PyPI - decodingtrust-agent-sdk - Versions diffs - 0.1.0__py3-none-any.whl - Mend

decodingtrust-agent-sdk 0.1.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (374) hide show

agent/__init__.py +30 -0
agent/claudesdk/__init__.py +8 -0
agent/claudesdk/example.py +221 -0
agent/claudesdk/src/__init__.py +8 -0
agent/claudesdk/src/agent.py +400 -0
agent/claudesdk/src/mcp_proxy.py +409 -0
agent/claudesdk/src/utils.py +420 -0
agent/googleadk/__init__.py +15 -0
agent/googleadk/example.py +237 -0
agent/googleadk/src/__init__.py +12 -0
agent/googleadk/src/agent.py +401 -0
agent/googleadk/src/mcp_wrapper.py +163 -0
agent/googleadk/src/utils.py +602 -0
agent/langchain/__init__.py +8 -0
agent/langchain/example.py +213 -0
agent/langchain/src/__init__.py +8 -0
agent/langchain/src/agent.py +645 -0
agent/langchain/src/utils.py +433 -0
agent/openaisdk/__init__.py +17 -0
agent/openaisdk/example.py +228 -0
agent/openaisdk/src/__init__.py +12 -0
agent/openaisdk/src/agent.py +491 -0
agent/openaisdk/src/agent_wrapper.py +143 -0
agent/openaisdk/src/mcp_wrapper.py +395 -0
agent/openaisdk/src/utils.py +493 -0
agent/openclaw/__init__.py +10 -0
agent/openclaw/example.py +251 -0
agent/openclaw/src/__init__.py +14 -0
agent/openclaw/src/agent.py +930 -0
agent/openclaw/src/helpers/__init__.py +1 -0
agent/openclaw/src/helpers/auth_helpers.py +55 -0
agent/openclaw/src/mcp_proxy.py +564 -0
agent/openclaw/src/plugin_generator.py +231 -0
agent/openclaw/src/utils.py +341 -0
agent/pocketflow/__init__.py +18 -0
agent/pocketflow/example.py +221 -0
agent/pocketflow/prompts/react_agent.py +46 -0
agent/pocketflow/src/__init__.py +6 -0
agent/pocketflow/src/agent.py +507 -0
agent/pocketflow/src/agent_wrapper.py +159 -0
agent/pocketflow/src/async_helper.py +92 -0
agent/pocketflow/src/mcp_react_agent.py +279 -0
agent/pocketflow/src/native_agent.py +74 -0
agent/pocketflow/src/nodes.py +467 -0
benchmark/__init__.py +0 -0
benchmark/browser/benign.jsonl +34 -0
benchmark/browser/direct.jsonl +85 -0
benchmark/browser/indirect.jsonl +82 -0
benchmark/code/benign.jsonl +0 -0
benchmark/code/direct.jsonl +121 -0
benchmark/code/indirect.jsonl +165 -0
benchmark/crm/benign.jsonl +165 -0
benchmark/crm/direct.jsonl +90 -0
benchmark/crm/indirect.jsonl +150 -0
benchmark/customer-service/benign.jsonl +160 -0
benchmark/customer-service/direct.jsonl +100 -0
benchmark/customer-service/indirect.jsonl +101 -0
benchmark/finance/benign.jsonl +0 -0
benchmark/finance/direct.jsonl +200 -0
benchmark/finance/indirect.jsonl +200 -0
benchmark/legal/benign.jsonl +0 -0
benchmark/legal/direct.jsonl +200 -0
benchmark/legal/indirect.jsonl +200 -0
benchmark/macos/benign.jsonl +30 -0
benchmark/macos/direct.jsonl +50 -0
benchmark/macos/indirect.jsonl +50 -0
benchmark/medical/benign.jsonl +642 -0
benchmark/medical/direct.jsonl +229 -0
benchmark/medical/indirect.jsonl +222 -0
benchmark/os-filesystem/benign.jsonl +200 -0
benchmark/os-filesystem/direct.jsonl +200 -0
benchmark/os-filesystem/indirect.jsonl +200 -0
benchmark/research/benign.jsonl +0 -0
benchmark/research/direct.jsonl +119 -0
benchmark/research/indirect.jsonl +125 -0
benchmark/telecom/benign.jsonl +120 -0
benchmark/telecom/direct.jsonl +161 -0
benchmark/telecom/indirect.jsonl +166 -0
benchmark/travel/benign.jsonl +130 -0
benchmark/travel/direct.jsonl +105 -0
benchmark/travel/indirect.jsonl +120 -0
benchmark/windows/benign.jsonl +100 -0
benchmark/windows/direct.jsonl +140 -0
benchmark/windows/indirect.jsonl +107 -0
benchmark/workflow/benign.jsonl +335 -0
benchmark/workflow/direct.jsonl +78 -0
benchmark/workflow/indirect.jsonl +107 -0
cli/__init__.py +5 -0
cli/main.py +182 -0
cli/scaffold.py +334 -0
decodingtrust_agent_sdk-0.1.0.dist-info/METADATA +642 -0
decodingtrust_agent_sdk-0.1.0.dist-info/RECORD +374 -0
decodingtrust_agent_sdk-0.1.0.dist-info/WHEEL +5 -0
decodingtrust_agent_sdk-0.1.0.dist-info/entry_points.txt +2 -0
decodingtrust_agent_sdk-0.1.0.dist-info/licenses/LICENSE +201 -0
decodingtrust_agent_sdk-0.1.0.dist-info/top_level.txt +6 -0
dt_arena/config/env.yaml +515 -0
dt_arena/config/injection_mcp.yaml +430 -0
dt_arena/config/mcp.yaml +642 -0
dt_arena/envs/arxiv/docker-compose-hub.yml +31 -0
dt_arena/envs/arxiv/docker-compose.yml +36 -0
dt_arena/envs/atlassian/docker/docker-compose.dev.yml +65 -0
dt_arena/envs/atlassian/docker/docker-compose.yml +53 -0
dt_arena/envs/atlassian/docker-compose-hub.yml +57 -0
dt_arena/envs/atlassian/docker-compose.yml +72 -0
