apple-mail-mcp-server
The Apple Mail MCP Server provides programmatic access to Apple Mail on macOS, enabling AI assistants to read, send, search, and manage emails. Key capabilities:
Account & Mailbox Management
List accounts and mailboxes
Create, rename/move, and delete mailboxes
Reading & Searching Email
Search messages by sender, subject, body, date range, read/unread/flagged status, attachments, etc. (supports IMAP, local DB, or AppleScript backends)
Fetch full message details (body, headers, attachments) and retrieve entire conversation threads
Message Actions
Mark as read/unread, flag/unflag, change flag color, move, or delete messages (to Trash)
Save attachments to disk or read attachment content inline
Draft Management
Create new drafts (new email, reply, or forward) with HTML bodies and file attachments; optionally send immediately
Update or delete existing drafts
Rules Management
List, create, update, and delete Mail.app filtering rules with conditions (sender, subject, body, headers) and actions (move, flag, mark read, forward, delete, etc.)
Template Management
List, read, save, render (with variable substitution and reply-context), and delete email templates
Statistics
Aggregate inbox analytics (message volume, read/unread/flagged counts, top senders) over a configurable time window
Diagnostics
Diagnose mail access, search backend availability, and configuration health for an account/mailbox
Provides programmatic access to Apple Mail, enabling AI assistants to read, send, search, and manage emails on macOS, including message actions, drafts, mailbox CRUD, and rules management.
Supports Gmail accounts configured in Apple Mail, with optional IMAP-based fast search and management via app-specific passwords.
Supports iCloud email accounts configured in Apple Mail, with optional IMAP-based fast search and management via keychain-stored app-specific passwords.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@apple-mail-mcp-servershow me my last 5 unread emails"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
Apple Mail PingZero MCP Server
An MCP server that provides programmatic access to Apple Mail, enabling AI assistants like Claude to read, send, search, and manage emails on macOS.
Built on
apple-mail-fast-mcpby Morgan Jeffries, MIT-licensed, whose architecture this project inherits wholesale. See Credits and origins.
⚠️ Pre-1.0 — expect breaking changes. The MCP tool surface (tool names, parameters, return shapes) is still evolving as the project matures. Pin to a specific commit or tag when installing from git, and review the CHANGELOG before upgrading.
apple-mail-pz-mcp --versiontells you exactly what you are running.
Tools (27)
Grouped by lifecycle (13 read-only, 14 mutating):
Discovery —
get_server_version,diagnose_mail_access,list_accounts,list_mailboxes,list_rules,list_templates: inspect access/search health and enumerate what's configured (no external cache — call per account).Read —
search_messages,get_messages,get_thread,get_statistics,get_attachment_content,get_template,render_template: read messages/threads, aggregate inbox stats, pull an attachment's content inline, and render templates.Message actions —
update_message(read/flag/move in one pass),delete_messages(→ Trash),save_attachments(to disk, byte-capped).Drafts —
create_draft(new / reply / forward, optionallysend_now),update_draft,delete_draft.Mailbox CRUD —
create_mailbox,update_mailbox(rename or move),delete_mailbox.Rules —
create_rule,update_rule,delete_rule.Templates (write) —
save_template,delete_template.
Destructive operations (delete_*, create_rule with move/forward/delete actions, create_draft with send_now=true) prompt for confirmation via MCP elicitation. See docs/reference/TOOLS.md for full parameters and return shapes.
Related MCP server: mail-mcp
Prerequisites
macOS 10.15 (Catalina) or later
Python 3.10 or later
Apple Mail configured with at least one account
uv (recommended) or pip
Installation
All 27 tools install by default. Destructive tools confirm each action through MCP elicitation and fail closed if the host cannot prompt — so on Claude Desktop and Cowork, which don't implement elicitation yet, those tools return a confirmation error instead of acting. If you'd rather not see them at all, run with
--read-only(or tick Read-only mode when installing the.mcpb).
Claude Desktop — install from file (.mcpb)
The lowest-friction path for Claude Desktop: grab the apple-mail-pz-mcp-<version>.mcpb
bundle from the Releases
page and open it (or drag it into Settings → Extensions). Claude Desktop manages Python
and dependencies for you via uv — no manual venv, no config JSON to hand-edit. macOS only.
