadsheets.batchUpdate
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      title:
+        type: string
+        description: "Name of the new sheet tab"
+        required: true
+      index:
+        type: number
+        description: "Position among tabs (0-based). Appended at the end if omitted."
+      rowCount:
+        type: number
+        description: "Initial row count (default 1000)"
+      columnCount:
+        type: number
+        description: "Initial column count (default 26)"
+
+  renameSheet:
+    type: action
+    description: "rename a tab (sheet) within a spreadsheet"
+    resource: spreadsheets.batchUpdate
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      sheetId:
+        type: number
+        description: "Sheet ID of the tab to rename (from manage_sheets get)"
+        required: true
+      title:
+        type: string
+        description: "New title for the tab"
+        required: true
+
+  deleteSheet:
+    type: action
+    description: "delete a tab (sheet) from the spreadsheet — irreversible"
+    resource: spreadsheets.batchUpdate
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      sheetId:
+        type: number
+        description: "Sheet ID of the tab to delete"
+        required: true
+
+  duplicateSheet:
+    type: action
+    description: "duplicate a tab within the same spreadsheet"
+    resource: spreadsheets.batchUpdate
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      sheetId:
+        type: number
+        description: "Source sheet ID (the tab to copy)"
+        required: true
+      title:
+        type: string
+        description: "Name for the duplicated sheet (defaults to 'Copy of <source>')"
+      index:
+        type: number
+        description: "Position to insert the duplicate (0-based)"
+
+  renameSpreadsheet:
+    type: action
+    description: "rename the spreadsheet (the document title, not a tab)"
+    resource: spreadsheets.batchUpdate
+    params:
+      spreadsheetId:
+        type: string
+        description: "Spreadsheet ID"
+        required: true
+      title:
+        type: string
+        description: "New spreadsheet title"
+        required: true
+
+  copySheetTo:
+    type: action
+    description: "copy a tab from this spreadsheet into another spreadsheet"
+    resource: spreadsheets.sheets.copyTo
+    params:
+      spreadsheetId:
+        type: string
+        description: "Source spreadsheet ID"
+        required: true
+      sheetId:
+        type: number
+        description: "Source sheet ID (the tab to copy)"
+        required: true
+      destinationSpreadsheetId:
+        type: string
+        description: "Destination spreadsheet ID"
+        required: true

package/build/factory/manifest/tasks.yaml

@@ -0,0 +1,137 @@
+tool_name: manage_tasks
+description: "Manage task lists and tasks in Google Tasks."
+requires_email: true
+gws_service: tasks
+operations:
+
+  # --- Task lists ---
+
+  listTaskLists:
+    type: list
+    description: "list all task lists"
+    resource: tasklists.list
+
+  getTaskList:
+    type: detail
+    description: "get a task list by ID"
+    resource: tasklists.get
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID"
+        required: true
+        maps_to: tasklist
+
+  createTaskList:
+    type: action
+    description: "create a new task list"
+    resource: tasklists.insert
+
+  deleteTaskList:
+    type: action
+    description: "delete a task list and all its tasks"
+    resource: tasklists.delete
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID to delete"
+        required: true
+        maps_to: tasklist
+
+  # --- Tasks ---
+
+  list:
+    type: list
+    description: "list tasks in a task list"
+    resource: tasks.list
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID (use listTaskLists to find)"
+        required: true
+        maps_to: tasklist
+      showCompleted:
+        type: boolean
+        description: "Include completed tasks (default: true)"
+      maxResults:
+        type: number
+        description: "Max tasks to return (default: 20, max: 100)"
+        default: 20
+        max: 100
+
+  get:
+    type: detail
+    description: "get a specific task"
+    resource: tasks.get
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID"
+        required: true
+        maps_to: tasklist
+      taskId:
+        type: string
+        description: "Task ID"
+        required: true
+        maps_to: task
+
+  create:
+    type: action
+    description: "create a new task"
+    resource: tasks.insert
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID"
+        required: true
+        maps_to: tasklist
+
+  update:
+    type: action
+    description: "update a task (patch semantics)"
+    resource: tasks.patch
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID"
+        required: true
+        maps_to: tasklist
+      taskId:
+        type: string
+        description: "Task ID"
+        required: true
+        maps_to: task
+
+  complete:
+    type: action
+    description: "mark a task as completed"
+    resource: tasks.patch
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID"
+        required: true
+        maps_to: tasklist
+      taskId:
+        type: string
+        description: "Task ID"
+        required: true
+        maps_to: task
+    defaults:
+      status: completed
+
+  delete:
+    type: action
+    description: "delete a task"
+    resource: tasks.delete
+    params:
+      taskListId:
+        type: string
+        description: "Task list ID"
+        required: true
+        maps_to: tasklist
+      taskId:
+        type: string
+        description: "Task ID to delete"
+        required: true
+        maps_to: task

package/build/factory/registry.d.ts

@@ -2,9 +2,9 @@
  * Shared factory registry — single instance of manifest + generated tools.
  * Both handler.ts and tools.ts import from here instead of loading independently.
  *
- * This module uses import.meta.url (ESM only) to resolve manifest.yaml
- * relative to the built output, which works when running via npx or mcpb
- * where cwd is NOT the project root.
+ * This module uses import.meta.url (ESM only) to resolve the manifest
+ * directory relative to the built output, which works when running via npx
+ * or mcpb where cwd is NOT the project root.
  */
 import type { GeneratedTool } from './types.js';
 import type { Manifest } from './types.js';

