Dev & Project Management
🐙 GitHub integration
Access levels: Read-only · Read + write code · Full access · Verified
Dev & Project Management
Access levels: Read-only · Read + write code · Full access · Verified
Connect GitHub once and every agent in your squad can work in it for you, with exactly as much access as you decide to give, and a receipt for every call it makes.
You can change an account's access level any time under Manage. It applies instantly, no re-authorization. If the connection ever expires, the card shows Reconnect; one click re-authorizes the same account with the same settings.
Multiple accounts: connect as many as you need (say, yours and a client's). One is primary. Agents use it unless a mission says otherwise.
The level you pick at connect time is enforced on our side for every agent call: an agent can never do more than the level allows, no matter what it's asked.
| Level | What it allows | |
|---|---|---|
| Read-only | Read repos, PRs, issues. Cannot write code or create. | |
| Read + write code | Full repo access, code, PRs, issues. | Recommended |
| Full access | Above plus GitHub Actions, org admin, webhooks, gists. |
On top of the connection's level, every agent can be individually allowed, scoped down, or denied for this app from the Integrations page. Deny an agent and it doesn't even see the connection.
The 500 tools agents use in GitHub through Mission Control, and the lowest access level that includes each. Agents discover these themselves. You never have to name a tool; asking in plain language is enough.
| Tool | What it does | Access level |
|---|---|---|
Abort repository migrationGITHUB_ABORT_REPOSITORY_MIGRATION | Abort a repository migration that is queued or in progress. | Full access |
Accept repository invitationGITHUB_ACCEPT_REPOSITORY_INVITATION | Accepts a PENDING repository invitation that has been issued to the authenticated user. | Read + write code, Full access |
Add app access restrictionsGITHUB_ADD_APP_ACCESS_RESTRICTIONS | Adds GitHub Apps to the list of apps allowed to push to a protected branch. | Read + write code, Full access |
Add assignees to an issueGITHUB_ADD_ASSIGNEES_TO_AN_ISSUE | Adds assignees to a GitHub issue. This action only adds users - it does not remove existing assignees. Changes are silently ignored if the authenticated user lacks push access to the repository. | Read + write code, Full access |
Add a repository collaboratorGITHUB_ADD_A_REPOSITORY_COLLABORATOR | Adds a GitHub user as a repository collaborator, or updates their permission if already a collaborator; permission applies to organization-owned repositories (personal ones default to 'push' and ignore this field), an… | Read + write code, Full access |
Add email address for authenticated userGITHUB_ADD_EMAIL_ADDRESS_FOR_AUTHENTICATED_USER | Adds one or more email addresses (which will be initially unverified) to the authenticated user's GitHub account; use this to associate new emails, noting an email verified for another account will error, while an exist… | Read + write code, Full access |
Add field to user projectGITHUB_ADD_FIELD_TO_USER_PROJECT | Add a custom field to a user-owned GitHub Projects V2 project. | Read + write code, Full access |
Add item to user projectGITHUB_ADD_ITEM_TO_USER_PROJECT | Add an issue or pull request to a user-owned GitHub project. | Read + write code, Full access |
Add labels to an issueGITHUB_ADD_LABELS_TO_AN_ISSUE | Adds labels (provided in the request body) to a repository issue; labels that do not already exist are created. | Read + write code, Full access |
Add org runner labelsGITHUB_ADD_ORG_RUNNER_LABELS | Adds new custom labels to an existing self-hosted runner for an organization; existing labels are not removed, and duplicates are not added. | Read + write code, Full access |
Add or update team membership for userGITHUB_ADD_OR_UPDATE_TEAM_MEMBERSHIP_FOR_USER | Adds a GitHub user to a team or updates their role (member or maintainer), inviting them to the organization if not already a member; idempotent, returning current details if no change is made. | Read + write code, Full access |
Add or update team project permissionsGITHUB_ADD_OR_UPDATE_TEAM_PROJECT_PERMISSIONS | Adds a classic project to a team or updates the team's permission on it. | Read + write code, Full access |
Add or update team repository permissionsGITHUB_ADD_OR_UPDATE_TEAM_REPOSITORY_PERMISSIONS | Sets or updates a team's permission level for a repository within an organization; the team must be a member of the organization. | Read + write code, Full access |
Add project collaboratorGITHUB_ADD_PROJECT_COLLABORATOR | Adds a specified GitHub user as a collaborator to an existing organization project with a given permission level. | Read + write code, Full access |
Add repository to app installationGITHUB_ADD_REPOSITORY_TO_APP_INSTALLATION | Adds a repository to a GitHub App installation, granting the app access; requires authenticated user to have admin rights for the repository and access to the installation. | Read + write code, Full access |
Add repo to org secret with selected accessGITHUB_ADD_REPO_TO_ORG_SECRET_WITH_SELECTED_ACCESS | Adds a repository to an existing organization-level GitHub Actions secret that is configured for 'selected' repository access. | Read + write code, Full access |
Add repo to org secret with selected visibilityGITHUB_ADD_REPO_TO_ORG_SECRET_WITH_SELECTED_VISIBILITY | Grants an existing repository access to an existing organization-level Dependabot secret when the secret's visibility is set to 'selected'; the repository must belong to the organization, and the call succeeds without c… | Read + write code, Full access |
Add runner labelsGITHUB_ADD_RUNNER_LABELS | Adds and appends custom labels to a self-hosted repository runner, which must be registered and active. | Read + write code, Full access |
Add selected repository to organization secretGITHUB_ADD_SELECTED_REPOSITORY_TO_ORGANIZATION_SECRET | Adds a repository to an organization secret's access list when the secret's visibility is 'selected'; this operation is idempotent. | Read + write code, Full access |
Add selected repository to organization variableGITHUB_ADD_SELECTED_REPOSITORY_TO_ORGANIZATION_VARIABLE | Grants a repository access to an organization-level GitHub Actions variable, if that variable's visibility is set to 'selected_repositories'. | Read + write code, Full access |
Add selected repository to user secretGITHUB_ADD_SELECTED_REPOSITORY_TO_USER_SECRET | Grants a specified repository access to an authenticated user's existing Codespaces secret, enabling Codespaces created for that repository to use the secret. | Read + write code, Full access |
Add social accounts for authenticated userGITHUB_ADD_SOCIAL_ACCOUNTS_FOR_AUTHENTICATED_USER | Adds one or more social media links (which must be valid, full URLs for platforms supported by GitHub) to the authenticated user's public GitHub profile. | Read + write code, Full access |
Add status check contextsGITHUB_ADD_STATUS_CHECK_CONTEXTS | Adds status check contexts to a protected branch's required status checks. | Read + write code, Full access |
