@rubytech/create-maxy 1.0.763 → 1.0.765

package/payload/platform/plugins/outlook/mcp/package.json

@@ -0,0 +1,20 @@
+{
+  "name": "@maxy/outlook",
+  "version": "0.1.0",
+  "private": true,
+  "type": "module",
+  "main": "dist/index.js",
+  "scripts": {
+    "build": "tsc",
+    "start": "node dist/index.js"
+  },
+  "dependencies": {
+    "@microsoft/microsoft-graph-client": "^3.0.7",
+    "@modelcontextprotocol/sdk": "^1.12.1",
+    "zod": "^3.24.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.7.0"
+  }
+}

package/payload/platform/plugins/outlook/mcp/scripts/verify-doc-impl.sh

@@ -0,0 +1,109 @@
+#!/usr/bin/env bash
+# verify-doc-impl.sh
+#
+# Doc-impl alignment grep, promoted from Task 811's manual verification step
+# to a permanent gate. Run from anywhere; resolves to the plugin tree itself.
+#
+# Verifies:
+#   1. Every `outlook-*` tool name in `platform/plugins/docs/references/outlook-guide.md`
+#      resolves to a `server.tool("outlook-...", ...)` registration in mcp/src/index.ts.
+#   2. Every `[outlook-mcp]` log-line shape in outlook-guide.md matches a
+#      log({event:"..."}) literal in mcp/src/.
+#   3. Every tool name in `PLUGIN.md` frontmatter matches a registration in mcp/src/index.ts.
+#   4. Public-agent isolation: `outlook` does not appear in public-agent assembly files.
+#   5. Bearer-token redaction: log.ts contains the redaction regex pair.
+#
+# Exit non-zero on any mismatch. Print the first diverging item.
+
+set -euo pipefail
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+PLUGIN_DIR="$(cd "$SCRIPT_DIR/.." && pwd)"
+REPO_ROOT="$(cd "$PLUGIN_DIR/../../../.." && pwd)"
+GUIDE="$REPO_ROOT/platform/plugins/docs/references/outlook-guide.md"
+PLUGIN_MD="$REPO_ROOT/platform/plugins/outlook/PLUGIN.md"
+INDEX_TS="$PLUGIN_DIR/src/index.ts"
+SRC_DIR="$PLUGIN_DIR/src"
+
+fail() {
+  echo "[verify-doc-impl] FAIL: $1" >&2
+  exit 1
+}
+
+[ -f "$GUIDE" ] || fail "operator guide missing: $GUIDE"
+[ -f "$PLUGIN_MD" ] || fail "PLUGIN.md missing: $PLUGIN_MD"
+[ -f "$INDEX_TS" ] || fail "index.ts missing: $INDEX_TS"
+
+# Tool names registered in src/index.ts. The MCP-SDK call shape is:
+#   server.tool(
+#     "outlook-XYZ",
+#     ...
+# so the tool name appears on its own line as `  "outlook-XYZ",`.
+TOOLS_REGISTERED=$(grep -oE '"outlook-[a-z\-]+",' "$INDEX_TS" \
+  | sed -E 's/^"|",$//g' | sort -u)
+
+# Tool names referenced in outlook-guide.md (backtick-wrapped)
+TOOLS_IN_GUIDE=$(grep -oE '`outlook-[a-z\-]+`' "$GUIDE" | tr -d '`' | sort -u)
+
+# Tool names in PLUGIN.md frontmatter (lines starting with "  - outlook-")
+TOOLS_IN_PLUGIN_MD=$(grep -E '^\s+- outlook-' "$PLUGIN_MD" | sed -E 's/^[[:space:]]*-[[:space:]]+//' | sort -u)
+