package/build/factory/registry.js

@@ -2,16 +2,16 @@
  * Shared factory registry — single instance of manifest + generated tools.
  * Both handler.ts and tools.ts import from here instead of loading independently.
  *
- * This module uses import.meta.url (ESM only) to resolve manifest.yaml
- * relative to the built output, which works when running via npx or mcpb
- * where cwd is NOT the project root.
+ * This module uses import.meta.url (ESM only) to resolve the manifest
+ * directory relative to the built output, which works when running via npx
+ * or mcpb where cwd is NOT the project root.
  */
 import { dirname } from 'node:path';
 import { fileURLToPath } from 'node:url';
 import { setModuleDir, loadManifest, generateTools } from './generator.js';
 import { patches } from './patches.js';
-// Inject module directory so loadManifest can find manifest.yaml
-// relative to the built output (build/factory/registry.js → build/factory/manifest.yaml)
+// Inject module directory so loadManifest can find the manifest directory
+// relative to the built output (build/factory/registry.js → build/factory/manifest/)
 setModuleDir(dirname(fileURLToPath(import.meta.url)));
 export const manifest = loadManifest();
 export const generatedTools = generateTools(manifest, patches);

package/build/factory/registry.js.map

@@ -1 +1 @@
-{"version":3,"file":"registry.js","sourceRoot":"","sources":["../../src/factory/registry.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC3E,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAIvC,iEAAiE;AACjE,yFAAyF;AACzF,YAAY,CAAC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;AAEtD,MAAM,CAAC,MAAM,QAAQ,GAAa,YAAY,EAAE,CAAC;AACjD,MAAM,CAAC,MAAM,cAAc,GAAoB,aAAa,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC"}
+{"version":3,"file":"registry.js","sourceRoot":"","sources":["../../src/factory/registry.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC3E,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAIvC,0EAA0E;AAC1E,qFAAqF;AACrF,YAAY,CAAC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;AAEtD,MAAM,CAAC,MAAM,QAAQ,GAAa,YAAY,EAAE,CAAC;AACjD,MAAM,CAAC,MAAM,cAAc,GAAoB,aAAa,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC"}

package/build/factory/types.d.ts

@@ -13,6 +13,12 @@ export interface ParamDef {
     /** Maps this param name to a different key in the gws --params JSON. */
     maps_to?: string;
     enum?: string[];
+    /**
+     * If true, the param is for the formatter/handler only and is NOT forwarded
+     * to the gws CLI. Used for client-side controls like `bodyFormat` (ADR-305)
+     * that affect rendering, not the API call itself.
+     */
+    client_only?: boolean;
 }
 /** Hydration config — fetch detail for each item in a list result. */
 export interface HydrationDef {

package/build/server/formatting/html-sanitize.d.ts

@@ -0,0 +1,40 @@
+/**
+ * Shared HTML sanitization for any agent-facing path that emits or ingests
+ * HTML (Gmail message bodies, Docs HTML export, Drive HTML files, the
+ * scratchpad html format from ADR-302). See ADR-305.
+ *
+ * Every layer here exists for a specific real-world attack:
+ * 1. CSS-hidden subtrees ─ the most common prompt-injection pattern in
+ *    marketing email; instructions are dropped into a `display:none` block
+ *    so a human reader doesn't see them but an LLM consuming the markup does.
+ * 2. Tag/attribute allowlist ─ blocks `<script>`, event handlers, dangerous
+ *    URI schemes (`javascript:`, `data:`, `vbscript:`).
+ * 3. Unicode injection chars ─ Tag Block (U+E0000–U+E007F), bidi overrides,
+ *    zero-width spaces. Have been used to smuggle invisible instructions
+ *    through human review.
+ * 4. Spotlighting delimiters ─ wrap the sanitized output in a tagged block
+ *    with the source and an "untrusted" marker. Microsoft's LLMail-Inject
+ *    research found this alone drops injection success >50% → <2%; combined
+ *    with sanitization it's stronger than either layer alone.
+ *
+ * Default-off in callers: the existing stripped-text path is unchanged.
+ * Opt-in via `bodyFormat: 'html'` (or the equivalent on other ops).
+ */
+/** Untrusted source identifier — appears on the Spotlighting wrapper. */
+export type SanitizeSource = 'gmail' | 'docs' | 'drive' | 'scratchpad-import';
+interface SanitizeOptions {
+    /** Where the HTML came from — surfaces on the Spotlighting wrapper. */
+    source: SanitizeSource;
+}
+/**
+ * Sanitize HTML before handing it to an agent-facing path.
+ *
+ * Returns a sanitized HTML string wrapped in a Spotlighting block. Safe to
+ * embed directly in tool response text — the wrapper signals "untrusted
+ * content" to the consuming model.
+ *
+ * Empty input returns an empty Spotlighting block (still wrapped, for
+ * consistency — callers can compare against `''` to detect no-content).
+ */
+export declare function sanitizeHtmlForAgent(html: string, options: SanitizeOptions): string;
+export {};