72
/ 100
22 days ago
glama

m365-mcp-server

A production-ready MCP server that provides secure, delegated access to Microsoft 365 services including Email, SharePoint, OneDrive, and Calendar. It enables AI models to search messages, browse files, manage calendar events, and parse document contents using OAuth 2.1 authentication.

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

M8ven verifies MCPs across every public registry β€” install directly from whichever one you prefer.

// key findings
🚨
Known vulnerabilities in dependencies: 2 critical, 2 high
Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.
πŸ”
You'll be asked for 2 credentials: AZURE_CLIENT_SECRET, SESSION_SECRET
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// known CVEs in dependencies2 critical2 high1 low

Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.

criticalvitest@3.0.4GHSA-5xrq-8626-4rwp

When Vitest UI server is listening, arbitrary file can be read and executed

criticalvitest@3.0.4GHSA-9crc-q9x8-hgqq

Vitest allows Remote Code Execution when accessing a malicious website while Vitest API server is listening

high@modelcontextprotocol/sdk@1.0.0GHSA-8r9q-7v3j-jr4g

Anthropic's MCP TypeScript SDK has a ReDoS vulnerability

high@modelcontextprotocol/sdk@1.0.0GHSA-w48q-cv73-mx4w

Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default

lowuuid@11.0.5GHSA-w5hq-g745-h8pq

uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided

Depend on this server? Get alerted when its CVEs change.Watch this server free β†’
// required environment variables
This server reads these from process.env. You'll be asked to provide them before it can run.
configAZURE_CLIENT_IDβ€” your-client-id
πŸ” secretAZURE_CLIENT_SECRETβ€” your-client-secret
configAZURE_TENANT_IDβ€” your-tenant-id
configFILE_PARSE_MAX_OUTPUT_KBβ€” No 500 Max parsed text output size
configFILE_PARSE_TIMEOUT_MSβ€” No 30000 Document parsing timeout
configGRAPH_API_TIMEOUT_MS
configLOG_LEVELβ€” No info Log level (trace/debug/info/warn/error)
configMCP_SERVER_BASE_URLβ€” No http://localhost:3000 Public URL (HTTPS required in production)
configMCP_SERVER_PORTβ€” No 3000 Server port
configOAUTH_ACCESS_TOKEN_LIFETIME_SECS
configOAUTH_ALLOWED_REDIRECT_PATTERNSβ€” No - Comma-separated URI patterns for DCR
configOAUTH_ALLOW_DYNAMIC_REGISTRATION
configOAUTH_AUTH_CODE_LIFETIME_SECS
configOAUTH_REFRESH_TOKEN_LIFETIME_SECS
configOAUTH_REFRESH_TOKEN_REUSE_GRACE_SECS
configOAUTH_SIGNING_KEY_PRIVATEβ€” =<base64-encoded PEM>
configOAUTH_SIGNING_KEY_PUBLICβ€” =<base64-encoded PEM>
configPORT
configRATE_LIMIT_MAX_REQUESTS
configRATE_LIMIT_WINDOW_MS
configREDIS_URLβ€” redis://localhost:6379
πŸ” secretSESSION_SECRETβ€” $(openssl rand -hex 32)
configSESSION_TTL_SECONDS
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance β€” verified publishers only
We have 4 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/swamirama-m365-mcp-server-1586q9)](https://m8ven.ai/mcp/swamirama-m365-mcp-server-1586q9)
commit: 945ca14aa0f96d5829fa846330b5b0e782742cb5
code hash: 1f00c74eed069d6a98497535b1f77852d21020b858aba3df203570e4b5ec5d45
verified: 6/12/2026, 11:16:46 AM
view raw JSON β†’
m365-mcp-server Β· M8ven Trust Score | M8ven