Enables Google Search grounding for Gemini queries to retrieve current information and web data through the Gemini API integration.
Provides access to Gemini Deep Research for comprehensive multi-source analysis with citations, Gemini API for grounded queries with Google Search integration and code execution, and the Gemini Files API for document upload and analysis. Supports multiple Gemini models including gemini-2.5-flash, gemini-2.5-pro, and gemini-3-flash-preview.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@NotebookLM MCP Server (Security Hardened)Research quantum-resistant encryption standards for healthcare data"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
NotebookLM MCP Server (Security Hardened)
π The World's Most Advanced NotebookLM MCP Server
Zero-hallucination answers β’ Gemini Deep Research β’ 14 Security Layers β’ Enterprise Compliance
What's New 2026 β’ Deep Research β’ Document API β’ Create Notebooks β’ Security β’ Install
The only NotebookLM MCP with enterprise-grade security, post-quantum encryption, and full Gemini API integration.
Security-hardened fork of PleasePrompto/notebooklm-mcp β’ Maintained by Pantheon Security
β‘ TL;DR β What You Get
π Query your NotebookLM notebooks β source-grounded, zero-hallucination answers
π Create & manage notebooks programmatically β no manual clicking
ποΈ Generate audio overviews β podcast-style summaries of your docs
π¬ Generate video overviews β AI video summaries with 10 visual styles NEW
π Extract data tables β structured JSON from notebook sources NEW
π¬ Gemini 3 + Deep Research β latest models with thinking control (optional API) NEW
π Document API β upload & query PDFs without browser (optional API)
π 14 security layers β post-quantum encryption, audit logs, secrets scanning
β Enterprise compliance β GDPR, SOC2, CSSF ready
π‘ No API key required β core features work with just browser auth
π What's New in 2026
Latest: v2026.2.1 β Standard profile now exposes all key features (33 tools by default)
Version | Highlights |
v2026.2.1 | Standard profile expanded: 14 β 33 tools β notebook creation, audio, source management now visible by default |
v2026.2.0 | Gemini 3 models (2.5 retiring March 31), Video Overviews, Data Tables, thinking level, structured JSON, SDK 1.41 |
v2026.1.12 | Security hardening: constant-time auth, command injection fix, memory leak fixes, MCP SDK 1.26.0 |
v2026.1.11 | Notebook sync extraction for new Angular UI, |
v2026.1.10 | Tool description clarity for multi-LLM compatibility |
v2026.1.9 | Documentation & UX improvements, npm audit fix |
v2026.1.8 | Major dependency updates (zod 4.x, dotenv 17.x, post-quantum 0.5.4) |
v2026.1.7 | MCP Protocol UX: tool icons, human-friendly titles, behavior annotations |
v2026.1.4 | Defense-in-depth path validation, security hardening |
v2026.1.1 | Deep health checks, chat history extraction, context management |
Why Choose This MCP?
Capability | Other MCPs | This MCP |
Query NotebookLM | β Basic | β + session management, quotas |
Create notebooks programmatically | β | β UNIQUE |
Gemini Deep Research | β | β EXCLUSIVE |
Document API (no browser) | β | β EXCLUSIVE |
Post-quantum encryption | β | β Future-proof |
Enterprise compliance | β | β GDPR/SOC2/CSSF |
Video Overview generation | β | β NEW |
Data Table extraction | β | β NEW |
Chat history extraction | β | β |
Deep health verification | β | β |
Core NotebookLM (No API Key Required)
Tool | Description |
| Query notebooks with source-grounded answers |
| Add a notebook to your library |
| List all notebooks in library |
| Set active notebook |
| Update notebook metadata |
| Remove from library |
| Programmatically create new notebooks |
| Create multiple notebooks at once |
| Sync library with NotebookLM |
| List sources in a notebook |
| Add source to notebook |
| Remove source from notebook |
| Create podcast-style audio |
| Check audio generation status |
| Download generated audio |
| Create AI video overview (10 styles) |
| Check video generation status |
| Generate structured data table |
| Extract data table as JSON |
| List active sessions |
| Close a session |
| Reset session history |
| Check server & auth status |
| Initial authentication |
| Re-authenticate |
| Clean up local data |
| Check usage quotas |
| Set quota tier |
| View past queries |
| Extract browser chat history |
| Get project context |
| Export library backup |
Gemini API (Optional - Requires GEMINI_API_KEY)
Tool | Description |
| Comprehensive research agent |
| Fast grounded queries |
| Check research progress |
| Upload docs to Gemini |
| Query uploaded documents |
| Query large documents |
| List uploaded documents |
| Delete uploaded document |
Webhooks & Integrations
Tool | Description |
| Set up webhook notifications |
| List configured webhooks |
| Test webhook delivery |
| Remove a webhook |
Enterprise Compliance (16 additional tools)
See Compliance Documentation for full list.