Add sub issueGITHUB_ADD_SUB_ISSUE | Add a sub-issue to a parent GitHub issue using GraphQL. | Read + write code, Full access |
Add team access restrictionsGITHUB_ADD_TEAM_ACCESS_RESTRICTIONS | Adds teams to the list of teams with push access to a protected branch. | Read + write code, Full access |
Add users to codespaces access for organizationGITHUB_ADD_USERS_TO_CODESPACES_ACCESS_FOR_ORGANIZATION | Adds organization members to the list of users granted Codespaces access billed to the organization. | Read + write code, Full access |
Add user access restrictionsGITHUB_ADD_USER_ACCESS_RESTRICTIONS | Adds users to the list of people allowed to push to a protected branch in an organization repository. | Read + write code, Full access |
Api rootGITHUB_API_ROOT | Retrieves a map of all top-level GitHub REST API resource URLs and their templates. | All levels |
Approve workflow run for fork pull requestGITHUB_APPROVE_WORKFLOW_RUN_FOR_FORK_PULL_REQUEST | Approves a workflow run from a forked repository's pull request; call this when such a run requires manual approval due to workflow configuration. | Read + write code, Full access |
Assign organization role to teamGITHUB_ASSIGN_ORGANIZATION_ROLE_TO_TEAM | Assigns an existing organization-level role (identified by role_id) to a team (identified by team_slug) within a GitHub organization (org), provided the organization, team, and role already exist. | Read + write code, Full access |
Assign organization role to userGITHUB_ASSIGN_ORGANIZATION_ROLE_TO_USER | Assigns a specific organization role to a user who is a member or an outside collaborator in a GitHub organization, using a valid role ID. | Read + write code, Full access |
Auth user docker conflict packages listGITHUB_AUTH_USER_DOCKER_CONFLICT_PACKAGES_LIST | List Docker packages with migration conflicts for the authenticated user. | Read + write code, Full access |
Block userGITHUB_BLOCK_USER | Blocks an existing individual GitHub user (not an organization or your own account), preventing them from interacting with your account and repositories. | Full access |
Block user from organizationGITHUB_BLOCK_USER_FROM_ORGANIZATION | Blocks a GitHub user from an organization, preventing their contributions, collaboration, and forking of the organization's repositories. | Full access |
Cancel github pages deploymentGITHUB_CANCEL_GITHUB_PAGES_DEPLOYMENT | Cancels an existing, ongoing or queued GitHub Pages deployment for a repository using its pages_deployment_id. | Full access |
Cancel sponsorshipGITHUB_CANCEL_SPONSORSHIP | Cancel an active GitHub sponsorship using GraphQL. | Full access |
Cancel workflow runGITHUB_CANCEL_WORKFLOW_RUN | Cancels a workflow run in a GitHub repository if it is in a cancellable state (e.g., 'in_progress' or 'queued'). | Full access |
Check if gist is starredGITHUB_CHECK_IF_GIST_IS_STARRED | Checks if a gist is starred by the authenticated user. | Read + write code, Full access |
Check if pull request has been mergedGITHUB_CHECK_IF_PULL_REQUEST_HAS_BEEN_MERGED | Checks if a specified GitHub pull request has been merged, indicated by a 204 HTTP status (merged) or 404 (not merged/found). | All levels |
Check if user can be assignedGITHUB_CHECK_IF_USER_CAN_BE_ASSIGNED | Verifies if a GitHub user can be assigned to issues in a repository; assignability is confirmed by an HTTP 204 (No Content) response, resulting in an empty 'data' field in the response. | Read + write code, Full access |
Check if user can be assigned to issueGITHUB_CHECK_IF_USER_CAN_BE_ASSIGNED_TO_ISSUE | Checks if a specified GitHub user can be assigned to a given issue within a repository. | Read + write code, Full access |
Check if user follows another userGITHUB_CHECK_IF_USER_FOLLOWS_ANOTHER_USER | Checks if a GitHub user username follows target_user; returns a 204 HTTP status if true, 404 if not or if users are invalid. | Read + write code, Full access |
Check if user is blocked by authenticated userGITHUB_CHECK_IF_USER_IS_BLOCKED_BY_AUTHENTICATED_USER | Checks if the specified GitHub user is blocked by the authenticated user; a 204 No Content response indicates the user is blocked, while a 404 Not Found indicates they are not. | All levels |
Check if user is blocked by organizationGITHUB_CHECK_IF_USER_IS_BLOCKED_BY_ORGANIZATION | Checks if a GitHub user is blocked by an organization. | All levels |
Check if user is repository collaboratorGITHUB_CHECK_IF_USER_IS_REPOSITORY_COLLABORATOR | Checks if a user is a collaborator on a specified GitHub repository, returning a 204 status if they are, or a 404 status if they are not or if the repository/user does not exist. | Read + write code, Full access |
Check person followed by auth userGITHUB_CHECK_PERSON_FOLLOWED_BY_AUTH_USER | Checks if the authenticated GitHub user follows a target GitHub user. | All levels |
Check private vulnerability reporting statusGITHUB_CHECK_PRIVATE_VULNERABILITY_REPORTING_STATUS | Checks if private vulnerability reporting is enabled for the specified repository. | All levels |
Check public organization membership for userGITHUB_CHECK_PUBLIC_ORGANIZATION_MEMBERSHIP_FOR_USER | Check if a user is a public member of an organization. | Read + write code, Full access |
Check team permissions for a projectGITHUB_CHECK_TEAM_PERMISSIONS_FOR_A_PROJECT | Checks if a team has 'read', 'write', or 'admin' permissions for an organization's specific classic project, returning the project's details if access is confirmed. | All levels |
Check team permissions for a repositoryGITHUB_CHECK_TEAM_PERMISSIONS_FOR_A_REPOSITORY | Checks a team's permissions for a specific repository within an organization, including permissions inherited from parent teams. | All levels |
Check tokenGITHUB_CHECK_TOKEN | Checks if a GitHub App or OAuth access_token is valid for the specified client_id and retrieves its details, typically to verify its active status and grants. | Read + write code, Full access |
Clear project v2 item field valueGITHUB_CLEAR_PROJECT_V2_ITEM_FIELD_VALUE | Clear the value of a field for an item in a GitHub Project V2. | Full access |
Clear repository cache by keyGITHUB_CLEAR_REPOSITORY_CACHE_BY_KEY | Deletes GitHub Actions caches from a repository matching a specific key and an optional Git ref, used to manage storage or clear outdated/corrupted caches; the action succeeds even if no matching caches are found to… | Full access |
Clear self hosted runner org labelsGITHUB_CLEAR_SELF_HOSTED_RUNNER_ORG_LABELS | Removes all custom labels from a self-hosted runner for an organization; default labels (e.g., 'self-hosted', 'linux', 'x64') will remain. | Full access |
Commit multiple filesGITHUB_COMMIT_MULTIPLE_FILES | Atomically create, update, or delete multiple files in a GitHub repository as a single commit. | Full access |
Compare two commitsGITHUB_COMPARE_TWO_COMMITS | Compares two commit points (commits, branches, tags, or SHAs) within a repository or across forks, using BASE...HEAD or OWNER:REF...OWNER:REF format for the basehead parameter. | Read + write code, Full access |
Configure jit runner for orgGITHUB_CONFIGURE_JIT_RUNNER_FOR_ORG | Generates a JIT configuration for a GitHub organization's new self-hosted runner to run a single job then unregister; requires admin:org scope and the runner_group_id must exist in the organization. | Read + write code, Full access |