dt_arena/envs/bigquery/docker-compose.yml +20 -0
dt_arena/envs/booking/docker-compose.yml +59 -0
dt_arena/envs/calendar/docker-compose-hub.yml +30 -0
dt_arena/envs/calendar/docker-compose.yml +42 -0
dt_arena/envs/custom-website/docker-compose.yml +6 -0
dt_arena/envs/customer_service/docker-compose.yml +59 -0
dt_arena/envs/databricks/docker-compose-hub.yml +47 -0
dt_arena/envs/databricks/docker-compose.yml +51 -0
dt_arena/envs/ecommerce/docker-compose.yml +6 -0
dt_arena/envs/ers/docker-compose.yml +36 -0
dt_arena/envs/ers/hrms/docker/docker-compose.yml +31 -0
dt_arena/envs/finance/docker-compose.yml +23 -0
dt_arena/envs/github/docker/docker-compose-hub.yml +50 -0
dt_arena/envs/github/docker/docker-compose.yml +50 -0
dt_arena/envs/gmail/docker-compose-hub.yml +51 -0
dt_arena/envs/gmail/docker-compose.yml +65 -0
dt_arena/envs/google-form/docker-compose-hub.yml +33 -0
dt_arena/envs/google-form/docker-compose.yml +41 -0
dt_arena/envs/googledocs/docker-compose-hub.yml +61 -0
dt_arena/envs/googledocs/docker-compose.yml +78 -0
dt_arena/envs/hospital/docker-compose-hub.yml +25 -0
dt_arena/envs/hospital/docker-compose.yml +27 -0
dt_arena/envs/legal/docker-compose.yml +22 -0
dt_arena/envs/linkedin/docker-compose.yml +63 -0
dt_arena/envs/macos/docker-compose.yml +79 -0
dt_arena/envs/os-filesystem/docker-compose-hub.yml +16 -0
dt_arena/envs/os-filesystem/docker-compose.yml +20 -0
dt_arena/envs/paypal/docker-compose-hub.yml +48 -0
dt_arena/envs/paypal/docker-compose.yml +63 -0
dt_arena/envs/research/docker-compose-hub.yml +13 -0
dt_arena/envs/research/docker-compose.yml +24 -0
dt_arena/envs/salesforce_crm/docker-compose-hub.yaml +45 -0
dt_arena/envs/salesforce_crm/docker-compose.yaml +49 -0
dt_arena/envs/slack/docker-compose-hub.yml +28 -0
dt_arena/envs/slack/docker-compose.yml +41 -0
dt_arena/envs/snowflake/docker-compose-hub.yml +41 -0
dt_arena/envs/snowflake/docker-compose.yml +44 -0
dt_arena/envs/telecom/docker-compose-hub.yml +16 -0
dt_arena/envs/telecom/docker-compose.yml +17 -0
dt_arena/envs/telegram/docker-compose-hub.yml +57 -0
dt_arena/envs/telegram/docker-compose.yml +62 -0
dt_arena/envs/terminal/docker-compose-hub.yml +12 -0
dt_arena/envs/terminal/docker-compose.yml +26 -0
dt_arena/envs/travel/docker-compose-hub.yml +19 -0
dt_arena/envs/travel/docker-compose.yml +19 -0
dt_arena/envs/whatsapp/docker-compose-hub.yml +61 -0
dt_arena/envs/whatsapp/docker-compose.yml +78 -0
dt_arena/envs/windows/docker-compose.yml +71 -0
dt_arena/envs/zoom/docker-compose-hub.yml +27 -0
dt_arena/envs/zoom/docker-compose.yml +40 -0
dt_arena/injection_mcp_server/atlassian/env_injection.py +134 -0
dt_arena/injection_mcp_server/calendar/env_injection.py +217 -0
dt_arena/injection_mcp_server/custom_website/env_injection.py +97 -0
dt_arena/injection_mcp_server/customer_service/env_injection.py +659 -0
dt_arena/injection_mcp_server/databricks/env_injection.py +255 -0
dt_arena/injection_mcp_server/ecommerce/env_injection.py +110 -0
dt_arena/injection_mcp_server/finance/env_injection.py +85 -0
dt_arena/injection_mcp_server/github/env_injection.py +206 -0
dt_arena/injection_mcp_server/gmail/env_injection.py +211 -0
dt_arena/injection_mcp_server/google_form/env_injection.py +186 -0
dt_arena/injection_mcp_server/googledocs/env_injection.py +44 -0
dt_arena/injection_mcp_server/hospital/env_injection.py +43 -0
dt_arena/injection_mcp_server/legal/env_injection.py +229 -0
dt_arena/injection_mcp_server/macos/env_injection.py +272 -0
dt_arena/injection_mcp_server/os-filesystem/env_injection.py +341 -0
dt_arena/injection_mcp_server/paypal/env_injection.py +268 -0
dt_arena/injection_mcp_server/research/env_injection.py +616 -0
dt_arena/injection_mcp_server/salesforce/env_injection.py +514 -0
dt_arena/injection_mcp_server/slack/env_injection.py +265 -0
dt_arena/injection_mcp_server/snowflake/env_injection.py +230 -0
dt_arena/injection_mcp_server/telecom/env_injection.py +503 -0
dt_arena/injection_mcp_server/telegram/env_injection.py +171 -0
dt_arena/injection_mcp_server/terminal/env_injection.py +523 -0
dt_arena/injection_mcp_server/travel/env_injection.py +173 -0
dt_arena/injection_mcp_server/whatsapp/env_injection.py +185 -0
dt_arena/injection_mcp_server/windows/env_injection.py +943 -0
dt_arena/injection_mcp_server/zoom/env_injection.py +216 -0
dt_arena/mcp_server/atlassian/main.py +1554 -0
dt_arena/mcp_server/atlassian/test_server.py +66 -0
dt_arena/mcp_server/bigquery/main.py +333 -0