+# Set 1: every tool in guide must be registered
+while IFS= read -r tool; do
+  [ -z "$tool" ] && continue
+  if ! echo "$TOOLS_REGISTERED" | grep -qx "$tool"; then
+    fail "tool '$tool' referenced in outlook-guide.md but not registered in mcp/src/index.ts"
+  fi
+done <<< "$TOOLS_IN_GUIDE"
+
+# Set 2: every tool in PLUGIN.md frontmatter must be registered
+while IFS= read -r tool; do
+  [ -z "$tool" ] && continue
+  if ! echo "$TOOLS_REGISTERED" | grep -qx "$tool"; then
+    fail "tool '$tool' declared in PLUGIN.md frontmatter but not registered in mcp/src/index.ts"
+  fi
+done <<< "$TOOLS_IN_PLUGIN_MD"
+
+# Set 3: every registered tool must appear in PLUGIN.md frontmatter
+while IFS= read -r tool; do
+  [ -z "$tool" ] && continue
+  if ! echo "$TOOLS_IN_PLUGIN_MD" | grep -qx "$tool"; then
+    fail "tool '$tool' registered in mcp/src/index.ts but missing from PLUGIN.md frontmatter"
+  fi
+done <<< "$TOOLS_REGISTERED"
+
+# Log-shape alignment: every event tag in outlook-guide.md must have a matching
+# log({ event: "..." }) literal in mcp/src/. Event tags appear in the table as:
+#   | Auth init | `auth-init account=<id> codeChallenge=...` |
+# We pull the first word inside backticks on each table row that contains "account=".
+EVENTS_IN_GUIDE=$(grep -E '`[a-z\-]+ account=' "$GUIDE" \
+  | sed -E 's/.*`([a-z\-]+) account=.*/\1/' | sort -u)
+EVENTS_IN_SRC=$(grep -rh -oE 'event:[[:space:]]*"[a-z\-]+"' "$SRC_DIR" \
+  | sed -E 's/^event:[[:space:]]*"|"$//g' | sort -u)
+
+while IFS= read -r ev; do
+  [ -z "$ev" ] && continue
+  if ! echo "$EVENTS_IN_SRC" | grep -qx "$ev"; then
+    fail "log event '$ev' documented in outlook-guide.md but no log({event:\"$ev\"}) literal in mcp/src/"
+  fi
+done <<< "$EVENTS_IN_GUIDE"
+
+# Public-agent isolation: outlook must not appear in public-agent assembly files.
+ISOLATION_HITS=$( (cd "$REPO_ROOT" && grep -rE 'outlook' \
+  platform/ui/app/lib/claude-agent/public-agent.ts \
+  platform/ui/app/lib/claude-agent/system-prompt-assembly.ts \
+  platform/templates/agents/public/ 2>/dev/null) || true)
+if [ -n "$ISOLATION_HITS" ]; then
+  echo "$ISOLATION_HITS" >&2
+  fail "isolation breach: 'outlook' string appears in public-agent assembly path"
+fi
+
+# Bearer redaction guard: lib/log.ts must contain both regex literals.
+if ! grep -q 'Bearer\\s+\[A-Za-z0-9' "$SRC_DIR/lib/log.ts"; then
+  fail "Bearer redaction regex missing in lib/log.ts"
+fi
+if ! grep -q 'access_token=\[A-Za-z0-9' "$SRC_DIR/lib/log.ts"; then
+  fail "access_token redaction regex missing in lib/log.ts"
+fi
+
+echo "[verify-doc-impl] OK — $(echo "$TOOLS_REGISTERED" | wc -l | tr -d ' ') tools, $(echo "$EVENTS_IN_GUIDE" | wc -l | tr -d ' ') events, isolation, redaction all aligned"