Gemini Deep Research (v1.8.0)
The most powerful research capability for AI agents β now in your MCP toolkit.
v1.8.0 introduces the Gemini Interactions API as a stable, API-based research backend alongside browser automation. This gives your agents access to Google's state-of-the-art Deep Research agent.
Why This Matters
Challenge | Solution |
Browser UI changes break automation | Gemini API is stable and versioned |
Need comprehensive research but no research agent | Deep Research agent does it for you |
Want current information with citations | Google Search grounding built-in |
Need reliable, fast queries | API-based = no UI dependencies |
New Tools
deep_research β Comprehensive Research Agent
Runs Google's Deep Research agent (same as Gemini Advanced)
Takes 1-5 minutes for comprehensive, web-grounded analysis
Returns structured answers with citations and sources
Perfect for complex topics requiring multi-source synthesis
gemini_query β Fast Grounded Queries
Google Search grounding β Current information, not just training data
Code execution β Run calculations, data analysis
URL context β Analyze web pages on demand
Models:
gemini-3-flash-preview(default),gemini-3-pro-preview(powerful),gemini-2.5-flash(legacy)
get_research_status β Background Task Monitoring
Run deep research in the background and check progress:
Hybrid Architecture
π‘ Gemini API is completely optional! All core NotebookLM features (ask_question, notebooks, sessions, audio) work via browser automation with no API key required. The Gemini tools below are bonus features for users who want direct API access.
Gemini Configuration (Optional)
When to Use Which
Task | Best Tool | Why |
Questions about YOUR documents |
| Grounded on your uploaded sources |
Comprehensive topic research |
| Multi-source synthesis with citations |
Current events / recent info |
| Live web data |
Code calculations |
| Reliable computation |
Analyze a webpage |
| Direct page analysis |
Quick PDF/document analysis |
| Fast API, no browser (NEW!) |
π Document API (v1.9.0)
Upload and query documents directly via Gemini API β no browser automation needed.
v1.9.0 introduces the Gemini Files API for fast, reliable document analysis. Upload PDFs, analyze them instantly, and delete when done.
Why This Matters
Feature | Browser Mode | Document API |
Speed | Seconds | Milliseconds |
Reliability | UI-dependent | API-stable |
File Support | Via NotebookLM | 50MB PDFs, 1000 pages |
Retention | Permanent | 48 hours |
Setup | Auth + cookies | Just API key |
New Tools
upload_document β Fast Document Upload
Upload any document to Gemini for instant querying:
Supported: PDF (50MB, 1000 pages), TXT, MD, HTML, CSV, JSON, DOCX, images, audio, video
48-hour retention β files auto-expire, or delete manually
Returns a file ID for querying
query_document β Ask Questions About Documents
Full document understanding (text, tables, charts, diagrams)
Multi-document queries (compare multiple files)
Fast API response (no browser wait)
list_documents β See All Uploaded Files
Shows file names, sizes, MIME types, and expiration times.
delete_document β Clean Up Sensitive Files
Immediately remove files (don't wait for 48h expiration).
Workflow Example
Auto-Chunking for Large PDFs (v1.10.0)
No file size limits β PDFs of any size are automatically handled.
When you upload a PDF that exceeds Gemini's limits (50MB or 1000 pages), the system automatically:
Detects the oversized PDF
Splits it into optimal chunks (500 pages each)
Uploads all chunks in parallel
Returns chunk metadata for querying
query_chunked_document β Query All Chunks at Once
For chunked documents, use this tool to query all parts and get an aggregated answer:
When to Use Document API vs NotebookLM
Scenario | Use |
Quick one-off document analysis | Document API β fast, no setup |
Building a permanent knowledge base | NotebookLM β permanent storage |
Analyzing sensitive documents | Document API β 48h auto-delete |
Multi-source research over time | NotebookLM β organized notebooks |
CI/CD pipeline document processing | Document API β API-native |
Large PDFs (1000+ pages) | Document API β auto-chunking |
Programmatic Notebook Creation (v1.7.0+)
Create NotebookLM notebooks entirely from code β no manual clicks required.