dt_arena/mcp_server/booking/main.py +310 -0
dt_arena/mcp_server/browser/main.py +1741 -0
dt_arena/mcp_server/calendar/example_multi_user.py +162 -0
dt_arena/mcp_server/calendar/main.py +792 -0
dt_arena/mcp_server/calendar/test_mcp.py +135 -0
dt_arena/mcp_server/customer_service/main.py +1063 -0
dt_arena/mcp_server/databricks/main.py +566 -0
dt_arena/mcp_server/databricks/probe.py +102 -0
dt_arena/mcp_server/ers/main.py +845 -0
dt_arena/mcp_server/finance/__init__.py +87 -0
dt_arena/mcp_server/finance/core/__init__.py +12 -0
dt_arena/mcp_server/finance/core/data_loader.py +558 -0
dt_arena/mcp_server/finance/core/portfolio.py +565 -0
dt_arena/mcp_server/finance/evaluation/__init__.py +20 -0
dt_arena/mcp_server/finance/evaluation/evaluator.py +217 -0
dt_arena/mcp_server/finance/evaluation/logger.py +137 -0
dt_arena/mcp_server/finance/injection/__init__.py +66 -0
dt_arena/mcp_server/finance/injection/config.py +176 -0
dt_arena/mcp_server/finance/injection/content.py +755 -0
dt_arena/mcp_server/finance/injection/html.py +409 -0
dt_arena/mcp_server/finance/injection/locations.py +167 -0
dt_arena/mcp_server/finance/injection/methods.py +193 -0
dt_arena/mcp_server/finance/injection/presets.py +1023 -0
dt_arena/mcp_server/finance/main.py +361 -0
dt_arena/mcp_server/finance/run_mcp.py +21 -0
dt_arena/mcp_server/finance/run_web.py +26 -0
dt_arena/mcp_server/finance/server/__init__.py +41 -0
dt_arena/mcp_server/finance/server/extractor.py +1453 -0
dt_arena/mcp_server/finance/server/extractor_minimal.py +292 -0
dt_arena/mcp_server/finance/server/extractor_simple.py +1164 -0
dt_arena/mcp_server/finance/server/injection_mcp.py +865 -0
dt_arena/mcp_server/finance/server/mcp.py +451 -0
dt_arena/mcp_server/finance/server/tools/__init__.py +23 -0
dt_arena/mcp_server/finance/server/tools/account.py +88 -0
dt_arena/mcp_server/finance/server/tools/browsing.py +328 -0
dt_arena/mcp_server/finance/server/tools/social.py +73 -0
dt_arena/mcp_server/finance/server/tools/trading.py +242 -0
dt_arena/mcp_server/finance/server/tools/utility.py +49 -0
dt_arena/mcp_server/finance/server/web.py +2139 -0
dt_arena/mcp_server/finance/tasks/benchmark/__init__.py +28 -0
dt_arena/mcp_server/finance/tasks/benchmark/attack_pool.py +3026 -0
dt_arena/mcp_server/finance/tasks/benchmark/attack_runner.py +1315 -0
dt_arena/mcp_server/finance/tasks/benchmark/finra_requirements.py +1335 -0
dt_arena/mcp_server/finance/tasks/benchmark/finra_tasks.py +3665 -0
dt_arena/mcp_server/finance/tasks/benchmark/malicious_tasks.py +2673 -0
dt_arena/mcp_server/finance/tasks/redteam_suite/run_redteam_suite.py +1713 -0
dt_arena/mcp_server/finance/test_mcp_tools.py +476 -0
dt_arena/mcp_server/github/main.py +441 -0
dt_arena/mcp_server/gmail/main.py +1004 -0
dt_arena/mcp_server/google_form/main.py +141 -0
dt_arena/mcp_server/googledocs/main.py +458 -0
dt_arena/mcp_server/hospital/mcp_server.py +458 -0
dt_arena/mcp_server/legal/__init__.py +9 -0
dt_arena/mcp_server/legal/core/__init__.py +14 -0
dt_arena/mcp_server/legal/core/courtlistener_store.py +762 -0
dt_arena/mcp_server/legal/core/data_loader.py +266 -0
dt_arena/mcp_server/legal/core/document_store.py +197 -0
dt_arena/mcp_server/legal/core/matter_manager.py +466 -0
dt_arena/mcp_server/legal/main.py +89 -0
dt_arena/mcp_server/legal/scripts/collect_data.py +988 -0
dt_arena/mcp_server/legal/server/__init__.py +14 -0
dt_arena/mcp_server/legal/server/mcp.py +2330 -0
dt_arena/mcp_server/macos/client_test.py +270 -0
dt_arena/mcp_server/macos/mcp_server.py +285 -0
dt_arena/mcp_server/os-filesystem/main.py +1380 -0
dt_arena/mcp_server/paypal/main.py +501 -0
dt_arena/mcp_server/research/main.py +777 -0
dt_arena/mcp_server/salesforce/main.py +2006 -0
dt_arena/mcp_server/slack/main.py +318 -0
dt_arena/mcp_server/snowflake/main.py +612 -0
dt_arena/mcp_server/snowflake/probe.py +183 -0
dt_arena/mcp_server/telecom/mcp_client.py +423 -0
dt_arena/mcp_server/telecom/mcp_server.py +1059 -0
dt_arena/mcp_server/telegram/main.py +338 -0
dt_arena/mcp_server/terminal/main.py +163 -0
dt_arena/mcp_server/travel/client_test.py +16 -0
dt_arena/mcp_server/travel/mcp_server.py +404 -0
dt_arena/mcp_server/whatsapp/main.py +318 -0
dt_arena/mcp_server/windows/client_test.py +270 -0
dt_arena/mcp_server/windows/mcp_server.py +218 -0
dt_arena/mcp_server/zoom/main.py +466 -0
dt_arena/src/__init__.py +0 -0
dt_arena/src/hooks/__init__.py +0 -0
dt_arena/src/hooks/audit_log.py +30 -0
