Guard Mail
# Secure email inbox protected against prompt injection attempts, malware, viruses and more This MCP server acts as a secure gateway between your AI agents and email systems, protecting against common email-borne threats before content ever reaches your LLM. Every message is scanned for prompt injection attempts, malware, viruses, spam, and other malicious content, ensuring your agents only process trusted, sanitized emails. ## Features * **Prompt Injection Protection** – Detects and neutralizes prompt injection attacks embedded in email content. * **Malware & Virus Scanning** – Prevents AI agents from processing malicious attachments and infected messages. * **Spam & Phishing Detection** – Filters unwanted and deceptive emails before they reach your workflows. * **Secure MCP Integration** – Connect AI agents through the Model Context Protocol (MCP) for controlled, secure email access. * **Safe Email Processing** – Delivers clean, validated email content while blocking or quarantining suspicious messages. * **Enterprise Ready** – Designed for AI-powered automation, customer support, assistants, and autonomous workflows. ## Ideal For * AI customer support agents * Email automation workflows * Autonomous assistants * Enterprise AI applications * Security-conscious MCP deployments Keep your AI productive while ensuring email remains a trusted source of information.
https://mail-guard--afluffysquirrel.run.tools
How to connect
-
Smithery (hosted)
1. Open https://smithery.ai/servers/aldred/guard-mail 2. Click Connect and complete OAuth in your MCP client (Claude, Cursor, VS Code, etc.) 3. MCP endpoint: https://mail-guard--afluffysquirrel.run.tools
Tools (11)
-
register_userRegister a new Guardmail user and provision a custom email address.
-
send_emailSend an email from the user's custom Guardmail address with automatic LLM Guard and ClamAV attachment scanning.
-
list_inboxList inbox emails with security scan results.
-
list_spamList emails flagged as spam by the spam filter.
-
list_quarantineList emails quarantined by LLM Guard or ClamAV.
-
get_emailGet full email details including the complete security scan report.
-
move_to_inboxManually move a quarantined or spam email back into the inbox. Use this when a user confirms an email was quarantined or flagged as spam in error and wants to retrieve it. The original security scan results are preserved — if LLM Guard or ClamAV flagged the email, its content stays redacted for MCP consumers after the move, but the user can read it in the web UI. Only emails currently in "quarantine" or "spam" can be moved; inbox/pending/scanning/sent emails cannot.
-
update_spam_settingsUpdate the user's spam filter configuration (rules, allow/block lists, sensitivity).
-
update_security_settingsUpdate the user’s security settings. Currently controls whether outbound (sent) emails are scanned by LLM Guard for prompt injection and toxicity before delivery. Inbound scanning is always on regardless of this setting.
-
get_quotaGet the authenticated user’s subscription tier and email quota usage: monthly/daily limits, how many emails (sent + received) have been used this month and today, and whether the account email is verified. Use this before sending a batch of emails to check remaining quota, or to tell the user which plan they are on and whether they need to verify their email or upgrade to send more.
-
get_attachment_urlMint a short-lived signed download URL for an attachment on an email the caller owns. Use this to fetch attachment bytes (e.g. to read a document or image the user sent/received). The returned URL is fetchable with a plain GET — no auth header needed — and expires after a few minutes; request a fresh URL if it has expired. Attachments flagged as malware by ClamAV are removed at scan time and cannot be downloaded.