gdrive-mcp
Local, read-only MCP for searching your Google Drive.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for gdrive-mcp, derived from its capabilities.
AIVSS 4.7 · Medium
View MAESTRO 7-layer threat model →These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.
Overview
gdrive-mcp is a local, read-only MCP server for searching a user's Google Drive. Security surface: it uses Google credentials scoped for search/read; being read-only and local narrows the blast radius, but Drive content still flows into the agent as untrusted context.
Key features
- Search Google Drive
- Read-only access
- Local operation
- Google credential file auth
Use cases
- Find documents in Drive via an agent
- Read-only Drive search for RAG