Most MCP servers can only read from NotebookLM. This one can create notebooks, add sources, and generate audio β all programmatically.
create_notebook β Build Notebooks Instantly
Create a complete notebook with multiple sources in one command:
Supported source types:
URL β Web pages, documentation, articles
File β PDF, DOCX, TXT, and more
Text β Raw text, code snippets, notes
batch_create_notebooks β Scale Up
Create up to 10 notebooks in a single operation:
Perfect for:
Setting up project documentation libraries
Onboarding new team members with curated knowledge bases
Creating topic-specific research notebooks in bulk
manage_sources β Dynamic Source Management
Add or remove sources from existing notebooks:
generate_audio β Audio Overview Creation
Generate NotebookLM's famous "Audio Overview" podcasts programmatically:
sync_notebook β Keep Sources Updated
Sync notebook sources from a local directory:
Why This Matters
Traditional Workflow | With This MCP |
Manually create notebook in browser |
|
Click "Add source" for each document | Batch add in single command |
Navigate UI to generate audio |
|
Update sources by hand |
|
Your agent can now build entire knowledge bases autonomously.
π¬ Video Overviews & Data Tables (v2026.2.0)
Generate AI-powered visual summaries and extract structured data from any notebook β all programmatically.
NotebookLM's Studio panel now offers Video Overviews and Data Tables alongside Audio Overviews. This release brings full automation for both.
generate_video_overview β AI Video Summaries
Generate visual video overviews of your notebook content with 10 visual styles:
Style | Description |
| Let NotebookLM choose the best style (default) |
| Clean presentation style |
| Hand-drawn whiteboard aesthetic |
| Cute illustrated style |
| Anime-inspired visuals |
| Watercolour painting style |
| Retro print aesthetic |
| Traditional heritage style |
| Paper-craft visual style |
| Custom visual style |
Two formats:
Explainer β Full explanation (5-15 min)
Brief β Quick summary (1-3 min)
get_video_status β Check Generation Progress
Video generation takes 3-10 minutes. Check progress:
generate_data_table β Structured Data Extraction
Generate a structured table from your notebook sources. NotebookLM extracts key information into rows and columns:
get_data_table β Extract Table as JSON
Extract the generated table as structured JSON for processing:
When to Use Which Studio Feature
Task | Best Tool | Why |
Podcast-style audio summary |
| Shareable audio content |
Visual presentation of research |
| Engaging video summary |
Structured data for analysis |
| Machine-readable JSON |
Quick status check |
| Non-blocking progress |
π Query History & Chat Extraction (v2026.1.0)
Track your research and recover conversations from NotebookLM notebooks.
get_query_history β Review Past Research (v1.10.8)
All queries made through the MCP are automatically logged for review:
Automatic logging β every Q&A pair saved with metadata
Search β find specific topics across all queries
Filter β by notebook, session, or date
Quota tracking β see query counts and timing
get_notebook_chat_history β Extract Browser Conversations (v2026.1.0)
Extract conversation history directly from a NotebookLM notebook's chat UI with context management to avoid overwhelming your AI context window:
Quick audit (preview mode):
Returns message counts without content β test the water before extracting.
Export to file (avoids context overflow):
Dumps full history to disk instead of returning to context.
Paginate through history:
Page through large histories without loading everything at once.
Returns:
Use cases:
Recover conversations made directly in the NotebookLM browser (not tracked by MCP)
Audit research β see what queries were made in a notebook
Resume context β pick up where a previous session left off
Quota reconciliation β understand why quota seems off
Why This Fork?
The original NotebookLM MCP is excellent for productivity β but MCP servers handle sensitive data:
Browser sessions with Google authentication
Cookies and tokens stored on disk
Query history that may contain proprietary information
This fork adds 14 security hardening layers to protect that data.
Security Features
Layer | Feature | Protection |
π | Post-Quantum Encryption | ML-KEM-768 + ChaCha20-Poly1305 hybrid |
π | Secrets Scanning | Detects 30+ credential patterns (AWS, GitHub, Slack...) |
π | Certificate Pinning | Blocks MITM attacks on Google connections |
π§Ή | Memory Scrubbing | Zeros sensitive data after use |
π | Audit Logging | Tamper-evident logs with hash chains |
β±οΈ | Session Timeout | 8h hard limit + 30m inactivity auto-logout |
π« | MCP Authentication | Token-based auth with brute-force lockout |
π‘οΈ | Response Validation | Detects prompt injection attempts |
β | Input Validation | URL whitelisting, sanitization |
π¦ | Rate Limiting | Per-session request throttling |
π | Log Sanitization | Credentials masked in all output |
π | MEDUSA Integration | Automated security scanning |
π₯οΈ | Cross-Platform | Native support for Linux, macOS, Windows |
Post-Quantum Ready
Traditional encryption (RSA, ECDH) will be broken by quantum computers. This fork uses hybrid encryption:
ML-KEM-768: NIST-standardized post-quantum key encapsulation
ChaCha20-Poly1305: Modern stream cipher (immune to timing attacks)
Even if one algorithm is broken, the other remains secure.