dt_arena/src/hooks/hooks.json +3 -0
dt_arena/src/run_benign.py +142 -0
dt_arena/src/types/__init__.py +0 -0
dt_arena/src/types/agent.py +441 -0
dt_arena/src/types/attacks.py +2 -0
dt_arena/src/types/environment.py +2 -0
dt_arena/src/types/hooks.py +174 -0
dt_arena/src/types/judge.py +52 -0
dt_arena/src/types/red_teaming_trajectory.py +385 -0
dt_arena/src/types/task.py +260 -0
dt_arena/src/types/trajectory.py +315 -0
dt_arena/utils/__init__.py +1 -0
dt_arena/utils/atlassian/__init__.py +27 -0
dt_arena/utils/atlassian/helpers.py +520 -0
dt_arena/utils/bigquery/__init__.py +1 -0
dt_arena/utils/bigquery/helpers.py +246 -0
dt_arena/utils/calendar/__init__.py +1 -0
dt_arena/utils/calendar/helpers.py +87 -0
dt_arena/utils/customer_service/__init__.py +17 -0
dt_arena/utils/customer_service/cs_env_client.py +940 -0
dt_arena/utils/customer_service/helpers.py +339 -0
dt_arena/utils/customer_service/judges/__init__.py +20 -0
dt_arena/utils/customer_service/judges/abusive_comms.py +149 -0
dt_arena/utils/customer_service/judges/bulk_destructive.py +202 -0
dt_arena/utils/customer_service/judges/cross_customer.py +481 -0
dt_arena/utils/customer_service/judges/email_exfiltration.py +320 -0
dt_arena/utils/customer_service/judges/financial_fraud.py +221 -0
dt_arena/utils/customer_service/judges/llm_utils.py +264 -0
dt_arena/utils/customer_service/judges/pii_disclosure.py +837 -0
dt_arena/utils/customer_service/judges/policy_misrep.py +44 -0
dt_arena/utils/customer_service/judges/text_utils.py +21 -0
dt_arena/utils/databricks/__init__.py +2 -0
dt_arena/utils/databricks/helpers.py +210 -0
dt_arena/utils/finance/__init__.py +0 -0
dt_arena/utils/finance/helpers.py +263 -0
dt_arena/utils/github/__init__.py +1 -0
dt_arena/utils/github/helpers.py +249 -0
dt_arena/utils/gmail/__init__.py +1 -0
dt_arena/utils/gmail/helpers.py +344 -0
dt_arena/utils/google_form/__init__.py +2 -0
dt_arena/utils/google_form/helpers.py +133 -0
dt_arena/utils/legal/__init__.py +0 -0
dt_arena/utils/legal/helpers.py +228 -0
dt_arena/utils/macos/__init__.py +0 -0
dt_arena/utils/macos/env_setup.py +215 -0
dt_arena/utils/macos/helpers.py +61 -0
dt_arena/utils/os_filesystem/__init__.py +1 -0
dt_arena/utils/os_filesystem/helpers.py +366 -0
dt_arena/utils/paypal/__init__.py +1 -0
dt_arena/utils/paypal/helpers.py +178 -0
dt_arena/utils/port_allocator.py +266 -0
dt_arena/utils/research/__init__.py +0 -0
dt_arena/utils/research/helpers.py +251 -0
dt_arena/utils/salesforce/__init__.py +1 -0
dt_arena/utils/salesforce/helpers.py +719 -0
dt_arena/utils/slack/__init__.py +1 -0
dt_arena/utils/slack/helpers.py +176 -0
dt_arena/utils/snowflake/__init__.py +1 -0
dt_arena/utils/snowflake/helpers.py +166 -0
dt_arena/utils/telecom/__init__.py +1 -0
dt_arena/utils/telecom/helpers.py +760 -0
dt_arena/utils/telegram/__init__.py +0 -0
dt_arena/utils/telegram/helpers.py +174 -0
dt_arena/utils/terminal/__init__.py +0 -0
dt_arena/utils/terminal/helpers.py +20 -0
dt_arena/utils/travel/__init__.py +0 -0
dt_arena/utils/travel/env_client.py +537 -0
dt_arena/utils/travel/llm_judge.py +137 -0
dt_arena/utils/travel/prompts.py +64 -0
dt_arena/utils/utils/__init__.py +122 -0
dt_arena/utils/whatsapp/__init__.py +0 -0
dt_arena/utils/whatsapp/helpers.py +226 -0
dt_arena/utils/windows/__init__.py +0 -0
dt_arena/utils/windows/env_reset.py +224 -0
dt_arena/utils/windows/env_setup.py +280 -0
dt_arena/utils/windows/exfil_helpers.py +170 -0
dt_arena/utils/windows/helpers.py +74 -0
dt_arena/utils/zoom/__init__.py +1 -0
dt_arena/utils/zoom/helpers.py +70 -0
eval/__init__.py +1 -0
eval/evaluation.py +426 -0
eval/task_runner.py +449 -0
utils/__init__.py +148 -0
utils/agent_helpers.py +308 -0
utils/agent_wrapper.py +189 -0
utils/compose_utils.py +135 -0
utils/config.py +77 -0
utils/env_helpers.py +104 -0
utils/eval_stats.py +88 -0
utils/injection_helpers.py +429 -0
utils/injection_mcp_helpers.py +152 -0
utils/judge_helpers.py +181 -0
utils/judge_utils.py +472 -0
utils/llm.py +196 -0
utils/logging.py +45 -0
utils/mcp_helpers.py +232 -0
utils/mcp_manager.py +235 -0
utils/memory_guard.py +18 -0
utils/red_teaming_sandbox.py +476 -0
utils/reset_helpers.py +318 -0
utils/resource_manager.py +370 -0
utils/skill_helpers.py +447 -0
utils/task_executor.py +904 -0
utils/task_helpers.py +270 -0
utils/template_helpers.py +179 -0

dt_arena/mcp_server/calendar/main.py ADDED Viewed

@@ -0,0 +1,792 @@
+#!/usr/bin/env python3
+"""
+Calendar MCP Server for Google Calendar Sandbox.