To build the bundle yourself: ./scripts/build-mcpb.sh → dist/apple-mail-pz-mcp-<version>.mcpb
(requires Node for the mcpb packer).
Claude Code — install as a plugin
One command in Claude Code, no config JSON:
/plugin marketplace add wylieswanson/apple-mail-pz-mcp
/plugin install apple-mail-pz@apple-mail-pz-mcpClaude Code launches the server via uv run from the plugin directory (resolves dependencies
from the bundled pyproject.toml/uv.lock — no PyPI needed), so you only need uv installed.
macOS only. See docs/reference/TOOLS.md for IMAP setup and the
read/write split.
Codex CLI
Add to ~/.codex/config.toml (or run codex mcp add). Point at the installed console
script rather than uv run --directory …: Codex's startup_timeout_sec defaults to 10
seconds, and a cold uv dependency resolve will exceed it.
[mcp_servers.apple-mail]
command = "apple-mail-pz-mcp" # or the absolute path from `which apple-mail-pz-mcp`
env = { APPLE_MAIL_MCP_LOCAL_DB = "1" }
startup_timeout_sec = 30
# Read-only if you want it — then `default_tools_approval_mode = "auto"` is safe,
# because every exposed tool is read-only.
# args = ["--read-only"]
# default_tools_approval_mode = "auto"Two Codex-specific notes. Elicitation landed around v0.119; on older builds the write
tools fail closed exactly as they do on Cowork. And Codex's per-tool approval_mode means
you do not need the two-connector split below — set approval_mode per tool instead.
uv tool / uvx (any MCP client)
Not published to PyPI — install straight from the repo:
# install the console script onto your PATH (recommended)
uv tool install git+https://github.com/wylieswanson/apple-mail-pz-mcp
# or run it on demand, no install
uvx --from git+https://github.com/wylieswanson/apple-mail-pz-mcp apple-mail-pz-mcpuv tool install freezes the git commit into the build, so apple-mail-pz-mcp --version
reports exactly what you installed. Then point your MCP client at the installed script:
{
"mcpServers": {
"apple-mail": { "command": "/Users/you/.local/bin/apple-mail-pz-mcp" }
}
}Use the absolute path from which apple-mail-pz-mcp: MCP hosts spawn servers with a
restricted PATH, so a bare command name is a common cause of "server failed to start".
From source (development)
git clone https://github.com/wylieswanson/apple-mail-pz-mcp.git
cd apple-mail-pz-mcp
uv sync --devConfiguration
Skip this section if you installed the
.mcpbbundle — it wires up Claude Desktop for you. The manual config below is for source installs.
Add to your Claude Desktop config (~/Library/Application Support/Claude/claude_desktop_config.json). uv sync installs a console script at .venv/bin/apple-mail-pz-mcp; point Claude Desktop at its absolute path — it's the most reliable form under Claude Desktop's restricted spawn environment (no reliance on uv being on PATH):
{
"mcpServers": {
"apple-mail": {
"command": "/path/to/apple-mail-pz-mcp/.venv/bin/apple-mail-pz-mcp"
}
}
}(Equivalent alternative if you prefer driving it through uv: "command": "uv", "args": ["--directory", "/path/to/apple-mail-pz-mcp", "run", "apple-mail-pz-mcp"].)
Read-only mode and the elicitation caveat
Every destructive tool confirms the operation through MCP elicitation and fails closed: if the client can't prompt the user, the tool returns error_type: "confirmation_required" rather than proceeding. That is a deliberate security property — an earlier version silently proceeded, which was a real bypass of the confirmation gate.
The consequence is that the write tools only function on a host that implements elicitation:
Host | Elicitation | Write tools |
Claude Code | Yes | Work |
Codex CLI ≥ ~v0.119 | Yes | Work |
Codex CLI, older | No | Fail closed |
Claude Desktop / Cowork | No ( | Fail closed |
They are still installed by default, because that's a host limitation rather than a property of this server, and hosts are fixing it. If you'd rather the model not see tools it cannot use on your host, start the server in read-only mode — it exposes the 13 read tools and skips registering the 14 mutating ones:
apple-mail-pz-mcp --read-only # flag
APPLE_MAIL_MCP_READ_ONLY=1 apple-mail-pz-mcp # or env var, for hosts that only pass envThe .mcpb bundle surfaces this as a Read-only mode checkbox at install time. Whatever you do, don't work around the gate by making confirmation pass silently.