package/payload/platform/plugins/outlook/references/auth.md

@@ -0,0 +1,118 @@
+# Outlook Auth Reference
+
+## Vendored upstream
+
+The PKCE flow and encrypted token store are adapted from:
+
+- **Repo:** [`nsakki55/outlook-mcp`](https://github.com/nsakki55/outlook-mcp)
+- **Pinned commit:** `e49d8e68ac8d69db653c25803127dc3b98626cda`
+- **License:** MIT
+
+Adaptations:
+
+- Per-account paths (`{ACCOUNTS_DIR}/{accountId}/secrets/outlook/`) instead of upstream's single-user `~/.outlook-mcp/`
+- `keytar` fallback removed (Pi runs headless; no Secret Service)
+- `node-persist` removed; single JSON blob written atomically (temp + rename)
+- Loopback callback port is **ephemeral** via `server.listen(0)` (upstream uses fixed `49152`)
+- No `xdg-open` browser auto-launch; auth URL is logged + returned to the operator for the VNC browser
+- `outlook-account-register` awaits the full PKCE flow synchronously (5-min timeout)
+
+To re-vendor at a newer SHA:
+
+1. Fetch `tokenManager.ts` and `authManager.ts` from the new SHA.
+2. Apply the adaptations above.
+3. Update the **Pinned commit** line above.
+4. Bump `@maxy/outlook` version.
+5. Run the test suite.
+
+## Entra app registration (one-time per Maxy install)
+
+The plugin requires an Azure AD ("Entra ID") app the operator owns. Steps:
+
+1. Sign in to the [Azure portal](https://portal.azure.com) with a Microsoft account.
+2. Go to **Microsoft Entra ID → App registrations → New registration**.
+3. **Name:** `Maxy Outlook` (or any name the operator prefers).
+4. **Supported account types:** *Accounts in any organizational directory and personal Microsoft accounts*.
+5. **Redirect URI** (Platform: *Mobile and desktop applications*): `http://localhost`
+   - **Note:** no port is specified. Microsoft Identity Platform treats native-app loopback redirects with port-flexible matching, allowing the plugin to use an ephemeral port.
+6. Click **Register**. Copy the **Application (client) ID** — this is `OUTLOOK_CLIENT_ID`.
+7. Go to **API permissions → Add a permission → Microsoft Graph → Delegated permissions**, add:
+   - `offline_access`
+   - `User.Read`
+   - `Mail.Read`
+   - `Calendars.Read`
+   - `Contacts.Read`
+8. Click **Grant admin consent for <tenant>** if applicable. Personal accounts auto-consent at first sign-in.
+9. Set the env var on the Pi:
+   ```
+   OUTLOOK_CLIENT_ID=<the Application (client) ID copied above>
+   OUTLOOK_TENANT_ID=common   # or your tenant GUID for single-tenant
+   ```
+
+## PKCE flow (per-account)
+
+Triggered by `outlook-account-register`. Sequence:
+
+```
+operator                                        plugin                              Microsoft
+   |                                              |                                     |
+   | outlook-account-register                     |                                     |
+   |--------------------------------------------->|                                     |
+   |                                              | bind 127.0.0.1:<ephemeral-port>     |
+   |                                              | generate code_verifier (32 bytes)   |
+   |                                              | code_challenge = SHA256(verifier)   |
+   |                                              | state = randomBytes(16)             |
+   |                                              |                                     |
+   | { authUrl, status: "pending" }               |                                     |
+   |<---------------------------------------------|                                     |
+   |                                              |                                     |
+   | open authUrl in VNC browser                  |                                     |
+   |--------------------------------------------------------------------------------->  |
+   |                                              |                                     |
+   |                                  consent ←--------------------------------------- |
+   |                                              |                                     |
+   |                                              | GET /callback?code=...&state=...   |
+   |                                              | <----------------------------------|
+   |                                              |                                     |
+   |                                              | verify state                        |
+   |                                              | POST /token (code + verifier)       |
+   |                                              | -----------------------------------> |
+   |                                              | < tokens                             |
+   |                                              | <----------------------------------- |
+   |                                              | encrypt → write {tokens.enc}         |
+   |                                              | GET /me  (record graphUserId)        |
+   |                                              | -----------------------------------> |
+   |                                              |                                     |
+   | { status: "registered", graphUserId, ... }   |                                     |
+   |<---------------------------------------------|                                     |
+```
+
+## Token store layout
+
+Per-account, mode 0700 directory + mode 0600 files:
+
+```
+data/accounts/<accountId>/secrets/outlook/
+├── .key          # 32 random bytes, base64-encoded — the AES-256-CBC key
+└── tokens.enc    # AES-256-CBC ciphertext: "<iv-hex>:<cipher-hex>" of JSON blob
+```
+
+The JSON blob shape:
+
+```typescript
+{
+  accessToken: string;
+  refreshToken: string | null;
+  accessTokenExpiry: number;        // unix ms
+  refreshTokenExpiry: number;       // unix ms; ~90 days from issue
+  lastRefresh: number;              // unix ms
+  graphUserId: string | null;       // from /me.id
+  scopes: string[];                 // granted scopes from token response
+}
+```
+
+Atomic write: temp + rename. Either old or new tokens, never partial.
+
+## Refresh
+
+Triggered automatically when the access token is within `5 minutes` of expiry (`refreshThresholdMs`). Failure → terminal `token-refresh-failed`, tokens cleared, operator must re-register. Refresh tokens last 90 days.