Configure oidc subject claim templateGITHUB_CONFIGURE_OIDC_SUBJECT_CLAIM_TEMPLATE | Sets or updates the OIDC subject claim customization template for an existing GitHub organization by specifying which claims (e.g., 'repo', 'actor') form the OIDC token's subject (sub). | Read + write code, Full access |
Convert org member to outside collaboratorGITHUB_CONVERT_ORG_MEMBER_TO_OUTSIDE_COLLABORATOR | Converts an existing organization member, who is not an owner, to an outside collaborator, restricting their access to explicitly granted repositories. | Read + write code, Full access |
Create an autolink reference for a repositoryGITHUB_CREATE_AN_AUTOLINK_REFERENCE_FOR_A_REPOSITORY | Creates a repository autolink to automatically convert text references (e.g., 'TICKET-123') into hyperlinks, using a unique key_prefix and a url_template that includes <num>. | Read + write code, Full access |
Create an environment variableGITHUB_CREATE_AN_ENVIRONMENT_VARIABLE | Creates an encrypted environment variable for a pre-existing environment within a GitHub repository; will fail if the variable name already exists. | Read + write code, Full access |
Create an issueGITHUB_CREATE_AN_ISSUE | Creates a new issue in a GitHub repository, requiring the repository to exist and have issues enabled; specific fields like assignees, milestone, or labels may require push access. | Read + write code, Full access |
Create an issue commentGITHUB_CREATE_AN_ISSUE_COMMENT | Creates a new comment on an existing GitHub issue or pull request within the specified repository. | Read + write code, Full access |
Create an organization projectGITHUB_CREATE_AN_ORGANIZATION_PROJECT | Creates a new classic project board within a specified GitHub organization. | Read + write code, Full access |
Create an organization repositoryGITHUB_CREATE_AN_ORGANIZATION_REPOSITORY | Creates a new repository within a specified GitHub organization, with options for detailed configuration including visibility, features, merge strategies, initial commit, and templates. | Read + write code, Full access |
Create an organization variableGITHUB_CREATE_AN_ORGANIZATION_VARIABLE | Creates a new, uniquely named GitHub Actions variable for an organization, with configurable repository access visibility (all, private, or selected). | Read + write code, Full access |
Create an organization webhookGITHUB_CREATE_AN_ORGANIZATION_WEBHOOK | Creates a webhook for a GitHub organization to deliver event notifications to a configured URL. | Read + write code, Full access |
Create a blobGITHUB_CREATE_A_BLOB | Creates a Git blob in a repository, requiring content and encoding ('utf-8' or 'base64'). | Read + write code, Full access |
Create a check runGITHUB_CREATE_A_CHECK_RUN | Creates a new check run for a specific commit in a repository, used by external services to report status, detailed feedback, annotations, and images directly within the GitHub UI. | Read + write code, Full access |
Create a check suiteGITHUB_CREATE_A_CHECK_SUITE | Creates a new check suite for a specific commit (head_sha) in an original repository (not a fork). | Read + write code, Full access |
Create a codespace for the authenticated userGITHUB_CREATE_A_CODESPACE_FOR_THE_AUTHENTICATED_USER | Creates a GitHub Codespace for the authenticated user, requiring a JSON request body with either repository_id (integer) or a pull_request object (containing pull_request_number (integer) and repository_id (inte… | Read + write code, Full access |
Create a codespace from a pull requestGITHUB_CREATE_A_CODESPACE_FROM_A_PULL_REQUEST | Creates a GitHub Codespace for an open pull request in a Codespaces-enabled repository, with options to customize its configuration. | Read + write code, Full access |
Create a codespace in a repositoryGITHUB_CREATE_A_CODESPACE_IN_A_REPOSITORY | Creates a GitHub Codespace for the authenticated user in a specified repository, which must be accessible and use a valid devcontainer.json if devcontainer_path is specified. | Read + write code, Full access |
Create a commitGITHUB_CREATE_A_COMMIT | Creates a new commit in a GitHub repository; the tree SHA and any parents SHAs must already exist in the repository. | Read + write code, Full access |
Create a commit commentGITHUB_CREATE_A_COMMIT_COMMENT | Creates a comment on a specific commit, or on a specific line if path and position are provided. | Read + write code, Full access |
Create a commit statusGITHUB_CREATE_A_COMMIT_STATUS | Sets a commit's status (e.g., error, failure, pending, success from CI/CD) for a given SHA; max 1000 statuses per SHA/context. | Read + write code, Full access |
Create a custom organization roleGITHUB_CREATE_A_CUSTOM_ORGANIZATION_ROLE | Creates a custom role with defined permissions within a GitHub organization. | Read + write code, Full access |
Create a deploymentGITHUB_CREATE_A_DEPLOYMENT | Creates a GitHub deployment for an existing repository, targeting a specific ref (branch, tag, or SHA) that must also exist within the repository. | Read + write code, Full access |
Create a deployment branch policyGITHUB_CREATE_A_DEPLOYMENT_BRANCH_POLICY | Creates a deployment branch or tag policy for an existing environment in a GitHub repository, using a Ruby File.fnmatch pattern (where * doesn't match /) to specify which branches or tags are deployable. | Read + write code, Full access |
Create a deployment statusGITHUB_CREATE_A_DEPLOYMENT_STATUS | Creates a status for an existing deployment, updating its operational state, associated URLs, and description. | Read + write code, Full access |
Create a deploy keyGITHUB_CREATE_A_DEPLOY_KEY | Creates a deploy key for a repository; the repository must exist and be accessible, and the provided key must be a valid public SSH key. | Read + write code, Full access |
Create a discussionGITHUB_CREATE_A_DISCUSSION | Creates a new discussion post on a specific team's page within an organization. | Read + write code, Full access |
Create a discussion commentGITHUB_CREATE_A_DISCUSSION_COMMENT | Creates a new comment on an existing team discussion within a GitHub organization. | Read + write code, Full access |
Create a forkGITHUB_CREATE_A_FORK | Creates a fork of an accessible repository, optionally into a specific organization, with a new name, or copying only the default branch. | Read + write code, Full access |
Create a gistGITHUB_CREATE_A_GIST | Creates a new gist on GitHub with provided files, an optional description, and public/secret visibility. | Read + write code, Full access |
Create a gist commentGITHUB_CREATE_A_GIST_COMMENT | Creates a new comment on a specified GitHub gist. | Read + write code, Full access |
Create a github app from a manifestGITHUB_CREATE_A_GITHUB_APP_FROM_A_MANIFEST | Use this action to complete the GitHub App Manifest flow (step 3 of 3) by exchanging the temporary authorization code for the app's full configuration, including credentials and private key. | Read + write code, Full access |
Create a github pages deploymentGITHUB_CREATE_A_GITHUB_PAGES_DEPLOYMENT | Creates a GitHub Pages deployment for a repository using a specified artifact and OIDC token, provided GitHub Pages is enabled and the artifact (containing static assets) is accessible. | Read + write code, Full access |