Optional: split read / write servers
Claude Desktop prompts per-tool for permission. If you want to batch-approve the 13 read tools (version / diagnose / list / search / get) and still gate the 14 mutating tools per call, run the connector twice — once with --read-only, once without — under two separate mcpServers entries:
{
"mcpServers": {
"apple-mail-read": {
"command": "/path/to/apple-mail-pz-mcp/.venv/bin/apple-mail-pz-mcp",
"args": ["--read-only"]
},
"apple-mail-write": {
"command": "/path/to/apple-mail-pz-mcp/.venv/bin/apple-mail-pz-mcp"
}
}
}The --read-only server exposes only the 13 read tools, so Claude Desktop's per-server permission UI naturally groups them. The full server still gates writes individually. Trade-off: 2× connector processes. See docs/reference/TOOLS.md for the per-tool classification and a note on MCP annotation hints (readOnlyHint / destructiveHint / idempotentHint) which forward-compatible hosts may use to provide the same UX without the split.
What version am I running?
Three ways to ask, depending on who's asking.
From a shell — reports the release, the commit it was built from, when that commit was made, and (for an installed build) when the wheel was built:
$ apple-mail-pz-mcp --version
apple-mail-pz-mcp 0.11.1 | commit 0ef7dd33b850 | committed 2026-07-09T14:40:02-07:00 | built 2026-07-09T22:29:46+00:00From an MCP host — the server reports its version in serverInfo at initialize, so hosts that show connector versions will display it without any tool call.
From an agent mid-conversation — diagnose_mail_access returns a server block:
{
"version": "0.11.1",
"commit": "0ef7dd33b850",
"commit_date": "2026-07-09T14:40:02-07:00",
"built_at": "2026-07-09T22:29:46+00:00",
"dirty": false,
"source": "build",
"read_only": false
}source tells you how much to trust the commit: build means it was frozen into the wheel at build time, git means it was read live from a source checkout (and dirty says whether that tree had uncommitted changes), and unknown means the package was installed from an sdist built outside a repo — in which case the commit is genuinely unrecoverable and the server says so rather than guessing.
Permissions
On first run, macOS will prompt for Automation access. Grant permission in: System Settings > Privacy & Security > Automation > Terminal (or your IDE)
Experimental: local Mail index accelerator
This fork can optionally accelerate search_messages metadata queries by
reading Apple Mail's local Envelope Index SQLite database in read-only mode:
{
"mcpServers": {
"apple-mail-read": {
"command": "/path/to/apple-mail-pz-mcp/.venv/bin/apple-mail-pz-mcp",
"args": ["--read-only"],
"env": { "APPLE_MAIL_MCP_LOCAL_DB": "1" }
}
}
}What it covers today: account/mailbox-scoped search_messages filters for
sender, subject, read/unread, flagged, dates, received_within_hours, and
limit. Supported metadata-only queries prefer the local DB first, then fall
back to IMAP or AppleScript. Body/text search, has_attachment, and
attachment metadata still use IMAP when configured or AppleScript fallback.
This path requires Full Disk Access for the host app because it reads
~/Library/Mail/V*/MailData/Envelope Index. If the local database is missing,
unreadable, or has an unexpected schema, the connector falls back to
AppleScript. The database is opened with mode=ro; the connector never writes
to Mail's store. When APPLE_MAIL_MCP_LOCAL_DB=1 is set, the server emits a
one-time startup warning if the Envelope Index is unavailable so you can catch
Full Disk Access problems without waiting for a slow fallback query.
Run diagnose_mail_access(account="iCloud", mailbox="INBOX") from your MCP
client to see whether the running process can read Mail's store and which
search backends are configured. search_messages responses also include a
search_backend field (imap, local-db, applescript, or source) and
search_elapsed_ms. If diagnostics report mail_directory_readable: false,
grant Full Disk Access to the exact app that launches the server (Claude
Desktop, iTerm, Terminal, or your IDE), then fully quit and reopen that app.