package/payload/platform/plugins/outlook/references/graph-surfaces.md

@@ -0,0 +1,114 @@
+# Graph Surfaces
+
+Microsoft Graph endpoints used by each tool, with the response shape and the fields selected.
+
+## outlook-mail-list
+
+**Endpoint (Inbox):** `GET /me/mailFolders/Inbox/messages?$top={N}&$orderby=receivedDateTime DESC&$select=id,subject,from,receivedDateTime,bodyPreview,isRead`
+
+**Endpoint (other folder):** `GET /me/mailFolders/{folderId-or-displayName}/messages?...`
+
+**Returned shape:**
+```typescript
+Array<{
+  id: string;
+  subject: string | null;
+  from: string | null;          // emailAddress.address
+  receivedDateTime: string;     // ISO 8601
+  bodyPreview: string;          // truncated to 1024 chars
+  isRead: boolean;
+}>
+```
+
+## outlook-mail-search
+
+**Endpoint:** `GET /me/messages?$search="{query}"&$top={N}&$select=id,subject,from,receivedDateTime,bodyPreview,isRead`
+
+**Required header:** `ConsistencyLevel: eventual` (Graph requirement for `$search`).
+
+**Returned shape:** identical to `outlook-mail-list`.
+
+## outlook-calendar-list
+
+**Endpoint:** `GET /me/calendarView?startDateTime={now}&endDateTime={now+rangeDays}&$top={N}&$orderby=start/dateTime ASC&$select=id,subject,start,end,location,attendees,isAllDay,organizer`
+
+**Returned shape:**
+```typescript
+Array<{
+  id: string;
+  subject: string | null;
+  start: { dateTime: string; timeZone: string };
+  end:   { dateTime: string; timeZone: string };
+  location: string | null;
+  attendees: Array<{ email: string; name: string | null; response: string }>;
+  isAllDay: boolean;
+  organizer: string | null;
+}>
+```
+
+## outlook-calendar-event
+
+**Endpoint:** `GET /me/events/{eventId}?$select=id,subject,start,end,location,attendees,isAllDay,organizer,bodyPreview,body,webLink`
+
+**Returned shape:** as `outlook-calendar-list` plus:
+```typescript
+{
+  bodyPreview: string;       // 1024 chars
+  body: string;              // up to 16384 chars (HTML or text per content type)
+  webLink: string | null;
+}
+```
+
+## outlook-contacts-list
+
+**Endpoint:** `GET /me/contacts?$top={N}&$select=id,displayName,emailAddresses,businessPhones,homePhones,mobilePhone,jobTitle,companyName`
+
+**Returned shape:**
+```typescript
+Array<{
+  id: string;
+  displayName: string | null;
+  emailAddresses: string[];   // .address values flattened
+  phones: string[];           // business + home + mobile concatenated
+  jobTitle: string | null;
+  companyName: string | null;
+}>
+```
+
+## outlook-mailbox-info
+
+**Endpoint:** `GET /me/mailFolders?$top=50&$select=id` (best-effort — folder count is null if Graph is unreachable)
+
+**Returned shape:**
+```typescript
+{
+  registered: boolean;
+  graphUserId: string | null;
+  scopes: string[];
+  tokenExpSec: number | null;
+  refreshTokenExpSec: number | null;
+  tokenWithinRefreshWindow: boolean;
+  folderCount: number | null;
+}
+```
+
+## outlook-account-register
+
+No Graph endpoint of its own. The flow exchanges an authorization code at:
+
+- `POST https://login.microsoftonline.com/{tenant}/oauth2/v2.0/token`
+
+After the token exchange, the tool fetches `GET /me?$select=id,mail,userPrincipalName` to record `graphUserId`.
+
+## Error classification
+
+All tool failures route through `lib/graph-client.ts:classifyGraphError`. Decisions key off **status code + Graph `error.code` field + headers**, never the error `message` body.
+
+| HTTP status | Graph `error.code` | Class | Action |
+|---|---|---|---|
+| 401 | (any) | `auth` | Refresh once, retry; if still 401 → terminal `auth-required` |
+| 429 | (any) — header `Retry-After` present | `rate-limit-recoverable` | Backoff per header, retry once |
+| 429 | (any) — header `Retry-After` absent | `rate-limit-terminal` | Terminal abort |
+| 503 | `MailboxNotEnabledForRESTAPI` | `on-prem` | Terminal: route operator to IMAP plugin |
+| 5xx | (any) | `5xx` | Retry once with 500 ms; then terminal |
+| any | (any) | `other` | Re-throw |

