| Google Drive | google-drive.download_file_content | Data Access | high | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIASOC2ISO_27001 | Downloads a binary file from Drive; same exfiltration profile as content read. |
| Google Drive | google-drive.create_file | Content Management | medium | high | | SOC2ISO_27001 | Writes new content into the user's Drive; can introduce malicious or noncompliant material. |
| Google Calendar | google-calendar.update_event | Events | medium | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Modifies an existing event; can reschedule meetings and notify attendees. |
| Google Calendar | google-calendar.suggest_time | Events | low | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Computes free/busy windows across attendees to suggest a meeting time. |
| Google Calendar | google-calendar.respond_to_event | Events | low | high | | | Responds to a meeting invitation on the user's behalf. |
| Google Calendar | google-calendar.list_events | Events | medium | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIASOC2 | Reads events across calendars; titles and attendees can reveal confidential meetings (M&A, layoffs, customer escalations). |
| Google Calendar | google-calendar.list_calendars | Calendars | low | high | | | Enumerates calendars the user has access to. |
| Google Calendar | google-calendar.get_event | Events | medium | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIASOC2 | Reads a single event including attendees, description, and conferencing details. |
| Google Calendar | google-calendar.delete_event | Events | medium | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Cancels an event; sends cancellation notices to attendees and removes scheduling history. |
| Google Calendar | google-calendar.create_event | Events | medium | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Schedules a meeting on the user's calendar; sends invites to attendees on the user's behalf. |
| Gmail | gmail.unlabel_thread | Labels | low | high | | | Removes a label from all messages in a thread. |
| Gmail | gmail.unlabel_message | Labels | low | high | | | Removes a label from a message. |
| Gmail | gmail.search_threads | Messaging | high | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIASOC2ISO_27001 | Searches the user's mailbox; can surface PII, credentials, contracts, and material non-public information across all correspondence. |
| Gmail | gmail.list_labels | Labels | low | high | | | Lists existing mailbox labels. |
| Gmail | gmail.list_drafts | Messaging | low | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Enumerates the user's saved drafts. |
| Gmail | gmail.label_thread | Labels | low | high | | | Applies a label to all messages in a thread. |
| Gmail | gmail.label_message | Labels | low | high | | | Applies a label to a message; minor mailbox organization change. |
| Gmail | gmail.get_thread | Messaging | high | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIASOC2ISO_27001 | Reads an entire email thread; full message body and attachments enter agent context. |
| Gmail | gmail.create_label | Labels | low | high | | | Creates a new mailbox label. |
| Gmail | gmail.create_draft | Messaging | medium | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIASOC2 | Composes an email draft on the user's behalf; not auto-sent but visible to the user as their outgoing communication. |
| GitLab | gitlab.semantic_code_search | Search | medium | medium | | SOC2ISO_27001 | Semantic search across source; aggregates code context across repos and may expose secrets-in-code or IP. |
| GitLab | gitlab.search_labels | Search | low | high | | | Looks up labels in a project or group. |
| GitLab | gitlab.search | Search | medium | high | | SOC2ISO_27001 | Search across the GitLab instance; can surface code, issues, and merge requests beyond the agent's intended scope. |
| GitLab | gitlab.manage_pipeline | Pipelines | high | medium | ⚠ SoD | SOXCOSOSOC2ISO_27001NIST_CSF | Creates, retries, or cancels CI/CD pipelines; can trigger or block production deployments. |
| GitLab | gitlab.get_workitem_notes | Issues | low | high | | | Reads comments on a work item. |
| GitLab | gitlab.get_pipeline_jobs | Pipelines | low | high | | | Reads CI job metadata and status. |
| GitLab | gitlab.get_merge_request_pipelines | Pipelines | low | high | | | Lists CI pipelines associated with a merge request. |
| GitLab | gitlab.get_merge_request_diffs | Code & Release | medium | medium | | SOC2ISO_27001 | Reads code diffs; can surface secrets, customer data, or proprietary logic embedded in source. |
| GitLab | gitlab.get_merge_request_commits | Code & Release | low | high | | | Lists commits attached to a merge request. |
| GitLab | gitlab.get_merge_request | Code & Release | low | high | | | Reads merge request metadata and description. |
| GitLab | gitlab.get_mcp_server_version | Platform | low | high | | | Returns the MCP server version string. |
| GitLab | gitlab.get_issue | Issues | low | high | | | Reads a single issue's contents. |
| GitLab | gitlab.create_workitem_note | Issues | low | high | | | Adds a comment to a work item. |
| GitLab | gitlab.create_merge_request | Code & Release | medium | high | | SOC2ISO_27001 | Opens a merge request; entry point to production code change. |
| GitLab | gitlab.create_issue | Issues | low | high | | | Opens a new issue in a project. |
ⓘ | GitHub | github.update_pull_request_branch | Code & Release | medium | medium | | SOXCOSOSOC2ISO_27001 | Updates a PR head branch with the latest from base; rewrites branch state and can mask in-flight review feedback in change-controlled repos. |
ⓘ | GitHub | github.update_pull_request | Code & Release | low | high | | SOC2ISO_27001 | Updates pull request metadata such as title, body, base branch, or assignees. |
ⓘ | GitHub | github.update_gist | Repository | medium | high | | SOC2ISO_27001 | Updates an existing gist; public gists remain a leak surface for secrets and customer data. |
ⓘ | GitHub | github.unstar_repository | Operations | low | high | | | Removes a star on a repository as the authenticated user. |
ⓘ | GitHub | github.sub_issue_write | Issues | low | medium | | | Creates, links, or removes a sub-issue parent/child relationship. |
ⓘ | GitHub | github.star_repository | Operations | low | high | | | Adds a star on a repository as the authenticated user. |
ⓘ | GitHub | github.search_users | Identity & Admin | low | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Searches GitHub users by login, name, or email; returns identifiable PII at scale. |
ⓘ | GitHub | github.search_repositories | Repository | low | high | | | Searches repositories by name, description, or topic. |
ⓘ | GitHub | github.search_pull_requests | Code & Release | low | high | | | Searches pull requests across accessible repositories. |
ⓘ | GitHub | github.search_orgs | Identity & Admin | low | high | | | Searches GitHub organizations by name or attribute. |
ⓘ | GitHub | github.search_issues | Issues | low | medium | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Searches issues across accessible repositories; can surface PII reported in issue bodies at scale. |
ⓘ | GitHub | github.search_code | Repository | medium | high | | SOC2ISO_27001GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Searches code across accessible repositories; can surface secrets, credentials, or PII at scale and constitutes a data-exfiltration vector. |
ⓘ | GitHub | github.request_copilot_review | Operations | low | high | | | Requests an AI Copilot code review on a pull request; review verdict is advisory and does not satisfy required-reviewer rules. |
ⓘ | GitHub | github.push_files | Repository | medium | high | | SOXCOSOSOC2ISO_27001 | Commits a batch of file changes directly to a branch; combined with merge_pull_request, this enables ship-without-review. |
ⓘ | GitHub | github.pull_request_review_write | Code & Release | high | high | ⚠ SoD | SOXCOSOSOC2ISO_27001NIST_CSF | Submits a pull request review (approve, request changes, comment); the same principal can author and approve a PR, the textbook segregation-of-duties violation. |