Create a github pages siteGITHUB_CREATE_A_GITHUB_PAGES_SITE | Configures or updates GitHub Pages for a repository, setting build type and source; ensure a Pages workflow exists for 'workflow' build_type, or source_branch exists for 'legacy' or unspecified build_type. | Read + write code, Full access |
Create a labelGITHUB_CREATE_A_LABEL | Creates a new label in a specified GitHub repository, provided the repository exists and the user has write permissions. | Read + write code, Full access |
Create a milestoneGITHUB_CREATE_A_MILESTONE | Creates a milestone in a GitHub repository for tracking progress on issues or pull requests; requires repository existence and user write permissions. | Read + write code, Full access |
Create a project cardGITHUB_CREATE_A_PROJECT_CARD | Creates a project card in a GitHub project column (classic projects only). | Read + write code, Full access |
Create a project columnGITHUB_CREATE_A_PROJECT_COLUMN | Creates a new column in a GitHub project (classic). | Read + write code, Full access |
Create a pull requestGITHUB_CREATE_A_PULL_REQUEST | Creates a pull request in a GitHub repository, requiring existing base and head branches; title or issue must be provided. | Read + write code, Full access |
Create a referenceGITHUB_CREATE_A_REFERENCE | Creates a NEW Git reference (branch or tag) in a repository. | Read + write code, Full access |
Create a registration token for an organizationGITHUB_CREATE_A_REGISTRATION_TOKEN_FOR_AN_ORGANIZATION | Generates a temporary (one-hour) registration token to add a new self-hosted runner to an organization for GitHub Actions. | Read + write code, Full access |
Create a registration token for a repositoryGITHUB_CREATE_A_REGISTRATION_TOKEN_FOR_A_REPOSITORY | Generates a time-limited token required to register a new self-hosted runner with a specific repository. | Read + write code, Full access |
Create a releaseGITHUB_CREATE_A_RELEASE | Creates a release in a GitHub repository for a specified tag; the tag must be unique for published releases, and if a discussion_category_name is given, it must already exist. | Read + write code, Full access |
Create a remove token for an organizationGITHUB_CREATE_A_REMOVE_TOKEN_FOR_AN_ORGANIZATION | Generates a token, valid for one hour, to authenticate removing a self-hosted runner from an organization. | Read + write code, Full access |
Create a remove token for a repositoryGITHUB_CREATE_A_REMOVE_TOKEN_FOR_A_REPOSITORY | Generates a temporary (one-hour validity) token required to unregister and remove a self-hosted runner from a repository. | Read + write code, Full access |
Create a reply for a review commentGITHUB_CREATE_A_REPLY_FOR_A_REVIEW_COMMENT | Posts a reply to a specific review comment on a GitHub pull request, requiring the repository, pull request, and original comment to exist, and a non-empty reply body. | Read + write code, Full access |
Create a repository dispatch eventGITHUB_CREATE_A_REPOSITORY_DISPATCH_EVENT | Triggers a GitHub Actions workflow or a webhook on a repository by creating a repository dispatch event, allowing programmatic triggering of workflows based on events outside of GitHub. | Read + write code, Full access |
Create a repository for the authenticated userGITHUB_CREATE_A_REPOSITORY_FOR_THE_AUTHENTICATED_USER | Creates a new repository for the authenticated user, optionally within an organization if team_id is specified. | Read + write code, Full access |
Create a repository from an unpublished codespaceGITHUB_CREATE_A_REPOSITORY_FROM_AN_UNPUBLISHED_CODESPACE | Publishes the specified codespace to a new repository, using the codespace's current state as the initial commit. | Read + write code, Full access |
Create a repository projectGITHUB_CREATE_A_REPOSITORY_PROJECT | Creates a new GitHub Projects V2 project board linked to a specified repository. | Read + write code, Full access |
Create a repository rulesetGITHUB_CREATE_A_REPOSITORY_RULESET | Creates a uniquely named ruleset for a repository, defining rules for branches or tags with specified enforcement, conditions, and bypass actors. | Read + write code, Full access |
Create a repository using a templateGITHUB_CREATE_A_REPOSITORY_USING_A_TEMPLATE | Creates a new repository from an existing template repository; the authenticated user must have access to the template and, if creating in an organization, repository creation permissions within it. | Read + write code, Full access |
Create a repository variableGITHUB_CREATE_A_REPOSITORY_VARIABLE | Creates a new, unencrypted variable in a repository for GitHub Actions workflows; fails if a variable with the same name already exists. | Read + write code, Full access |
Create a repository webhookGITHUB_CREATE_A_REPOSITORY_WEBHOOK | Creates a webhook for a specified repository; requires admin permissions on the repository. | Read + write code, Full access |
Create a review comment for a pull requestGITHUB_CREATE_A_REVIEW_COMMENT_FOR_A_PULL_REQUEST | Creates a review comment on a pull request's diff, targeting a specific line, range of lines, an entire file, or replying to an existing comment. | Read + write code, Full access |
Create a review for a pull requestGITHUB_CREATE_A_REVIEW_FOR_A_PULL_REQUEST | Creates a pull request review, allowing approval, change requests, or comments; body is required if event is REQUEST_CHANGES or COMMENT, and omitting event makes the review PENDING. | Read + write code, Full access |
Create a scoped access tokenGITHUB_CREATE_A_SCOPED_ACCESS_TOKEN | Exchanges a user-to-server token for a new, fine-grained scoped access token for a GitHub App, requiring client_id, access_token, either target or target_id, and at least one permission; for repository-specific… | Read + write code, Full access |
Create a snapshot of dependencies for a repositoryGITHUB_CREATE_A_SNAPSHOT_OF_DEPENDENCIES_FOR_A_REPOSITORY | Creates a snapshot of a repository's dependencies to populate the GitHub dependency graph and enable security alerts; sha must be a 40-character commit ID, ref a fully qualified Git reference (e.g., `refs/heads/main… | Read + write code, Full access |
Create a tag objectGITHUB_CREATE_A_TAG_OBJECT | Creates an annotated Git tag object in a repository, pointing to an existing Git object (commit, tree, or blob) defined by its SHA and ensuring the type field correctly specifies the object's type. | Read + write code, Full access |
Create a tag protection state for a repositoryGITHUB_CREATE_A_TAG_PROTECTION_STATE_FOR_A_REPOSITORY | DEPRECATED: This API was sunset on August 30, 2024. | Read + write code, Full access |
Create a teamGITHUB_CREATE_A_TEAM | Creates a new team in an organization, optionally with maintainers, repositories, specific privacy, notification settings, or a parent team; if parent_team_id is given, privacy must be 'closed'. | Read + write code, Full access |
Create a temporary private forkGITHUB_CREATE_A_TEMPORARY_PRIVATE_FORK | Creates a temporary private fork of the specified repository to address a security vulnerability, linking the fork to a GHSA ID that must be specifically associated with this repository; the fork may take up to 5 minute… | Read + write code, Full access |