package/payload/platform/plugins/outlook/skills/outlook/SKILL.md

@@ -0,0 +1,65 @@
+---
+name: outlook
+description: "Microsoft 365 / Outlook.com via Microsoft Graph (read-only). Use when the user asks about their Outlook mail, calendar, or contacts — listing, searching, or checking events. First-time use requires outlook-account-register; subsequent use is transparent. Tools — outlook-mail-list / outlook-mail-search (inbox), outlook-calendar-list / outlook-calendar-event (calendar), outlook-contacts-list (contacts), outlook-mailbox-info (health), outlook-account-register (PKCE register)."
+---
+
+# Outlook (Microsoft Graph)
+
+Read-only access to the user's Outlook.com or Microsoft 365 mailbox via Microsoft Graph. Per-account OAuth, encrypted token storage, refresh handled automatically.
+
+## When to activate
+
+Activate when the user asks about:
+
+- Their Outlook / Office 365 / Hotmail mail (recent messages, search by keyword/sender)
+- Their Outlook calendar (upcoming events, specific event details, free/busy windows)
+- Their Outlook contacts
+
+Do **not** activate for:
+
+- IMAP-only providers (Gmail, iCloud, custom domains not on Microsoft 365) — use the `email` plugin instead.
+- On-premises Exchange — Microsoft Graph deprecated hybrid REST 2023-07. The plugin detects on-prem mailboxes and emits a clear error pointing to the IMAP path.
+- Sending / drafting / modifying messages or events — out of scope. Read-only.
+
+## First-time setup (one-time per account)
+
+The Outlook plugin needs an **Entra app registration** in the operator's Microsoft tenant. This is a one-time-per-install step (not per-account), documented at [`references/auth.md`](references/auth.md).
+
+Once the Entra app exists and `OUTLOOK_CLIENT_ID` is set in the Maxy installation, run:
+
+1. **`outlook-account-register`** — the tool returns an `authUrl`. The operator opens this URL in the VNC browser, signs in with the Microsoft account they want to connect, and consents to the requested scopes (`offline_access`, `User.Read`, `Mail.Read`, `Calendars.Read`, `Contacts.Read`).
+2. Tool returns `{ status: "registered", graphUserId, scopes, tokenExpSec }` once consent completes.
+
+Subsequent tool calls use the persisted refresh token to mint access tokens transparently. Re-register is only needed if the refresh token expires (90 days) or the user revokes consent.
+
+## Reading mail
+
+- `outlook-mail-list` — recent mail, default top=25, folder=Inbox.
+- `outlook-mail-search query=<keyword>` — Microsoft Graph `$search` over the mailbox.
+
+## Reading calendar
+
+- `outlook-calendar-list rangeDays=<N>` — events in the next N days (default 7, max 365).
+- `outlook-calendar-event eventId=<id>` — single event with full body and attendees.
+
+## Reading contacts
+
+- `outlook-contacts-list` — top contacts, default top=50.
+
+## Health check
+
+- `outlook-mailbox-info` — quick state probe: is the account registered? Are tokens within the refresh window? How many folders are visible? Useful when troubleshooting a tool that returned `auth-required`.
+
+## What can go wrong
+
+| Error | Meaning | Operator action |
+|---|---|---|
+| `auth-required` | Account not registered, or refresh token expired | Run `outlook-account-register` |
+| `Outlook token refresh failed` | Network down or refresh token invalidated | Verify connectivity; re-run register if persistent |
+| `Microsoft Graph does not support on-premises Exchange` | Mailbox is on hybrid Exchange | Use the `email` plugin (IMAP) |
+| `Outlook rate-limited without Retry-After hint` | Graph 429 with no backoff guidance | Retry later; if persistent, file a bug |
+
+## Reference files
+
+- [`references/auth.md`](references/auth.md) — Entra app registration + PKCE flow + re-vendor procedure
+- [`references/graph-surfaces.md`](references/graph-surfaces.md) — Graph endpoint and response shape per tool