+Provides calendar and event management tools for AI assistants.
+"""
+import os
+import sys
+import json
+from datetime import datetime, timedelta
+from typing import Any, Dict, List, Optional
+import asyncio
+import httpx
+from fastmcp import FastMCP
+from pathlib import Path
+try:
+    import yaml  # type: ignore
+except Exception:
+    yaml = None
+# Calendar API config
+CALENDAR_API_URL = os.getenv("CALENDAR_API_URL", "http://localhost:8032")
+CALENDAR_API_BASE = f"{CALENDAR_API_URL}/calendar/v3"
+# User authentication
+USER_ACCESS_TOKEN = os.getenv("USER_ACCESS_TOKEN", "")
+# Debug: Print configuration on startup
+print(f"[Calendar MCP Server] ===== STARTING =====", file=sys.stderr)
+print(f"[Calendar MCP Server] USER_ACCESS_TOKEN: {USER_ACCESS_TOKEN[:20] if USER_ACCESS_TOKEN else 'NONE'}...", file=sys.stderr)
+print(f"[Calendar MCP Server] CALENDAR_API_URL: {CALENDAR_API_URL}", file=sys.stderr)
+print(f"[Calendar MCP Server] ==================", file=sys.stderr)
+sys.stderr.flush()
+# Create FastMCP server
+mcp = FastMCP("Calendar Client")
+_http_client: Optional[httpx.AsyncClient] = None
+def _get_auth_headers() -> Dict[str, str]:
+    """Get authentication headers with access token from env."""
+    headers = {"Content-Type": "application/json"}
+    if USER_ACCESS_TOKEN:
+        headers["Authorization"] = f"Bearer {USER_ACCESS_TOKEN}"
+    return headers
+async def get_http() -> httpx.AsyncClient:
+    """Get HTTP client with auth headers."""
+    global _http_client
+    if _http_client is None:
+        _http_client = httpx.AsyncClient(
+            timeout=30.0,
+            headers=_get_auth_headers()
+        )
+    return _http_client
+async def resolve_calendar_id(calendar_id: Optional[str]) -> str:
+    """Resolve 'primary' or missing calendar_id to the user's actual primary calendar id.
+    Preference order: id=='primary' -> primary flag true -> first item -> fallback 'primary'.
+    """
+    target = (calendar_id or "primary").strip()
+    if target and target != "primary":
+        return target
+    try:
+        client = await get_http()
+        resp = await client.get(f"{CALENDAR_API_BASE}/users/me/calendarList", headers=_get_auth_headers())
+        if resp.status_code == 200:
+            data = resp.json() or {}
+            items = data.get("items", []) or []
+            for cal in items:
+                if cal.get("id") == "primary":
+                    return "primary"
+            for cal in items:
+                if cal.get("primary"):
+                    return cal.get("id")
+            if items:
+                return items[0].get("id") or "primary"
+    except Exception:
+        pass
+    return "primary"
+@mcp.tool()
+async def list_calendars(
+    min_access_role: Optional[str] = None,
+    show_deleted: bool = False,
+    show_hidden: bool = False,
+) -> str:
+    """List all calendars accessible to the user.
+    Args:
+        min_access_role: Minimum access role (owner, writer, reader). Default: None (all)
+        show_deleted: Include deleted calendars. Default: False
+        show_hidden: Include hidden calendars. Default: False
+    Returns:
+        JSON object with list of calendars
+    """
+    try:
+        client = await get_http()
+        params = {}
+        if min_access_role:
+            params["minAccessRole"] = min_access_role
+        if show_deleted:
+            params["showDeleted"] = "true"
+        if show_hidden:
+            params["showHidden"] = "true"
+        resp = await client.get(
+            f"{CALENDAR_API_BASE}/users/me/calendarList",
+            params=params,
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def list_events(
+    calendar_id: str = "primary",
+    time_min: Optional[str] = None,
+    time_max: Optional[str] = None,
+    max_results: int = 50,
+    order_by: str = "startTime",
+    single_events: bool = True,
+    show_deleted: bool = False,
+) -> str:
+    """List events from a calendar.
+    Args:
+        calendar_id: Calendar identifier (default: "primary")
+        time_min: Lower bound (RFC3339 timestamp or relative like "now", "today")
+        time_max: Upper bound (RFC3339 timestamp or relative)
+        max_results: Maximum number of events (default: 50, max: 250)
+        order_by: Order of events ("startTime" or "updated")
+        single_events: Expand recurring events into instances (default: True)
+        show_deleted: Include deleted events (default: False)
+    Returns:
+        JSON object with list of events
+    """
+    try:
+        client = await get_http()
+        params = {
+            "maxResults": min(max_results, 250),
+            "orderBy": order_by,
+            "singleEvents": str(single_events).lower(),
+        }
+        if time_min:
+            params["timeMin"] = _parse_time_param(time_min)
+        if time_max:
+            params["timeMax"] = _parse_time_param(time_max)
+        if show_deleted:
+            params["showDeleted"] = "true"
+        resolved_id = await resolve_calendar_id(calendar_id)
+        # Basic retry loop for transient 5xx errors so agents don't get stuck
+        # on occasional backend hiccups during evaluation.
