THRONE
See report Verify server

registry / record

@gongrzhe/server-gmail-autoauth-mcp

npm / sealed 2026-06-12 / No. 37bb21db

re-scan this server gate it in your CI
> throne registry @gongrzhe/server-gmail-autoauth-mcp sealed
This server runs. It just needs your API keythe server installs and starts, then exits asking for an API key — Error: OAuth keys file not found. Please place gcp-oauth.keys.json in current directory or /home/worker/.gmail-mcp
receiptsealed evidence
scan id
37bb21db0fc2431b83c8e33b42e606ba
target
@gongrzhe/server-gmail-autoauth-mcp
sealed at
2026-06-12 18:49:16Z
evidence hash
sha256:19c7a375579fea4afe12f6debce8729ca0e4e47e715a36da4afc9a66b0d99779
01connectFAIL0ms

server never launched: server process exited with code 1 before the MCP handshake — stderr: Error: OAuth keys file not found. Please place gcp-oauth.keys.json in current directory or /home/worker/.gmail-mcp

02discoverSKIPPED0ms

not run — server never launched

03validate_schemasSKIPPED0ms

not run — server never launched

04smoke_test_toolsSKIPPED0ms

not run — server never launched

05error_handlingSKIPPED0ms

not run — server never launched

06streamingSKIPPED0ms

not run — server never launched

07resource_lifecycleSKIPPED0ms

not run — server never launched

08concurrent_callsSKIPPED0ms

not run — server never launched

09reconnectSKIPPED0ms

not run — server never launched

01connectFAIL0ms

server never launched: server process exited with code 1 before the MCP handshake — stderr: Error: OAuth keys file not found. Please place gcp-oauth.keys.json in current directory or /home/worker/.gmail-mcp

02discoverSKIPPED0ms

not run — server never launched

03validate_schemasSKIPPED0ms

not run — server never launched

04smoke_test_toolsSKIPPED0ms

not run — server never launched

05error_handlingSKIPPED0ms

not run — server never launched

06streamingSKIPPED0ms

not run — server never launched

07resource_lifecycleSKIPPED0ms

not run — server never launched

08concurrent_callsSKIPPED0ms

not run — server never launched

09reconnectSKIPPED0ms

not run — server never launched

chatgpt desktopemulation profile pending real-traffic captureCOMING SOON
SECURITY: REVIEW / 3 finding(s) / review material, not a verdict
LOWTHR-INSTALL-03 / Install-time script execution (npm lifecycle)

"prepare" runs on git-dependency installs and local dev (not registry installs): 'npm run build'

package/package.json
LOWTHR-NET-05 / Hardcoded outbound endpoints

1 non-local endpoint host(s) referenced in code — verify each is expected for this server's purpose: www.googleapis.com (package/dist/index.js:102)

package/dist/index.js:102
LOWTHR-VER-11 / Outdated MCP SDK or protocol version pin

@modelcontextprotocol/sdk pinned pre-1.0: '^0.4.0'

package/package.json
VERDICT: NEEDS YOUR API KEYSANDBOXED RUN — submitted server executed in a disposable microVM — compatibility not assessable: needs credentials: the server installs and starts, then exits asking for an API key — Error: OAuth keys file not found. Please place gcp-oauth.keys.json in current directory or /home/worker/.gmail-mcp / security: review — 3 finding(s), 0 highsealed by THRONE / No. 37bb21db / 2026-06-12
executed in a disposable microVM, created for this scan and destroyed after it. nothing outlives a run.

maintainer of this server? challenge this record: hello@usethrone.dev. tell us what we got wrong and we re-run it in the open.

this page renders the stored record of a real run. nothing on it is asserted without the execution that proved it.