Create a treeGITHUB_CREATE_A_TREE | Creates a new Git tree object in a repository, defining file/directory structure by specifying tree entries, optionally building on a base_tree SHA; all provided SHAs must be valid. | Read + write code, Full access |
Create a user projectGITHUB_CREATE_A_USER_PROJECT | Creates a new GitHub Projects V2 project board for the authenticated user to organize and track issues, pull requests, and notes. | Read + write code, Full access |
Create a workflow dispatch eventGITHUB_CREATE_A_WORKFLOW_DISPATCH_EVENT | Manually triggers a GitHub Actions workflow identified by workflow_id at a given ref, if the workflow is configured to accept workflow_dispatch events. | Read + write code, Full access |
Create commit signature protectionGITHUB_CREATE_COMMIT_SIGNATURE_PROTECTION | Enables commit signature protection for a specified branch, requiring all new commits to be signed. | Read + write code, Full access |
Create deployment protection ruleGITHUB_CREATE_DEPLOYMENT_PROTECTION_RULE | Enables a custom deployment protection rule for an existing environment in a repository by linking a configured GitHub App (via integration_id) to control deployments. | Read + write code, Full access |
Create draft item for user projectGITHUB_CREATE_DRAFT_ITEM_FOR_USER_PROJECT | Creates a draft issue item in a user-owned GitHub ProjectsV2. | Read + write code, Full access |
Create inference chat completionsGITHUB_CREATE_INFERENCE_CHAT_COMPLETIONS | Create chat completions using GitHub Models inference API. | All levels |
Create inference embeddingsGITHUB_CREATE_INFERENCE_EMBEDDINGS | Create inference embeddings using GitHub's AI models. | All levels |
Create issue typeGITHUB_CREATE_ISSUE_TYPE | Create a new issue type for a GitHub organization. | Read + write code, Full access |
Create jit runner configGITHUB_CREATE_JIT_RUNNER_CONFIG | Generates a temporary Just-In-Time (JIT) configuration for a new self-hosted GitHub Actions runner for a repository; any specified non-default runner_group_id must be an existing runner group accessible by the reposit… | Read + write code, Full access |
Create or update an environmentGITHUB_CREATE_OR_UPDATE_AN_ENVIRONMENT | Creates a new environment or updates an existing one in a GitHub repository, allowing configuration of deployment protection rules such as wait timers and reviewers; ensure environment_name is URL-encoded if it contai… | Read + write code, Full access |
Create or update an environment secretGITHUB_CREATE_OR_UPDATE_AN_ENVIRONMENT_SECRET | Creates or updates an environment secret with an encrypted_value that was encrypted using the public key identified by key_id for the specified environment. | Read + write code, Full access |
Create or update an organization secretGITHUB_CREATE_OR_UPDATE_AN_ORGANIZATION_SECRET | Creates or updates an organization secret for GitHub Actions, requiring its value to be pre-encrypted via LibSodium using the organization's public key. | Read + write code, Full access |
Create or update a repository secretGITHUB_CREATE_OR_UPDATE_A_REPOSITORY_SECRET | Creates or updates a GitHub Actions secret within a specific repository; use encrypted_value and key_id to set or change its value. | Read + write code, Full access |
Create or update a secret for the authenticated userGITHUB_CREATE_OR_UPDATE_A_SECRET_FOR_THE_AUTHENTICATED_USER | Creates or updates a Codespaces secret for the authenticated user; encrypted_value must be encrypted with the public key (ID: key_id) from GitHub's 'Get public key for the authenticated user' endpoint. | Read + write code, Full access |
Create or update custom properties for an orgGITHUB_CREATE_OR_UPDATE_CUSTOM_PROPERTIES_FOR_AN_ORG | Creates new custom property schemas or updates existing ones in bulk for a specified organization; each property definition must include property_name and value_type. | Read + write code, Full access |
Create or update custom property orgGITHUB_CREATE_OR_UPDATE_CUSTOM_PROPERTY_ORG | Creates a new custom property (name must be unique for creation) or updates an existing one for an organization to define metadata for its repositories. | Read + write code, Full access |
Create or update file contentsGITHUB_CREATE_OR_UPDATE_FILE_CONTENTS | Creates a new file or updates an existing file in a GitHub repository; SHA can be provided to validate file updates, automatically fetched if not provided. | Read + write code, Full access |
Create or update github pages siteGITHUB_CREATE_OR_UPDATE_GITHUB_PAGES_SITE | Enable or update GitHub Pages configuration for a repository. | Read + write code, Full access |
Create or update repo secret with encrypted valueGITHUB_CREATE_OR_UPDATE_REPO_SECRET_WITH_ENCRYPTED_VALUE | Creates or updates a Dependabot secret in a repository using an encrypted_value (pre-encrypted with LibSodium using the repository's Dependabot public key) and its corresponding key_id. | Read + write code, Full access |
Create reaction for an issueGITHUB_CREATE_REACTION_FOR_AN_ISSUE | Creates a reaction for a specified issue within a GitHub repository. | Read + write code, Full access |
Create reaction for an issue commentGITHUB_CREATE_REACTION_FOR_AN_ISSUE_COMMENT | Creates a reaction for a specific comment on an issue within a GitHub repository. | Read + write code, Full access |
Create reaction for a commit commentGITHUB_CREATE_REACTION_FOR_A_COMMIT_COMMENT | Creates an emoji reaction for a commit comment; if the user has already reacted with the same content, details of the existing reaction are returned. | Read + write code, Full access |
Create reaction for a pull request review commentGITHUB_CREATE_REACTION_FOR_A_PULL_REQUEST_REVIEW_COMMENT | Adds a specified reaction to a pull request review comment within a GitHub repository. | Read + write code, Full access |
Create reaction for a releaseGITHUB_CREATE_REACTION_FOR_A_RELEASE | Creates an emoji reaction for a specific, existing release in a GitHub repository. | Read + write code, Full access |
Create reaction for a team discussionGITHUB_CREATE_REACTION_FOR_A_TEAM_DISCUSSION | Creates a reaction for a team discussion within a GitHub organization. | Read + write code, Full access |
Create reaction for a team discussion commentGITHUB_CREATE_REACTION_FOR_A_TEAM_DISCUSSION_COMMENT | Adds a reaction to a team discussion comment, requiring the specified organization, team, discussion, and comment to exist. | Read + write code, Full access |
Create sponsorshipGITHUB_CREATE_SPONSORSHIP | Start a new GitHub sponsorship or reactivate a past sponsorship using GraphQL. | Read + write code, Full access |
Create sponsors tierGITHUB_CREATE_SPONSORS_TIER | Create a new payment tier for your GitHub Sponsors profile using GraphQL. | Read + write code, Full access |
Create update org secret with lib sodiumGITHUB_CREATE_UPDATE_ORG_SECRET_WITH_LIB_SODIUM | Creates or updates a Dependabot organization secret, requiring the secret value to be pre-encrypted with LibSodium using the organization's public key obtained from the 'Get an organization public key' endpoint. | Read + write code, Full access |