package/payload/platform/templates/specialists/agents/personal-assistant.md

@@ -3,7 +3,7 @@ name: personal-assistant
 description: "Your personal assistant — scheduling, platform administration, messaging channels, system health, and browser automation. Delegate when a task involves managing your calendar, configuring the platform, operating messaging channels, or completing interactive browser tasks."
 summary: "Handles the operational tasks you'd give a personal assistant — scheduling meetings, managing your platform settings, connecting messaging channels, and completing browser-based tasks on your behalf. For example, when you want to schedule a weekly check-in, set up Telegram, or fill out an online form."
 model: claude-sonnet-4-6
-tools: mcp__admin__system-status, mcp__admin__brand-settings, mcp__admin__account-manage, mcp__admin__account-update, mcp__admin__logs-read, mcp__admin__plugin-read, mcp__admin__api-key-store, mcp__admin__api-key-verify, mcp__admin__render-component, mcp__admin__file-attach, mcp__admin__wifi, mcp__contacts__contact-create, mcp__contacts__contact-lookup, mcp__contacts__contact-update, mcp__contacts__contact-delete, mcp__contacts__contact-list, mcp__contacts__contact-export, mcp__contacts__contact-erase, mcp__contacts__group-create, mcp__contacts__group-manage, mcp__telegram__message, mcp__telegram__message-history, mcp__telegram__telegram-webhook-register, mcp__whatsapp__whatsapp-login-start, mcp__whatsapp__whatsapp-login-wait, mcp__whatsapp__whatsapp-status, mcp__whatsapp__whatsapp-disconnect, mcp__whatsapp__whatsapp-send, mcp__whatsapp__whatsapp-send-document, mcp__whatsapp__whatsapp-config, mcp__whatsapp__whatsapp-activity, mcp__whatsapp__whatsapp-conversations, mcp__whatsapp__whatsapp-messages, mcp__whatsapp__whatsapp-group-info, mcp__email__email-setup, mcp__email__email-read, mcp__email__email-send, mcp__email__email-reply, mcp__email__email-search, mcp__email__email-graph-query, mcp__email__email-otp-extract, mcp__email__email-status, mcp__email__email-auto-respond-config, mcp__scheduling__schedule-event, mcp__scheduling__schedule-list, mcp__scheduling__schedule-get, mcp__scheduling__schedule-update, mcp__scheduling__schedule-cancel, mcp__scheduling__schedule-export-ics, mcp__scheduling__schedule-import-ics, mcp__scheduling__time-resolve, mcp__memory__memory-search, mcp__memory__profile-update, mcp__plugin_playwright_playwright__browser_navigate, mcp__plugin_playwright_playwright__browser_navigate_back, mcp__plugin_playwright_playwright__browser_snapshot, mcp__plugin_playwright_playwright__browser_click, mcp__plugin_playwright_playwright__browser_fill, mcp__plugin_playwright_playwright__browser_fill_form, mcp__plugin_playwright_playwright__browser_type, mcp__plugin_playwright_playwright__browser_press_key, mcp__plugin_playwright_playwright__browser_hover, mcp__plugin_playwright_playwright__browser_select_option, mcp__plugin_playwright_playwright__browser_wait_for, mcp__plugin_playwright_playwright__browser_handle_dialog, mcp__plugin_playwright_playwright__browser_evaluate, mcp__plugin_playwright_playwright__browser_console_messages, mcp__plugin_playwright_playwright__browser_resize, mcp__plugin_playwright_playwright__browser_tabs, mcp__plugin_playwright_playwright__browser_close