Cross-Platform Support
Full native support for all major operating systems:
Platform | File Permissions | Data Directory |
Linux | Unix chmod (0o600/0o700) |
|
macOS | Unix chmod (0o600/0o700) |
|
Windows | ACLs via icacls (current user only) |
|
All sensitive files (encryption keys, auth tokens, audit logs) are automatically protected with owner-only permissions on every platform.
Enterprise Compliance (v1.6.0+)
Full compliance support for regulated industries:
Regulation | Features |
GDPR | Consent management, DSAR handling, right to erasure, data portability |
SOC2 Type II | Hash-chained audit logs, incident response, availability monitoring |
CSSF | 7-year retention, SIEM integration, policy documentation |
Compliance Tools (16 MCP tools)
See COMPLIANCE-SPEC.md for full documentation.
Installation
What Works Out of the Box (No API Key)
All core NotebookLM features work immediately with just browser authentication:
Feature | Tool | Description |
π Query notebooks |
| Get source-grounded answers from your documents |
π Manage library |
| Organize your notebook collection |
ποΈ Audio overviews |
| Create podcast-style summaries |
π¬ Video overviews |
| AI video summaries with 10 visual styles NEW |
π Data tables |
| Structured data extraction as JSON NEW |
π Create notebooks |
| Programmatically create new notebooks |
π Session management |
| Manage conversation context |
π Chat history |
| Extract past conversations |
β€οΈ Health checks |
| Verify authentication status |
Optional: Add GEMINI_API_KEY for bonus features like deep_research, gemini_query, and upload_document.
Claude Code
With Authentication + Gemini (Recommended)
Codex
Add to ~/.cursor/mcp.json:
Add to ~/.gemini/antigravity/mcp_config.json (macOS/Linux) or %USERPROFILE%\.gemini\antigravity\mcp_config.json (Windows):
With optional env vars:
Note: Antigravity does NOT support
${workspaceFolder}variables. Use absolute paths.
Add to ~/.config/opencode/opencode.json (global) or opencode.json in project root:
Note: OpenCode uses
"mcp"(not"mcpServers") and"command"is an array.
Add to ~/.codeium/windsurf/mcp_config.json:
Add to your VS Code settings.json:
Most MCP clients use this standard format:
Common config locations:
Client | Config File |
Claude Desktop |
|
Cursor |
|
Antigravity |
|
OpenCode |
|
Windsurf |
|
Quick Start
1. Install (see above)
2. Authenticate
Chrome opens β sign in with Google
3. Add your notebook
Go to notebooklm.google.com β Create notebook β Upload docs β Share link
4. Use it
5. Try Deep Research (NEW!)
Complete Tool Reference
Research Tools
Tool | Description | Backend |
| Query your NotebookLM notebooks | Browser |
| Comprehensive research with citations | Gemini API |
| Fast queries with grounding tools | Gemini API |
| Check background research progress | Gemini API |
Notebook Management
Tool | Description |
| Add notebook to library |
| List all notebooks |
| Get notebook details |
| Update notebook metadata |
| Remove from library |
| Set active notebook |
| Search by query |
Source Management (v1.7.0+)
Tool | Description |
| Add/remove/list sources |
| Create Audio Overview |
| Sync sources from local files |
Studio Features (v2026.2.0)
Tool | Description |
| Create AI video overview (10 visual styles, 2 formats) |
| Check video generation progress |
| Generate structured data table from sources |
| Extract data table as JSON (headers + rows) |
Session & System
Tool | Description |
| View active sessions |
| Close a session |
| Reset session chat |
| Server health check (with deep_check for UI verification) |
| Review past queries with search/filter |
| Extract browser conversations (pagination, file export) |
| Initial authentication |
| Re-authenticate |
| Deep cleanup utility |
| Library statistics |
| Check usage limits and remaining quota |
Compliance (v1.6.0+)
16 compliance tools for GDPR, SOC2, and CSSF requirements.
What Gets Protected
Data | Protection |
Browser cookies | Post-quantum encrypted at rest |
Session tokens | Auto-expire + memory scrubbing |
Query history | Audit logged with tamper detection |
Google connection | Certificate pinned (MITM blocked) |
Log output | Credentials auto-redacted |
API responses | Scanned for leaked secrets |
Gemini API key | Secure memory handling |
Configuration
All security features are enabled by default. Override via environment variables:
Multi-Session Mode
Run multiple Claude Code sessions simultaneously with isolated browser profiles:
Variable | Values | Description |
|
|
|
|
| Clone authenticated base profile into isolated instances |
How it works:
Each session gets its own Chrome profile (no lock conflicts)
Isolated profiles clone from the authenticated base profile
Auth coordination ensures cloning waits for any in-progress authentication
See SECURITY.md for complete configuration reference.