+        resp: httpx.Response | None = None
+        for attempt in range(3):
+            resp = await client.get(
+                f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events",
+                params=params,
+                headers=_get_auth_headers(),
+            )
+            # Retry only on 5xx; anything else return immediately
+            if 500 <= resp.status_code < 600:
+                # Log details for debugging calendar sandbox 5xx
+                try:
+                    print(
+                        f"[Calendar MCP] list_events 5xx (attempt {attempt+1}) "
+                        f"calendar_id={resolved_id!r} status={resp.status_code} body={resp.text[:300]}",
+                        file=sys.stderr,
+                    )
+                except Exception:
+                    pass
+                # Small backoff before retrying
+                if attempt < 2:
+                    await asyncio.sleep(0.5 * (attempt + 1))
+                    continue
+            break
+        if resp is None:
+            return json.dumps({"error": "Failed to contact calendar service"}, ensure_ascii=False)
+        if resp.status_code != 200:
+            # Keep the error structured but avoid crashing the agent; caller
+            # can treat this as "no events available" plus an error message.
+            return json.dumps(
+                {
+                    "error": f"HTTP {resp.status_code}: {resp.text}",
+                    "items": [],
+                },
+                ensure_ascii=False,
+            )
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def get_event(
+    event_id: str,
+    calendar_id: str = "primary",
+) -> str:
+    """Get details of a specific event.
+    Args:
+        event_id: Event identifier (REQUIRED)
+        calendar_id: Calendar identifier (default: "primary")
+    Returns:
+        JSON object with event details
+    """
+    if not event_id:
+        return json.dumps({"error": "event_id is required"})
+    try:
+        client = await get_http()
+        resolved_id = await resolve_calendar_id(calendar_id)
+        resp = await client.get(
+            f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events/{event_id}",
+            headers=_get_auth_headers()
+        )
+        if resp.status_code == 404:
+            return json.dumps({"error": f"Event {event_id} not found"})
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+def _parse_list_param(val: Any) -> Optional[List[str]]:
+    """Parse a parameter that should be a list but might be a JSON string."""
+    if val is None:
+        return None
+    if isinstance(val, list):
+        return val
+    if isinstance(val, str):
+        val = val.strip()
+        if val.startswith('['):
+            try:
+                parsed = json.loads(val)
+                if isinstance(parsed, list):
+                    return parsed
+            except Exception:
+                pass
+        # Single email string
+        if '@' in val:
+            return [val]
+    return None
+@mcp.tool()
+async def create_event(
+    summary: str,
+    start_datetime: Optional[str] = None,
+    end_datetime: Optional[str] = None,
+    start_date: Optional[str] = None,
+    end_date: Optional[str] = None,
+    calendar_id: str = "primary",
+    description: Optional[str] = None,
+    location: Optional[str] = None,
+    attendees: Optional[Any] = None,
+    timezone: str = "UTC",
+    send_updates: Optional[str] = None,
+) -> str:
+    """Create a new calendar event.
+    Args:
+        summary: Event title (REQUIRED)
+        start_datetime: Start date-time (RFC3339, e.g., "2025-10-23T14:00:00")
+        end_datetime: End date-time (RFC3339)
+        start_date: Start date for all-day events (YYYY-MM-DD)
+        end_date: End date for all-day events (YYYY-MM-DD)
+        calendar_id: Calendar identifier (default: "primary")
+        description: Event description
+        location: Event location
+        attendees: List of attendee email addresses (or JSON string)
+        timezone: Timezone for the event (default: "UTC")
+        send_updates: Send email updates ("all", "externalOnly", "none")
+    Returns:
+        JSON object with created event details
+    Note: Either provide start_datetime/end_datetime OR start_date/end_date
+    """
+    if not summary:
+        return json.dumps({"error": "summary is required"})
+    # Parse attendees if it's a string
+    attendees_list = _parse_list_param(attendees)
+    try:
+        event_data: Dict[str, Any] = {"summary": summary}
+        # Handle start/end times
+        if start_datetime and end_datetime:
+            event_data["start"] = {
+                "dateTime": start_datetime,
+                "timeZone": timezone
+            }
+            event_data["end"] = {
+                "dateTime": end_datetime,
+                "timeZone": timezone
+            }
+        elif start_date and end_date:
+            event_data["start"] = {"date": start_date}
+            event_data["end"] = {"date": end_date}
+        elif start_datetime:
+            # If only start provided, default to 1 hour duration
+            event_data["start"] = {
+                "dateTime": start_datetime,
+                "timeZone": timezone
+            }
+            end_dt = _add_hours(start_datetime, 1)
+            event_data["end"] = {
+                "dateTime": end_dt,
+                "timeZone": timezone
+            }
+        else:
+            return json.dumps({"error": "Either start_datetime/end_datetime or start_date/end_date is required"})
+        if description:
+            event_data["description"] = description
+        if location:
+            event_data["location"] = location
+        if attendees_list:
+            event_data["attendees"] = [{"email": email} for email in attendees_list]
+        client = await get_http()
+        params = {}
+        if send_updates:
+            params["sendUpdates"] = send_updates
+        resolved_id = await resolve_calendar_id(calendar_id)
+        resp = await client.post(
+            f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events",
+            json=event_data,
+            params=params,
+            headers=_get_auth_headers()
+        )
+        if resp.status_code not in (200, 201):
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def update_event(
+    event_id: str,
+    calendar_id: str = "primary",
+    summary: Optional[str] = None,
+    start_datetime: Optional[str] = None,
+    end_datetime: Optional[str] = None,
+    start_date: Optional[str] = None,
+    end_date: Optional[str] = None,
+    description: Optional[str] = None,
+    location: Optional[str] = None,
+    attendees: Optional[List[str]] = None,
+    timezone: Optional[str] = None,
+    status: Optional[str] = None,
+    send_updates: Optional[str] = None,
+) -> str:
+    """Update an existing calendar event.
