Google Agentic Access
Google exposes 221 API operations that an AI agent could call, of which 139 are state-changing ‘acting’ operations. This is a recommended x-agentic-access execution contract — the scope, audience, consequence tier, short-lived token constraints, and escalation each action should carry before it is handed to an autonomous agent.
By consequence: 82 read, 119 write, 10 physical, and 10 safety-critical.
10 operations are classed safety-critical and should require human-in-the-loop approval at runtime.
Contracts are classified heuristically from the provider’s OpenAPI and refresh on every APIs.io network build; audience is bound per deployment. The model follows Curity’s Access Intelligence (apidays Munich 2026). Browse every provider’s agent contracts at agentic-access.apis.io.
By consequence
Highest-consequence actions
The physical and safety-critical operations an agent could invoke — the ones that most warrant scoped tokens, tight TTLs, and escalation. Full per-operation contracts are in the source below.
| Method | Path | Consequence | Human-in-loop |
|---|---|---|---|
| POST | /calendars/{calendarId}/acl | safety-critical | required |
| POST | /calendars/{calendarId}/acl/watch | safety-critical | required |
| PUT | /calendars/{calendarId}/acl/{ruleId} | safety-critical | required |
| PATCH | /calendars/{calendarId}/acl/{ruleId} | safety-critical | required |
| DELETE | /calendars/{calendarId}/acl/{ruleId} | safety-critical | required |
| POST | /channels/stop | safety-critical | required |
| POST | /channels/stop | safety-critical | required |
| POST | /gmail/v1/users/{userId}/settings/cse/keypairs/{keyPairId}:disable | safety-critical | required |
| POST | /gmail/v1/users/{userId}/stop | safety-critical | required |
| POST | /v2/{name}:disable | safety-critical | required |
| POST | /gmail/v1/users/{userId}/drafts/send | physical | conditional |
| POST | /gmail/v1/users/{userId}/messages/send | physical | conditional |
| POST | /gmail/v1/users/{userId}/settings/sendAs | physical | conditional |
| PUT | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail} | physical | conditional |
| PATCH | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail} | physical | conditional |
| DELETE | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail} | physical | conditional |
| POST | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail}/smimeInfo | physical | conditional |
| DELETE | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail}/smimeInfo/{id} | physical | conditional |
| POST | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail}/smimeInfo/{id}/setDefault | physical | conditional |
| POST | /gmail/v1/users/{userId}/settings/sendAs/{sendAsEmail}/verify | physical | conditional |
Source
Agentic Access
generated: '2026-07-15'
method: generated
source: openapi/books-api-openapi.yml, openapi/google-calendar-api-openapi.yml, openapi/google-docs-api-openapi.yml,
openapi/google-drive-activity-api-openapi.yml, openapi/google-drive-api-openapi.yml, openapi/google-drive-labels-api-openapi.yml,
openapi/google-gemini-api-openapi.yml, openapi/google-gmail-api-openapi.yml, openapi/google-sheets-api-openapi.yml
description: Recommended x-agentic-access execution contracts, classified heuristically from
the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind
audience per deployment. See research/curity/agentic-governance/.
summary:
operations: 221
by_action_class:
connected: 82
acting: 139
by_consequence:
read: 82
write: 119
safety-critical: 10
physical: 10
human_in_the_loop_required: 10
operations:
- path: /volumes
method: get
operationId: listVolumes
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /volumes/{volumeId}
method: get
operationId: getVolume
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/{userId}/bookshelves
method: get
operationId: listBookshelves
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/{userId}/bookshelves/{shelf}
method: get
operationId: getBookshelf
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/{userId}/bookshelves/{shelf}/volumes
method: get
operationId: listBookshelfVolumes
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /mylibrary/bookshelves
method: get
operationId: listMyBookshelves
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/books
token:
max-ttl: 3600
audit: none
- path: /mylibrary/bookshelves/{shelf}
method: get
operationId: getMyBookshelf
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/books
token:
max-ttl: 3600
audit: none
- path: /mylibrary/bookshelves/{shelf}/addVolume
method: post
operationId: addVolumeToBookshelf
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/books
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /mylibrary/bookshelves/{shelf}/clearVolumes
method: post
operationId: clearVolumesFromBookshelf
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/books
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /mylibrary/bookshelves/{shelf}/moveVolume
method: post
operationId: moveVolumeInBookshelf
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/books
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /mylibrary/bookshelves/{shelf}/removeVolume
method: post
operationId: removeVolumeFromBookshelf
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/books
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /mylibrary/bookshelves/{shelf}/volumes
method: get
operationId: listMyBookshelfVolumes
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/books
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}/acl/{ruleId}
method: get
operationId: googleGetaccesscontrolrule
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}/acl/{ruleId}
method: put
operationId: googleUpdateaccesscontrolrule
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /calendars/{calendarId}/acl/{ruleId}
method: patch
operationId: googlePatchaccesscontrolrule
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /calendars/{calendarId}/acl/{ruleId}
method: delete
operationId: googleDeleteaccesscontrolrule
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /calendars/{calendarId}/acl
method: get
operationId: googleReturnaccesscontrolrules
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}/acl
method: post
operationId: googleInsertaccesscontrolrule
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /calendars/{calendarId}/acl/watch
method: post
operationId: googleWatchaccesscontrolrules
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /calendars/{calendarId}/events/{eventId}
method: get
operationId: googleGetevent
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}/events/{eventId}
method: put
operationId: googleUpdateevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events/{eventId}
method: patch
operationId: googlePatchevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events/{eventId}
method: delete
operationId: googleDeleteevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events/{eventId}/instances
method: get
operationId: googleInsertevent
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}/events/{eventId}/move
method: post
operationId: googleMoveevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events
method: get
operationId: googleReturneventsfromcalendar
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}/events
method: post
operationId: googleCreateanevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events/import
method: post
operationId: googleImportevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events/quickAdd
method: post
operationId: googleQuickaddevent
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/events/watch
method: post
operationId: googleWatchevents
