0
grade F
2 days ago
glama
Google Apps Script MCP Server
Enables comprehensive management of Google Apps Script projects, including project creation, file operations, and web app deployments. It features a security-first design with encrypted property management and automated security auditing for GAS environments.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
// key findings
🚨
Code appears obfuscated
1 file are unreadable to a human reviewer. Cannot audit what they do.
⚠️
Known vulnerabilities in dependencies: 7 high
Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.
🔐
You'll be asked for 2 credentials: ENCRYPTION_KEY, GOOGLE_SERVICE_ACCOUNT_KEY
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// required environment variables
This server reads these from
process.env. You'll be asked to provide them before it can run.🔐 secret
ENCRYPTION_KEY— export ="your-hex-encryption-key"config
GOOGLE_AUTH_CODE— export ="your-authorization-code"config
GOOGLE_CREDENTIALS_PATH— export ="/path/to/credentials.json"🔐 secret
GOOGLE_SERVICE_ACCOUNT_KEY— export ='{"type":"service_account","project_id":"your-project",...}'config
LOG_LEVEL— ログレベル - info// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 5 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[](https://m8ven.ai/mcp/utakata-google-apps-script-mcp-s33ict)commit: 799caa89c01baa1602c91e4fa2db15ae0116bc6c
code hash: 161d6972bdded9d335eb45244994959898b21d2f0616290edf3fbf82d0e28e53
verified: 4/18/2026, 6:24:24 PM