Create user listGITHUB_CREATE_USER_LIST | Create a new user list on GitHub. Use when you need to organize and group GitHub users for easier tracking and management. | Read + write code, Full access |
Create view for user projectGITHUB_CREATE_VIEW_FOR_USER_PROJECT | Create a new view in a user-owned GitHub project (Projects V2). | Read + write code, Full access |
Decline a repository invitationGITHUB_DECLINE_A_REPOSITORY_INVITATION | Declines a specific, pending repository invitation for the authenticated user, identified by its invitation_id. | Full access |
Delete access restrictionsGITHUB_DELETE_ACCESS_RESTRICTIONS | Removes all user, team, and app-based access restrictions from a protected branch. | Full access |
Delete admin branch protectionGITHUB_DELETE_ADMIN_BRANCH_PROTECTION | Removes admin enforcement from a protected branch (branch name cannot contain wildcard characters) in a repository. | Full access |
Delete app authorizationGITHUB_DELETE_APP_AUTHORIZATION | Deletes an OAuth application grant for a user, which revokes ALL OAuth tokens and their associated authorizations for the application. | Full access |
Delete app tokenGITHUB_DELETE_APP_TOKEN | Revokes a single OAuth access token for an OAuth App or GitHub App with OAuth authorization. | Full access |
Delete artifactGITHUB_DELETE_ARTIFACT | Deletes a GitHub artifact by its ID within a repository, typically resulting in an empty response (HTTP 204 No Content) on success. | Full access |
Delete autolink referenceGITHUB_DELETE_AUTOLINK_REFERENCE | Deletes a specific autolink reference (which automatically links external resource IDs like JIRA-123 to URLs) from the specified repository. | Full access |
Delete a fileGITHUB_DELETE_A_FILE | Deletes a file by path from a GitHub repository. | Full access |
Delete a package version for the authenticated userGITHUB_DELETE_A_PACKAGE_VERSION_FOR_THE_AUTHENTICATED_USER | Deletes an existing package version associated with the authenticated user. | Full access |
Delete a referenceGITHUB_DELETE_A_REFERENCE | Deletes a Git reference from a repository; 'ref' must be fully qualified (e.g., 'refs/heads/branch' or 'refs/tags/tag'). | Full access |
Delete a releaseGITHUB_DELETE_A_RELEASE | Permanently deletes a specific release, its assets, and potentially its associated Git tag from a repository. | Full access |
Delete a release assetGITHUB_DELETE_A_RELEASE_ASSET | Deletes a specific release asset from a GitHub repository; this action is idempotent. | Full access |
Delete a release reactionGITHUB_DELETE_A_RELEASE_REACTION | Deletes a reaction from a GitHub release, provided the repository, release, and reaction exist. | Full access |
Delete a repositoryGITHUB_DELETE_A_REPOSITORY | Permanently deletes the specified repository; this is a destructive, irreversible action that requires admin privileges for the repository. | Full access |
Delete a repository invitationGITHUB_DELETE_A_REPOSITORY_INVITATION | Deletes an active repository invitation, permanently revoking a user's access to collaborate on the specified repository. | Full access |
Delete a repository rulesetGITHUB_DELETE_A_REPOSITORY_RULESET | Permanently deletes a repository ruleset. | Full access |
Delete a repository secretGITHUB_DELETE_A_REPOSITORY_SECRET | Deletes a named GitHub Actions secret from a specified repository; this operation is destructive and idempotent, and requires the repository to exist. | Full access |
Delete a repository subscriptionGITHUB_DELETE_A_REPOSITORY_SUBSCRIPTION | Deletes the authenticated user's subscription to a specified repository if it exists, effectively 'unwatching' it. | Full access |
Delete a repository variableGITHUB_DELETE_A_REPOSITORY_VARIABLE | Deletes a named variable (e.g., for GitHub Actions workflows) from a repository; the repository and the variable must already exist. | Full access |
Delete a repository webhookGITHUB_DELETE_A_REPOSITORY_WEBHOOK | Deletes a specific webhook from a repository. | Full access |
Delete a review comment for a pull requestGITHUB_DELETE_A_REVIEW_COMMENT_FOR_A_PULL_REQUEST | Deletes a specific pull request review comment. | Full access |
Delete a secret for the authenticated userGITHUB_DELETE_A_SECRET_FOR_THE_AUTHENTICATED_USER | Deletes an existing Codespaces secret for the authenticated user by secret_name. | Full access |
Delete a self hosted runner from an organizationGITHUB_DELETE_A_SELF_HOSTED_RUNNER_FROM_AN_ORGANIZATION | Forces the removal of a self-hosted runner from a GitHub organization. | Full access |
Delete a self hosted runner from a repositoryGITHUB_DELETE_A_SELF_HOSTED_RUNNER_FROM_A_REPOSITORY | Removes a specific self-hosted runner (by runner_id) from a repository, if registered there; this is idempotent. | Full access |
Delete a tag protection state for a repositoryGITHUB_DELETE_A_TAG_PROTECTION_STATE_FOR_A_REPOSITORY | DEPRECATED: This API was sunset on August 30, 2024. | Full access |
Delete a teamGITHUB_DELETE_A_TEAM | Deletes a team (and any child teams) from an organization. | Full access |
Delete a thread subscriptionGITHUB_DELETE_A_THREAD_SUBSCRIPTION | Call this to mute a specific notification thread by deleting the user's subscription; notifications may still occur if the user is @mentioned, comments, or due to repository watch settings. | Full access |
Delete a workflow runGITHUB_DELETE_A_WORKFLOW_RUN | Deletes a specific workflow run from a repository. | Full access |
Delete branch protectionGITHUB_DELETE_BRANCH_PROTECTION | Removes all protection rules from a specific branch in a GitHub repository; the branch must currently have protection rules enabled. | Full access |
Delete codespaceGITHUB_DELETE_CODESPACE | Deletes a specific codespace owned by the authenticated user; this is a destructive action and the codespace must exist. | Full access |
Delete code scanning analysisGITHUB_DELETE_CODE_SCANNING_ANALYSIS | Deletes a specific code scanning analysis by its ID from a repository; confirm_delete must be true if it's the last analysis of its type for a given tool and reference to prevent data loss. | Full access |
Delete commit commentGITHUB_DELETE_COMMIT_COMMENT | Deletes a specific commit comment, identified by its comment_id, from the specified repository; the comment must exist. | Full access |
Delete commit comment reactionGITHUB_DELETE_COMMIT_COMMENT_REACTION | Deletes a reaction from a commit comment in a GitHub repository. | Full access |
Delete commit signature protectionGITHUB_DELETE_COMMIT_SIGNATURE_PROTECTION | Disables GPG commit signature protection for a specific branch in a GitHub repository, meaning commits pushed to this branch no longer require GPG signing. | Full access |
Delete custom organization roleGITHUB_DELETE_CUSTOM_ORGANIZATION_ROLE | Deletes a custom organization role (which should not be actively assigned) by its ID; a 204 No Content response indicates success. | Full access |
Delete dependebot secret by nameGITHUB_DELETE_DEPENDEBOT_SECRET_BY_NAME | Deletes a specific Dependabot secret, identified by its name, from a given repository if both the repository and secret exist. | Full access |
Delete deploymentGITHUB_DELETE_DEPLOYMENT | Permanently deletes a specified inactive deployment from a repository. | Full access |