+tools: mcp__admin__system-status, mcp__admin__brand-settings, mcp__admin__account-manage, mcp__admin__account-update, mcp__admin__logs-read, mcp__admin__plugin-read, mcp__admin__api-key-store, mcp__admin__api-key-verify, mcp__admin__render-component, mcp__admin__file-attach, mcp__admin__wifi, mcp__contacts__contact-create, mcp__contacts__contact-lookup, mcp__contacts__contact-update, mcp__contacts__contact-delete, mcp__contacts__contact-list, mcp__contacts__contact-export, mcp__contacts__contact-erase, mcp__contacts__group-create, mcp__contacts__group-manage, mcp__telegram__message, mcp__telegram__message-history, mcp__telegram__telegram-webhook-register, mcp__whatsapp__whatsapp-login-start, mcp__whatsapp__whatsapp-login-wait, mcp__whatsapp__whatsapp-status, mcp__whatsapp__whatsapp-disconnect, mcp__whatsapp__whatsapp-send, mcp__whatsapp__whatsapp-send-document, mcp__whatsapp__whatsapp-config, mcp__whatsapp__whatsapp-activity, mcp__whatsapp__whatsapp-conversations, mcp__whatsapp__whatsapp-messages, mcp__whatsapp__whatsapp-group-info, mcp__email__email-setup, mcp__email__email-read, mcp__email__email-send, mcp__email__email-reply, mcp__email__email-search, mcp__email__email-graph-query, mcp__email__email-otp-extract, mcp__email__email-status, mcp__email__email-auto-respond-config, mcp__outlook__outlook-account-register, mcp__outlook__outlook-mail-list, mcp__outlook__outlook-mail-search, mcp__outlook__outlook-calendar-list, mcp__outlook__outlook-calendar-event, mcp__outlook__outlook-contacts-list, mcp__outlook__outlook-mailbox-info, mcp__scheduling__schedule-event, mcp__scheduling__schedule-list, mcp__scheduling__schedule-get, mcp__scheduling__schedule-update, mcp__scheduling__schedule-cancel, mcp__scheduling__schedule-export-ics, mcp__scheduling__schedule-import-ics, mcp__scheduling__time-resolve, mcp__memory__memory-search, mcp__memory__profile-update, mcp__plugin_playwright_playwright__browser_navigate, mcp__plugin_playwright_playwright__browser_navigate_back, mcp__plugin_playwright_playwright__browser_snapshot, mcp__plugin_playwright_playwright__browser_click, mcp__plugin_playwright_playwright__browser_fill, mcp__plugin_playwright_playwright__browser_fill_form, mcp__plugin_playwright_playwright__browser_type, mcp__plugin_playwright_playwright__browser_press_key, mcp__plugin_playwright_playwright__browser_hover, mcp__plugin_playwright_playwright__browser_select_option, mcp__plugin_playwright_playwright__browser_wait_for, mcp__plugin_playwright_playwright__browser_handle_dialog, mcp__plugin_playwright_playwright__browser_evaluate, mcp__plugin_playwright_playwright__browser_console_messages, mcp__plugin_playwright_playwright__browser_resize, mcp__plugin_playwright_playwright__browser_tabs, mcp__plugin_playwright_playwright__browser_close
 ---
 
 # Personal Assistant