Security Scanning
Run MEDUSA security scanner:
Or integrate in CI/CD:
Comparison
vs Other NotebookLM MCPs
Feature | Others | @pan-sec/notebooklm-mcp |
Zero-hallucination Q&A | β | β |
Library management | β | β |
Create Notebooks Programmatically | β | β EXCLUSIVE |
Batch Create (10 notebooks) | β | β EXCLUSIVE |
Gemini Deep Research | β | β EXCLUSIVE |
Document API (no browser) | β | β EXCLUSIVE |
Auto-chunking (1000+ page PDFs) | β | β EXCLUSIVE |
Chat History Extraction | β | β NEW |
Deep Health Verification | β | β NEW |
Query History & Search | β | β |
Quota Management | β | β |
Source Management (add/remove) | β | β |
Audio Overview Generation | β | β |
Video Overview Generation (10 styles) | β | β NEW |
Data Table Extraction (JSON) | β | β NEW |
Gemini 3 + Thinking Control | β | β NEW |
Structured JSON Output | β | β NEW |
Sync from Local Directories | β | β |
Security & Compliance (Unique to This Fork)
Feature | Others | @pan-sec/notebooklm-mcp |
Cross-platform (Linux/macOS/Windows) | β οΈ Partial | β Full |
Post-quantum encryption | β | β ML-KEM-768 + ChaCha20 |
Secrets scanning | β | β 30+ patterns |
Certificate pinning | β | β Google MITM protection |
Memory scrubbing | β | β Zero-on-free |
Audit logging | β | β Hash-chained |
MCP authentication | β | β Token + lockout |
Prompt injection detection | β | β Response validation |
GDPR Compliance | β | β Full |
SOC2 Type II | β | β Full |
CSSF (Luxembourg) | β | β Full |
Bottom line: If you need more than basic queries, or care about security, there's only one choice.
Version History
Version | Highlights |
v2026.2.1 | π§ Standard profile expanded: 14 β 33 tools β all key features now visible by default |
v2026.2.0 | π Gemini 3 models (2.5 retiring March 31), Video Overviews (10 styles), Data Table extraction (JSON), thinking level control, structured JSON output, SDK 1.41 |
v2026.1.12 | π Security hardening β timing attack fix, command injection fix, 6 memory leak fixes, MCP SDK 1.26.0 |
v2026.1.11 | π Notebook sync extraction for Angular UI, |
v2026.1.10 | π Tool descriptions clarified for multi-LLM compatibility (OpenCode fix) |
v2026.1.9 | π Documentation & UX improvements, npm audit fix |
v2026.1.8 | π¦ Major dependency updates (zod 4.x, dotenv 17.x, post-quantum 0.5.4) |
v2026.1.7 | π¨ MCP Protocol UX β tool icons, titles, behavior annotations |
v2026.1.4 | π‘οΈ Defense-in-depth path validation, security hardening |
v2026.1.2 | π Multi-session auth coordination β lock system for concurrent sessions |
v2026.1.1 | π Deep health check β verifies NotebookLM chat UI actually loads |
v2026.1.0 | π Chat history extraction with context management, CalVer versioning |
v1.10.8 | Query history logging, quota tracking |
v1.10.0 | Auto-chunking for large PDFs (1000+ pages) |
v1.9.0 | Document API: upload, query, delete via Gemini Files API |
v1.8.0 | Gemini Deep Research, Query with Grounding, Background Tasks |
v1.7.0 | Programmatic notebook creation, batch operations, audio generation |
v1.6.0 | Enterprise compliance: GDPR, SOC2 Type II, CSSF |
v1.5.0 | Cross-platform support (Windows ACLs, macOS, Linux) |
v1.4.0 | Post-quantum encryption, secrets scanning |
Reporting Vulnerabilities
Found a security issue? Do not open a public GitHub issue.
Email: support@pantheonsecurity.io
Credits
Original MCP Server: GΓ©rΓ΄me Dexheimer β notebooklm-mcp
Security Hardening: Pantheon Security
Post-Quantum Crypto: @noble/post-quantum
Gemini API: Google AI
License
MIT β Same as original.
Security hardened with π by
Powered by Google Gemini 3 π
Full Security Documentation β’ Compliance Guide β’ Report Vulnerability