Optional: faster search via IMAP
search_messages works out of the box via AppleScript. For large mailboxes (thousands of messages), AppleScript's whose clause can take 1–5 seconds per query. If you want faster server-side search, you can enable IMAP delegation per account by adding a Keychain entry.
How it works. If credentials exist for an account, the server uses IMAP (fast, server-side SEARCH). Otherwise — or on any IMAP failure (offline, wrong password, timeout) — it silently falls back to AppleScript. You never lose functionality; you only gain speed when IMAP is configured and reachable. The normal opt-in is a Keychain entry (below); an environment-variable fallback (further down) covers contexts where the Keychain isn't usable.
One-time setup per account — the setup-imap subcommand walks you through it:
apple-mail-pz-mcp setup-imap --account iCloudSubstitute the Mail.app account name exactly — whatever it's labeled in Mail.app (e.g. iCloud, Gmail, "Yahoo!"). The guided flow (#384):
detects your provider from the account's IMAP host and points you at the right app-password page — iCloud (account.apple.com → App-Specific Passwords), Gmail (myaccount.google.com/apppasswords), Yahoo, Outlook, Fastmail (generic guidance for anything else) — with the provider's 2FA steps, and offers to open the page in your browser;
explains that this is a scoped, revocable app-specific password — limited to that one account — unlike granting full disk access;
looks up the account's primary email from Mail.app (override with
--email, which is persisted so runtime uses the same login — see the iCloud quirk below);prompts via
getpassso the password never lands in shell history;writes to Keychain at
apple-mail-fast-mcp.imap.<account>(idempotent — re-running with a new password updates the entry; pre-renameapple-mail-mcp.imap.entries still resolve via a read-through fallback removed at 1.0.0);opens an IMAP connection and runs a real LOGIN to confirm the password works. On rejection it rolls back the Keychain entry and lets you paste again (up to 3 tries) so a bad password never leaves a broken item behind.
If you see a one-time "security wants to use the 'login' keychain" prompt on the next IMAP-backed call, click Always Allow.
To remove the entry later: apple-mail-pz-mcp setup-imap --account iCloud --uninstall.
Environment-variable fallback (uvx / headless / CI)
Some contexts have no usable Keychain: uvx runs (ephemeral binary paths break the Keychain ACL, causing re-prompts or failures), Docker / CI (no Keychain at all), and background services (the ACL prompt blocks forever with no UI attached). For those, you can supply the IMAP password via an environment variable instead:
APPLE_MAIL_MCP_IMAP_PASSWORD_<SUFFIX><SUFFIX> is the Mail.app account name uppercased, with each run of non-alphanumeric characters collapsed to a single underscore and leading/trailing underscores trimmed:
Account name | Environment variable |
|
|
|
|
|
|
|
|
When set to a non-empty value, the env var is used in preference to any Keychain entry for that account (it's checked first, with no security shell-out). An empty or whitespace-only value is ignored and the Keychain path is used. The lookup composes with the name↔UUID fallback, so an env var keyed on the account name is still found when a caller passes the account's UUID.
⚠️ Security tradeoff. Environment variables are far less private than the Keychain — they're visible via
ps -E,launchctl getenv,/proc-style introspection, and process crash dumps, and they're easy to leak into logs or shell history. Use this only when the Keychain genuinely isn't an option (uvx, Docker, CI, headless). For Claude Desktop and standard local installs, stick withsetup-imap+ Keychain.Caveat: the name→suffix mapping isn't reversible —
Yahoo!andYahooboth map toYAHOO, and an account name with no ASCII letters/digits has no env-var form (use the Keychain for those).
Verifying the setup. The setup-imap command does this for you. If you want to spot-check post-hoc:
uv run python -c "from apple_mail_fast_mcp.mail_connector import AppleMailConnector; \
print(AppleMailConnector().search_messages(account='<ACCOUNT_NAME>', limit=1))"If IMAP is working, the call returns in ~1 second. If it logs a WARNING about falling back (visible with --log-level=DEBUG), check that the account name matches Mail.app's account name exactly and that the email in your Keychain entry matches what email addresses of account returns.