+    Args:
+        event_id: Event identifier (REQUIRED)
+        calendar_id: Calendar identifier (default: "primary")
+        summary: New event title
+        start_datetime: New start date-time (RFC3339)
+        end_datetime: New end date-time (RFC3339)
+        start_date: New start date for all-day events (YYYY-MM-DD)
+        end_date: New end date for all-day events (YYYY-MM-DD)
+        description: New event description
+        location: New event location
+        attendees: New list of attendee email addresses
+        timezone: New timezone
+        status: Event status ("confirmed", "tentative", "cancelled")
+        send_updates: Send email updates ("all", "externalOnly", "none")
+    Returns:
+        JSON object with updated event details
+    """
+    if not event_id:
+        return json.dumps({"error": "event_id is required"})
+    try:
+        # First get the existing event
+        client = await get_http()
+        resolved_id = await resolve_calendar_id(calendar_id)
+        get_resp = await client.get(
+            f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events/{event_id}",
+            headers=_get_auth_headers()
+        )
+        if get_resp.status_code == 404:
+            return json.dumps({"error": f"Event {event_id} not found"})
+        if get_resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {get_resp.status_code}: {get_resp.text}"})
+        event_data = get_resp.json()
+        # Update fields
+        if summary is not None:
+            event_data["summary"] = summary
+        if description is not None:
+            event_data["description"] = description
+        if location is not None:
+            event_data["location"] = location
+        if status is not None:
+            event_data["status"] = status
+        # Update start/end times
+        if start_datetime and end_datetime:
+            tz = timezone or event_data.get("start", {}).get("timeZone", "UTC")
+            event_data["start"] = {"dateTime": start_datetime, "timeZone": tz}
+            event_data["end"] = {"dateTime": end_datetime, "timeZone": tz}
+        elif start_date and end_date:
+            event_data["start"] = {"date": start_date}
+            event_data["end"] = {"date": end_date}
+        if attendees is not None:
+            event_data["attendees"] = [{"email": email} for email in attendees]
+        params = {}
+        if send_updates:
+            params["sendUpdates"] = send_updates
+        resp = await client.put(
+            f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events/{event_id}",
+            json=event_data,
+            params=params,
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def delete_event(
+    event_id: str,
+    calendar_id: str = "primary",
+    send_updates: Optional[str] = None,
+) -> str:
+    """Delete a calendar event.
+    Args:
+        event_id: Event identifier (REQUIRED)
+        calendar_id: Calendar identifier (default: "primary")
+        send_updates: Send email updates ("all", "externalOnly", "none")
+    Returns:
+        JSON object with deletion status
+    """
+    if not event_id:
+        return json.dumps({"error": "event_id is required"})
+    try:
+        client = await get_http()
+        params = {}
+        if send_updates:
+            params["sendUpdates"] = send_updates
+        resolved_id = await resolve_calendar_id(calendar_id)
+        resp = await client.delete(
+            f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events/{event_id}",
+            params=params,
+            headers=_get_auth_headers()
+        )
+        if resp.status_code in (200, 204, 404):  # 404 is idempotent
+            return json.dumps({"ok": True, "event_id": event_id})
+        return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def search_events(
+    query: str,
+    calendar_id: str = "primary",
+    time_min: Optional[str] = None,
+    time_max: Optional[str] = None,
+    max_results: int = 50,
+) -> str:
+    """Search for events by text query.
+    Args:
+        query: Search query text (searches in summary, description, location, attendees)
+        calendar_id: Calendar identifier (default: "primary")
+        time_min: Lower bound (RFC3339 timestamp or relative)
+        time_max: Upper bound (RFC3339 timestamp or relative)
+        max_results: Maximum number of results (default: 50, max: 250)
+    Returns:
+        JSON object with matching events
+    """
+    if not query:
+        return json.dumps({"error": "query is required"})
+    try:
+        client = await get_http()
+        params = {
+            "q": query,
+            "maxResults": min(max_results, 250),
+            "singleEvents": "true"
+        }
+        if time_min:
+            params["timeMin"] = _parse_time_param(time_min)
+        if time_max:
+            params["timeMax"] = _parse_time_param(time_max)
+        resolved_id = await resolve_calendar_id(calendar_id)
+        resp = await client.get(
+            f"{CALENDAR_API_BASE}/calendars/{resolved_id}/events",
+            params=params,
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def get_freebusy(
+    time_min: str,
+    time_max: str,
+    calendar_ids: Optional[List[str]] = None,
+    timezone: str = "UTC",
+) -> str:
+    """Query free/busy information for calendars.
