Your YouTube API key stays yours — encrypted, never shared across accounts. MCP access is read-only with OAuth-linked sessions.
Restrict your key to YouTube Data API v3 in Google Cloud. See API key guide.
Unroll tools only read public YouTube data — search, metadata, captions, comments. We never post comments, upload videos, modify playlists, or access your personal YouTube login.