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}
method: get
operationId: googleGetcalendar
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /calendars/{calendarId}
method: put
operationId: googleUpdatecalendar
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}
method: patch
operationId: googlePatchcalendar
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}
method: delete
operationId: googleDeletecalendar
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars/{calendarId}/clear
method: post
operationId: googleClearcalendar
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /calendars
method: post
operationId: googleCalendar
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /users/me/calendarList/{calendarId}
method: get
operationId: googleGetcalendarlist
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/me/calendarList/{calendarId}
method: put
operationId: googleUpdatecalendarlist
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /users/me/calendarList/{calendarId}
method: patch
operationId: googlePatchcalendarlist
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /users/me/calendarList/{calendarId}
method: delete
operationId: googleRemovecalendaronlist
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /users/me/calendarList
method: post
operationId: googleInsertcalendaronlist
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /users/{userId}/calendarList
method: get
operationId: googleListcalendars
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/me/calendarList/watch
method: post
operationId: googleWatchcalendarlist
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /users/me/settings
method: get
operationId: googleListcalendarsettings
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/me/settings/{setting}
method: get
operationId: googleGetcalendarsettings
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /users/me/settings/watch
method: post
operationId: googleWatchcalendarsettings
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /channels/stop
method: post
operationId: googleStopcalendarchannel
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /colors
method: get
operationId: googleGetcalendarcolors
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /freeBusy
method: post
operationId: googleQueryfreebusy
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /v1/documents
method: post
operationId: docs.documents.create
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/documents
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /v1/documents/{documentId}
method: get
operationId: docs.documents.get
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/documents
- https://www.googleapis.com/auth/documents.readonly
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /v1/documents/{documentId}:batchUpdate
method: post
operationId: docs.documents.batchUpdate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/documents
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /v2/activity:query
method: post
operationId: googleDriveactivityActivityQuery
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive.activity
- https://www.googleapis.com/auth/drive.activity.readonly
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /about
method: get
operationId: googleDriveAboutGet
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /apps
method: get
operationId: googleDriveAppsList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive.apps.readonly
token:
max-ttl: 3600
audit: none
- path: /apps/{appId}
method: get
operationId: googleDriveAppsGet
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.apps.readonly
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /changes
method: get
operationId: googleDriveChangesList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /changes/startPageToken
method: get
operationId: googleDriveChangesGetstartpagetoken
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /changes/watch
method: post
operationId: googleDriveChangesWatch
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /channels/stop
method: post
operationId: googleDriveChannelsStop
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /drives
method: get
operationId: googleDriveDrivesList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /drives
method: post
operationId: googleDriveDrivesCreate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /drives/{driveId}
method: get
operationId: googleDriveDrivesGet
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /drives/{driveId}
method: patch
operationId: googleDriveDrivesUpdate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /drives/{driveId}
method: delete
operationId: googleDriveDrivesDelete
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /drives/{driveId}/hide
method: post
operationId: googleDriveDrivesHide
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /drives/{driveId}/unhide
method: post
operationId: googleDriveDrivesUnhide
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files
method: get
operationId: googleDriveFilesList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /files
method: post
operationId: googleDriveFilesCreate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/generateIds
method: get
operationId: googleDriveFilesGenerateids
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
token:
max-ttl: 3600
audit: none
- path: /files/trash
method: delete
operationId: googleDriveFilesEmptytrash
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}
method: get
operationId: googleDriveFilesGet
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/drive.photos.readonly
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /files/{fileId}
method: patch
operationId: googleDriveFilesUpdate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/drive.scripts
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}
method: delete
operationId: googleDriveFilesDelete
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.appdata
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}/comments
method: get
operationId: googleDriveCommentsList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /files/{fileId}/comments
method: post
operationId: googleDriveCommentsCreate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}/comments/{commentId}
method: get
operationId: googleDriveCommentsGet
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /files/{fileId}/comments/{commentId}
method: patch
operationId: googleDriveCommentsUpdate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}/comments/{commentId}
method: delete
operationId: googleDriveCommentsDelete
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}/comments/{commentId}/replies
method: get
operationId: googleDriveRepliesList
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /files/{fileId}/comments/{commentId}/replies
method: post
operationId: googleDriveRepliesCreate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /files/{fileId}/comments/{commentId}/replies/{replyId}
method: get
operationId: googleDriveRepliesGet
x-agentic-access:
action-class: connected
consequence: read
subject: optional
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
- https://www.googleapis.com/auth/drive.readonly
token:
max-ttl: 3600
audit: none
- path: /files/{fileId}/comments/{commentId}/replies/{replyId}
method: patch
operationId: googleDriveRepliesUpdate
x-agentic-access:
action-class: acting
consequence: write
subject: required
scope:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/drive.file
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: requ
# --- truncated at 32 KB (78 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/google/refs/heads/main/agentic-access/google-agentic-access.yml