Delete deployment branch policyGITHUB_DELETE_DEPLOYMENT_BRANCH_POLICY | Deletes a specific deployment branch or tag policy, identified by its ID, from a given environment within a repository. | Full access |
Delete deploy keyGITHUB_DELETE_DEPLOY_KEY | Deletes a specific deploy key from a repository; to change a key's properties or access scope, the existing key must be deleted and a new one created. | Full access |
Delete discussionGITHUB_DELETE_DISCUSSION | Deletes a specific team discussion, identified by its number, from an organization's team. | Full access |
Delete discussion commentGITHUB_DELETE_DISCUSSION_COMMENT | Deletes a specific comment from an existing team discussion within an organization, provided the specified organization, team, discussion, and comment all exist. | Full access |
Delete email addressGITHUB_DELETE_EMAIL_ADDRESS | Sends an empty request body to DELETE /user/emails to attempt deletion of user email addresses; the API typically requires specific emails, so outcome may vary. | Full access |
Delete environmentGITHUB_DELETE_ENVIRONMENT | Deletes an existing deployment environment from an existing repository. | Full access |
Delete environment secretGITHUB_DELETE_ENVIRONMENT_SECRET | Deletes an existing and accessible secret from a specified environment within a GitHub repository, returning an empty dictionary on success or error details otherwise. | Full access |
Delete environment variableGITHUB_DELETE_ENVIRONMENT_VARIABLE | Deletes a named environment variable from a specified, existing environment within a GitHub repository. | Full access |
Delete gistGITHUB_DELETE_GIST | Permanently deletes an existing GitHub gist, specified by its gist_id; this action is destructive and cannot be undone. | Full access |
Delete gist commentGITHUB_DELETE_GIST_COMMENT | Deletes a specific comment from a GitHub Gist using its gist_id and comment_id. | Full access |
Delete github actions cache by idGITHUB_DELETE_GITHUB_ACTIONS_CACHE_BY_ID | Deletes a specific GitHub Actions cache from a repository using its unique cache_id. | Full access |
Delete github pages siteGITHUB_DELETE_GITHUB_PAGES_SITE | Deletes the GitHub Pages site for the specified repository; completes without error if no site is currently enabled. | Full access |
Delete issue commentGITHUB_DELETE_ISSUE_COMMENT | Permanently deletes a specific comment by its ID from an issue or pull request, if the repository exists and the comment ID is valid. | Full access |
Delete issue comment reactionGITHUB_DELETE_ISSUE_COMMENT_REACTION | Deletes a reaction from an issue comment in a repository; the repository, comment, and reaction must exist. | Full access |
Delete issue reactionGITHUB_DELETE_ISSUE_REACTION | Permanently removes a specific reaction from an issue in a GitHub repository. | Full access |
Delete labelGITHUB_DELETE_LABEL | Permanently removes an existing label from a repository. | Full access |
Delete milestoneGITHUB_DELETE_MILESTONE | Deletes the specified milestone if it exists; this operation is idempotent, typically returning a 404 if the milestone is not found or already deleted. | Full access |
Delete organizationGITHUB_DELETE_ORGANIZATION | Deletes a GitHub organization and its repositories; this is a destructive action and the organization name will be unavailable for reuse for approximately 90 days. | Full access |
Delete organization secretGITHUB_DELETE_ORGANIZATION_SECRET | Permanently deletes a secret from a GitHub organization, making it inaccessible to GitHub Actions workflows or other tools. | Full access |
Delete organization variableGITHUB_DELETE_ORGANIZATION_VARIABLE | Deletes a named GitHub Actions variable from a specified organization. | Full access |
Delete organization webhookGITHUB_DELETE_ORGANIZATION_WEBHOOK | Deletes a specific webhook, identified by hook_id, from an existing organization. | Full access |
Delete org codespaceGITHUB_DELETE_ORG_CODESPACE | Permanently deletes a specific codespace belonging to a member of the specified organization. | Full access |
Delete org packageGITHUB_DELETE_ORG_PACKAGE | Deletes a specific package in an organization; cannot delete public packages with over 5,000 downloads. | Full access |
Delete packageGITHUB_DELETE_PACKAGE | Permanently deletes a specific package owned by the authenticated user; public packages downloaded over 5,000 times cannot be deleted via this API. | Full access |
Delete package versionGITHUB_DELETE_PACKAGE_VERSION | Delete a package version using GitHub GraphQL API. | Full access |
Delete package version for an organizationGITHUB_DELETE_PACKAGE_VERSION_FOR_AN_ORGANIZATION | Deletes a specific package version within an organization; requires admin permissions for packages with over 5,000 downloads. | Full access |
Delete package version for a userGITHUB_DELETE_PACKAGE_VERSION_FOR_A_USER | Permanently and irreversibly deletes a specific version of a package owned by the specified user. | Full access |
Delete pending reviewGITHUB_DELETE_PENDING_REVIEW | Deletes a pending (unsubmitted) review from a pull request; this is only possible if the review has not yet been submitted. | Full access |
Delete projectGITHUB_DELETE_PROJECT | Deletes the specified GitHub project (Projects V2) using the GraphQL API. | Full access |
Delete project cardGITHUB_DELETE_PROJECT_CARD | Deletes a project card from a GitHub 'Project (classic)'; this operation is idempotent. | Full access |
Delete project columnGITHUB_DELETE_PROJECT_COLUMN | Deletes a project field (column) from a GitHub Projects V2 project using the GraphQL API. | Full access |
Delete project item for userGITHUB_DELETE_PROJECT_ITEM_FOR_USER | Delete a project item for a user in GitHub Projects V2. | Full access |
Delete pull request comment reactionGITHUB_DELETE_PULL_REQUEST_COMMENT_REACTION | Deletes a specific reaction from a pull request review comment, provided the comment and reaction exist on that comment within the specified repository. | Full access |
Delete pull request review protectionGITHUB_DELETE_PULL_REQUEST_REVIEW_PROTECTION | Disables the requirement for pull request reviews before merging for a specific, existing branch in an existing repository; this action is idempotent and will succeed even if the protection is not currently enabled. | Full access |
Delete repo codespace secret by nameGITHUB_DELETE_REPO_CODESPACE_SECRET_BY_NAME | Deletes a specific Codespace secret from a repository by its name; this action is idempotent and will succeed even if the secret doesn't exist. | Full access |
Delete social accounts for the authenticated userGITHUB_DELETE_SOCIAL_ACCOUNTS_FOR_THE_AUTHENTICATED_USER | Deletes currently linked social media account URLs from the authenticated user's GitHub profile. | Full access |
Delete team discussion comment reactionGITHUB_DELETE_TEAM_DISCUSSION_COMMENT_REACTION | Deletes a reaction from a team discussion comment, given the organization name, team slug, discussion number, comment number, and reaction ID. | Full access |
Delete team discussion reactionGITHUB_DELETE_TEAM_DISCUSSION_REACTION | Permanently deletes a specific reaction from a team discussion within an organization. | Full access |
Delete user listGITHUB_DELETE_USER_LIST | Delete a GitHub user list using GraphQL. Use when you need to remove a user list from a GitHub account. | Full access |
