generated: '2026-07-15' method: generated source: openapi/google-suite-openapi.yml description: Recommended x-agentic-access execution contracts, classified heuristically from the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind audience per deployment. See research/curity/agentic-governance/. summary: operations: 11 by_action_class: connected: 5 acting: 6 by_consequence: read: 5 write: 3 safety-critical: 1 physical: 2 human_in_the_loop_required: 1 operations: - path: /gmail/v1/users/{userId}/profile method: get operationId: getProfile x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/watch method: post operationId: watch x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/stop method: post operationId: stop x-agentic-access: action-class: acting consequence: safety-critical subject: required audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/drafts method: get operationId: listDrafts x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/drafts method: post operationId: createDraft x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/drafts/send method: post operationId: sendDraft x-agentic-access: action-class: acting consequence: physical subject: required audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/messages method: get operationId: listMessages x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/messages/send method: post operationId: sendMessage x-agentic-access: action-class: acting consequence: physical subject: required audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/labels method: get operationId: listLabels x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/threads method: get operationId: listThreads x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send - path: /gmail/v1/users/{userId}/settings/vacation method: put operationId: updateVacationSettings x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - gmail.labels - gmail.modify - gmail.readonly - gmail.send