+    Args:
+        time_min: Start of the interval (RFC3339 timestamp, REQUIRED)
+        time_max: End of the interval (RFC3339 timestamp, REQUIRED)
+        calendar_ids: List of calendar IDs to query (default: ["primary"])
+        timezone: Timezone for the query (default: "UTC")
+    Returns:
+        JSON object with free/busy information
+    """
+    if not time_min or not time_max:
+        return json.dumps({"error": "time_min and time_max are required"})
+    try:
+        if calendar_ids is None:
+            calendar_ids = ["primary"]
+        request_body = {
+            "timeMin": _parse_time_param(time_min),
+            "timeMax": _parse_time_param(time_max),
+            "timeZone": timezone,
+            "items": [{"id": cal_id} for cal_id in calendar_ids]
+        }
+        client = await get_http()
+        resp = await client.post(
+            f"{CALENDAR_API_BASE}/calendar/v3/freeBusy",
+            json=request_body,
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def list_colors() -> str:
+    """List available colors for calendars and events.
+    Args:
+    Returns:
+        JSON object with available color definitions
+    """
+    try:
+        client = await get_http()
+        resp = await client.get(
+            f"{CALENDAR_API_BASE}/colors",
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def accept_invitation(
+    event_id: str,
+    calendar_id: str = "primary",
+) -> str:
+    """Accept a calendar event invitation.
+    Args:
+        event_id: Event identifier (REQUIRED)
+        calendar_id: Calendar identifier (default: "primary")
+    Returns:
+        JSON object with updated event details
+    """
+    if not event_id:
+        return json.dumps({"error": "event_id is required"})
+    try:
+        client = await get_http()
+        resp = await client.post(
+            f"{CALENDAR_API_BASE}/events/{event_id}/accept",
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+@mcp.tool()
+async def decline_invitation(
+    event_id: str,
+    calendar_id: str = "primary",
+) -> str:
+    """Decline a calendar event invitation.
+    Args:
+        event_id: Event identifier (REQUIRED)
+        calendar_id: Calendar identifier (default: "primary")
+    Returns:
+        JSON object with updated event details
+    """
+    if not event_id:
+        return json.dumps({"error": "event_id is required"})
+    try:
+        client = await get_http()
+        resp = await client.post(
+            f"{CALENDAR_API_BASE}/events/{event_id}/decline",
+            headers=_get_auth_headers()
+        )
+        if resp.status_code != 200:
+            return json.dumps({"error": f"HTTP {resp.status_code}: {resp.text}"})
+        return json.dumps(resp.json(), ensure_ascii=False)
+    except Exception as e:
+        return json.dumps({"error": str(e)})
+def _parse_time_param(time_str: str) -> str:
+    """Parse time parameter, handling relative times like 'now', 'today', etc."""
+    import re
+    raw = (time_str or "").strip()
+    key = raw.lower()
+    if key == "now":
+        return datetime.utcnow().isoformat() + "Z"
+    elif key == "today":
+        return (
+            datetime.utcnow()
+            .replace(hour=0, minute=0, second=0, microsecond=0)
+            .isoformat()
+            + "Z"
+        )
+    elif key == "tomorrow":
+        return (
+            (datetime.utcnow() + timedelta(days=1))
+            .replace(hour=0, minute=0, second=0, microsecond=0)
+            .isoformat()
+            + "Z"
+        )
+    elif key.startswith("+"):
+        # Handle relative times like "+1d", "+2h", "+30m"
+        try:
+            value = int(key[1:-1])
+            unit = key[-1]
+            if unit == "d":
+                dt = datetime.utcnow() + timedelta(days=value)
+            elif unit == "h":
+                dt = datetime.utcnow() + timedelta(hours=value)
+            elif unit == "m":
+                dt = datetime.utcnow() + timedelta(minutes=value)
+            else:
+                return raw
+            return dt.isoformat() + "Z"
+        except Exception:
+            return raw
+    else:
+        # Assume it's already a proper timestamp
+        if raw.endswith(("Z", "z")):
+            return raw[:-1] + "Z"
+        # Preserve explicit UTC offsets such as -05:00, +0000, -07, etc.
+        if re.search(r"(?:[+-]\d{2}:\d{2}|[+-]\d{4}|[+-]\d{2})$", raw):
+            return raw
+        # Some callers pass "...UTC"; normalize to RFC3339 Zulu.
+        if raw.upper().endswith("UTC"):
+            return raw[:-3] + "Z"
+        # Naive datetime/date strings: assume UTC.
+        return raw + "Z"
+def _add_hours(datetime_str: str, hours: int) -> str:
+    """Add hours to a datetime string."""
+    try:
+        # Remove timezone suffix for parsing
+        dt_str = datetime_str.rstrip("Z")
+        dt = datetime.fromisoformat(dt_str)
+        dt = dt + timedelta(hours=hours)
+        return dt.isoformat()
+    except Exception:
+        return datetime_str
+def main():
+    print("Starting Calendar MCP Server (Google Calendar Sandbox)...", file=sys.stderr)
+    sys.stderr.flush()
+    host = os.getenv("CALENDAR_MCP_HOST", "localhost")
+    env_port = os.getenv("PORT", "").strip()
+    def _port_from_registry(default_port: int) -> int:
+        """Resolve port from registry.yaml as a static fallback."""
+        try:
+            if yaml is None:
+                return default_port
+            registry_path = Path(__file__).resolve().parent.parent / "registry.yaml"
+            if not registry_path.exists():
+                return default_port
+            data = yaml.safe_load(registry_path.read_text()) or {}
+            service_name = Path(__file__).resolve().parent.name  # 'calendar'
+            for srv in (data.get("servers") or []):
+                if isinstance(srv, dict) and srv.get("name") == service_name:
+                    env = srv.get("env") or {}
+                    port_str = str(env.get("PORT") or "").strip().strip('\"')
+                    return int(port_str) if port_str else default_port
+        except Exception:
+            return default_port
+        return default_port
+    if env_port.isdigit():
+        port = int(env_port)
+    else:
+        port = _port_from_registry(8841)
+    # FastMCP.run does not accept 'host' in some versions; bind via env if needed.
+    mcp.run(transport="http", port=port)
+if __name__ == "__main__":
+    main()