Known provider quirks.
iCloud: the IMAP server accepts
@icloud.com/@me.comaliases as LOGIN username, not the Apple ID email. The server (andsetup-imap) readsemail addresses of accountfrom Mail.app for that reason. If your iCloud Apple ID is a third-party address (e.g. a@gmail.comApple ID) and Mail.app reports no@icloud.comaddress for the account, auto-detection can't find the right login —setup-imapwill fail with a hint to re-run with--email <your @icloud.com/@me.com address>. That--emailvalue is persisted (in~/.apple_mail_mcp/imap_login_overrides.json) so runtime resolution uses the same login (#341). It's a general override — use it for any account whose auto-detected IMAP login is wrong.Yahoo: app passwords have been progressively deprecated; the option may not be available for all accounts. If Yahoo's account-security page doesn't show the option, IMAP setup isn't possible for that account and AppleScript is the only path.
Gmail: requires 2-Step Verification enabled. If your Google Workspace admin has disabled app passwords at the tenant level, IMAP setup isn't possible for that account.
Gmail thread retrieval — All Mail visibility tradeoff.
find_thread_members(used internally by thread-aware queries) is fastest when[Gmail]/All Mailis exposed over IMAP — that path is ~5 round-trips, mailbox-count-independent. Many users hide All Mail (Gmail Settings → Forwarding and POP/IMAP → Folder size limits → "Do not show in IMAP") because it duplicates every message. When hidden, the connector falls back to a per-mailbox X-GM-THRID iteration (still ~6× faster than the universal BFS, but proportional to your label count — ~25s on a 92-label account). Expose All Mail if you want the headline speed; keep it hidden if you prefer the cleaner IMAP folder list.
Write operations (create_draft, update_draft, including the send_now=true send path) always use AppleScript regardless of IMAP configuration — these need Mail.app's compose UI.
Development
# Setup
uv sync --dev
# Common commands
make test # Run unit tests
make lint # Lint with ruff
make typecheck # Type check with mypy
make check-all # All checks (lint, typecheck, test, complexity, version-sync, parity)
make coverage # Coverage report
make test-integration # Integration tests (requires Mail.app)
# Validation scripts
./scripts/check_version_sync.sh # Version consistency
./scripts/check_client_server_parity.sh # Connector-server alignment
./scripts/check_complexity.sh # Cyclomatic complexity
./scripts/check_applescript_safety.sh # AppleScript safety auditBranch Convention
{type}/issue-{num}-{description} — e.g., feature/issue-42-thread-support
Architecture
server.py (FastMCP tools — thin orchestration, validation, elicitation gates)
-> mail_connector.py (dispatch + domain logic)
-> AppleScript path: subprocess.run(["osascript", ...]) -> Apple Mail.app (universal baseline)
-> IMAP fast path: imap_connector.py -> the account's IMAP server (when hinted + Keychain creds)Dispatch model. AppleScript is the always-available baseline. When a read/mutation call supplies
an account (and, where relevant, mailbox) hint and the account has Keychain IMAP credentials,
the connector takes a server-side IMAP fast path; on any IMAP failure it falls back to AppleScript, so
you never lose functionality — you only gain speed. See
docs/reference/ARCHITECTURE.md for the full dispatch model, the
dual-emit message-ID scheme, the drafts lifecycle, and the IMAP thread tiers.
server.py — MCP tool registration, input validation, confirmation (elicitation) gates, response formatting
mail_connector.py — AppleScript generation/execution + IMAP-fast-path dispatch
imap_connector.py — IMAP client + connection pool (search, fetch, bulk-mutation fast paths)
security.py — Input sanitization, audit logging, confirmation flows
utils.py — Pure functions: escaping, parsing, validation
exceptions.py — Typed exception hierarchy
Security
Local execution only (no cloud processing)
Uses existing Mail.app authentication; IMAP app-passwords (opt-in) live in the macOS Keychain, never in the repo or config
All inputs sanitized and AppleScript-escaped (defense against AppleScript injection)
Destructive operations require user confirmation via MCP elicitation; rate limits + audit logging on top
save_attachmentsis byte-capped (per-attachment + aggregate) against disk-fill DoS
Docs:
SECURITY.md — vulnerability-reporting policy
docs/SECURITY.md — user-facing security posture & privacy
docs/guides/THREAT_MODEL.md — STRIDE trust-boundary analysis
docs/guides/SECURITY_CHECKLIST.md — per-feature contributor checklist
Contributing
See CONTRIBUTING.md for development workflow, coding standards, and PR process.
