imap-2-mcp

Read-only MCP server that makes IMAP mailboxes searchable for AI clients such as Claude. It combines live IMAP access with a local SQLite FTS5 index that also covers attachment contents (PDF/DOCX/XLSX/text), so full-text search stays fast even for large mailboxes (50k+ messages).

Strictly read-only: it never sends, deletes, moves, or flags mail.

See SPEC.md for the full design and rationale.

Features (Phase 1)

• Multi-account IMAP (SSL), read-only.

• Background sync worker: initial full index + periodic incremental updates.

• Attachment text extraction (PDF, DOCX, XLSX, plain text).

• MCP tools over streamable HTTP (client may run on another machine): list_mailboxes, list_recent, get_email, get_thread, search, search_attachments, get_attachment_text, sync_status.

Quick start

cp .env.example .env      # fill in your IMAP account(s) — never commit this file
docker compose up --build

The server listens on :8000 (streamable HTTP). The first sync runs on startup; large mailboxes take a while to index initially.

To run a one-off index pass without serving:

docker compose run --rm imap-2-mcp python -m imap2mcp --sync-once

Configuration

All config is via environment variables (see .env.example). Declare accounts with ACCOUNTS=name1,name2 and one ACCOUNT_<NAME>_* block each (HOST, PORT, SSL, USER, PASSWORD). Secrets live only in your local .env, which is git-ignored.

Connecting Claude

Add the streamable-HTTP endpoint as an MCP server, e.g. for Claude Code:

claude mcp add --transport http imap http://<home-server-ip>:8000/mcp

Security notes

• Phase 1 is unauthenticated — only expose it inside your home network (LAN/VPN such as Tailscale). Do not port-forward it to the internet.

• Phase 2 (public connector) will add OAuth/token auth and a TLS tunnel before any public exposure.

Status

Phase 1 implementation. Not yet hardened or load-tested against a live mailbox.