Credits and origins
This project is a continuation of apple-mail-fast-mcp, created by Morgan Jeffries and released under the MIT License. Effectively all of the engineering that makes this server work is theirs:
the AppleScript connector and its hard-won gotchas — JSON emission via ASObjC, the
|name|:record-key quirk,whose-clause search;the IMAP fast path, connection pooling, and Gmail
X-GM-THRIDthread strategies;the security model — double sanitization, path-traversal-safe name validation, rate limiting, audit logging, and the fail-closed confirmation gate on every destructive tool;
the test discipline: 1544 unit, 35 e2e, and 62 integration tests, and the validation scripts that keep the docs honest.
That project itself succeeded apple-mail-mcp; the lineage is preserved in the CHANGELOG and in the Keychain read-through fallbacks, which still resolve credentials written under both earlier names.
The direction
apple-mail-pz-mcp (PingZero) evolves the tool surface for LLM efficiency rather than for human API aesthetics. The working thesis: an agent's cost is dominated by round-trips and by tokens spent re-reading what it already fetched. Two corollaries follow — the tool surface should cost as little as possible to have, and as few calls as possible to use — and both are measurable, so neither is taken on faith.
What this fork has changed so far
Made the thesis falsifiable. Nothing here gets optimized before it gets measured.
scripts/schema_budget.py(make schema-budget) measures thetools/listpayload every request carries before the model does any work: 17,281 bytes read-only, 40,885 bytes for all 27 tools.make check-allratchets it against a committed baseline, so growth must be re-recorded deliberately rather than drifting.evals/agent_tool_usability/task_eval.py(make eval-tasks) drives a real model to completion against the real MCP server and reports round-trips and tokens per completed task, grading the resulting mailbox rather than the model's summary. Each task declares the call budget a competent agent needs. Upstream's eval asks whether a model picks the right tool; this one asks what finishing costs.Acting on that: 1,032 bytes trimmed from every request (~279 tokens, 5.8% of the read-only surface) by deleting tool-description prose that carried no decision the model has to make.
Behaves predictably across MCP hosts, rather than only on the one it was developed against.
Hosts that serialize every tool argument as a string — Cowork, and Codex via schema flattening — no longer break array and object parameters. A stringified
"null"on an optional parameter now means omitted, where it previously became the one-element list["null"]and silently filtered a search to nothing while reporting success.Elicitation-less hosts are documented rather than designed around: the destructive-tool gate still fails closed, and users who don't want to see tools their host can't run pass
--read-only. See the compatibility matrix in AGENTS.md.Read-only is opt-in, not the default — via
--read-only,APPLE_MAIL_MCP_READ_ONLY=1, or a checkbox when installing the.mcpb. Writes are a first-class mode.First-class Codex CLI setup, and a root
AGENTS.mdso Claude Code, Cowork, and Codex read the same instructions.
Says what it is. --version, MCP serverInfo, and diagnose_mail_access all report the release, the git commit it was built from, when that commit was made, and whether writes are registered — including when Mail access is broken, which is when you'd ask. See What version am I running?.
Still inherited, still upstream's: bounded bodies and attachments, the fail-closed confirmation gate, the AppleScript connector, the IMAP fast path.
This is an independent fork, not a staging area for upstream. Nothing here presumes upstream wants any of it back — though anyone, upstream included, is free to take any of it under the MIT License. If you build on this in turn, the same courtesy applies: keep Morgan's copyright notice, because most of this code is theirs.
License
MIT — Copyright (c) 2025 Morgan. The original copyright notice is retained unmodified; this project adds no separate copyright claim.
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/wylieswanson/apple-mail-pz-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server