Delete user packageGITHUB_DELETE_USER_PACKAGE | Deletes a package owned by the specified user, requiring admin permissions for the authenticated user; deletion of public packages with over 5,000 downloads may require GitHub support. | Full access |
Delete workflow run logsGITHUB_DELETE_WORKFLOW_RUN_LOGS | Deletes all logs for a specific workflow run in a GitHub repository, provided the repository and run exist. | Full access |
Disable a custom protection rule for an environmentGITHUB_DISABLE_A_CUSTOM_PROTECTION_RULE_FOR_AN_ENVIRONMENT | Disables a specific, currently active custom deployment protection rule for an existing environment within a GitHub repository. | Full access |
Disable a workflowGITHUB_DISABLE_A_WORKFLOW | Disables a specified workflow (by ID or filename) in a given GitHub repository, preventing new automatic triggers; any in-progress runs will continue. | Read + write code, Full access |
Disable private vuln reporting for repoGITHUB_DISABLE_PRIVATE_VULN_REPORTING_FOR_REPO | Disables private vulnerability reporting for an existing GitHub repository, preventing direct private vulnerability reports to maintainers via GitHub's interface for this repository. | Full access |
Disable repository actions in orgGITHUB_DISABLE_REPOSITORY_ACTIONS_IN_ORG | Removes a repository from the list of selected repositories enabled for GitHub Actions in an organization. | Read + write code, Full access |
Dismiss a review for a pull requestGITHUB_DISMISS_A_REVIEW_FOR_A_PULL_REQUEST | Dismisses an APPROVED or CHANGES_REQUESTED review on a pull request with a mandatory explanatory message. | Read + write code, Full access |
Download an artifactGITHUB_DOWNLOAD_AN_ARTIFACT | Downloads a GitHub Actions workflow artifact as a ZIP file. | Read + write code, Full access |
Download a repository archive tarGITHUB_DOWNLOAD_A_REPOSITORY_ARCHIVE_TAR | Downloads a repository's source code as a tarball (.tar.gz) archive for a specific Git reference, if the repository is accessible. | Read + write code, Full access |
Download a repository archive zipGITHUB_DOWNLOAD_A_REPOSITORY_ARCHIVE_ZIP | Downloads a repository's source code as a ZIP archive for a specific Git reference (branch, tag, or commit SHA). | Read + write code, Full access |
Download job logs for a workflow runGITHUB_DOWNLOAD_JOB_LOGS_FOR_A_WORKFLOW_RUN | Downloads logs for a specific job in a GitHub Actions workflow run, contingent on the repository's existence and the job ID being valid and having produced logs. | Read + write code, Full access |
Download workflow run attempt logsGITHUB_DOWNLOAD_WORKFLOW_RUN_ATTEMPT_LOGS | Downloads a ZIP archive of logs for a specific workflow run attempt. | Read + write code, Full access |
Download workflow run logsGITHUB_DOWNLOAD_WORKFLOW_RUN_LOGS | Downloads logs for a specific GitHub Actions workflow run as a ZIP archive containing log files for each job in the workflow. | Read + write code, Full access |
Enable a workflowGITHUB_ENABLE_A_WORKFLOW | Reactivates a currently disabled GitHub Actions workflow within a repository using its workflow ID or filename. | Read + write code, Full access |
Enable github actions in selected repositoriesGITHUB_ENABLE_GITHUB_ACTIONS_IN_SELECTED_REPOSITORIES | Sets the specific repositories that can use GitHub Actions within an organization by replacing the current list; only applies if the organization's Actions policy is 'selected repositories'. | Read + write code, Full access |
Enable private vuln reporting for repoGITHUB_ENABLE_PRIVATE_VULN_REPORTING_FOR_REPO | Enables private vulnerability reporting for a repository, allowing security researchers to privately submit vulnerability reports to maintainers. | Read + write code, Full access |
Enable repo for github actionsGITHUB_ENABLE_REPO_FOR_GITHUB_ACTIONS | Adds a repository to the list of selected repositories enabled for GitHub Actions in an organization. | Read + write code, Full access |
Encrypt and update dev secretGITHUB_ENCRYPT_AND_UPDATE_DEV_SECRET | Creates or updates a repository's development environment secret using an encrypted_value and its corresponding key_id; the secret must be pre-encrypted with the repository's Codespaces public key. | Read + write code, Full access |
Encrypt org dev env secretGITHUB_ENCRYPT_ORG_DEV_ENV_SECRET | Creates or updates an organization's GitHub Codespaces secret using an encrypted value and its corresponding public key ID. | Read + write code, Full access |
Export a codespace for the authenticated userGITHUB_EXPORT_A_CODESPACE_FOR_THE_AUTHENTICATED_USER | Triggers an export of a user's specified codespace, automatically stopping it if active, and returns its export status and download URL. | Read + write code, Full access |
Export sbom for repoGITHUB_EXPORT_SBOM_FOR_REPO | Exports the software bill of materials (SBOM) in SPDX JSON format for a repository, if its dependency graph is enabled and it has at least one commit. | Read + write code, Full access |
Find pull requestsGITHUB_FIND_PULL_REQUESTS | Primary tool to find and search pull requests. | Read + write code, Full access |
Find repositoriesGITHUB_FIND_REPOSITORIES | AI-optimized repository search with smart filtering by language, stars, topics, and ownership. | Read + write code, Full access |
Follow organization graphqlGITHUB_FOLLOW_ORGANIZATION_GRAPHQL | Follow a GitHub organization using GraphQL. | Read + write code, Full access |
Follow userGITHUB_FOLLOW_USER | Allows the authenticated user to follow the GitHub user specified by username; this action is idempotent and the user cannot follow themselves. | Read + write code, Full access |
Follow user graphqlGITHUB_FOLLOW_USER_GRAPHQL | Follow a GitHub user using GraphQL. Use when you need to make the authenticated user follow another user. | Read + write code, Full access |
Force cancel workflow runGITHUB_FORCE_CANCEL_WORKFLOW_RUN | Forcefully cancels a queued or in-progress GitHub Actions workflow run, bypassing conditions like always() that would otherwise continue execution. | Full access |
Fork gistGITHUB_FORK_GIST | Forks a specified public gist, creating a copy under the authenticated user's account. | Read + write code, Full access |
Generate release notesGITHUB_GENERATE_RELEASE_NOTES | Generates Markdown release notes content (listing changes, pull requests, and contributors) for a GitHub repository release, customizable via tags and a configuration file. | Read + write code, Full access |
Get access restrictionsGITHUB_GET_ACCESS_RESTRICTIONS | Lists users, teams, and GitHub Apps with push access to a branch; this branch must be protected in repository settings for detailed restrictions, otherwise expect a 404 or empty response. | Read + write code, Full access |
Get admin branch protectionGITHUB_GET_ADMIN_BRANCH_PROTECTION | Checks if repository administrators are subject to the branch protection rules on a specific branch. | Read + write code, Full access |
Get all api versionsGITHUB_GET_ALL_API_VERSIONS | Retrieves all officially supported, date-based (e.g., "2022-11-28") versions of the GitHub REST API from the /versions endpoint. | Read + write code, Full access |
Get all contributor commit activityGITHUB_GET_ALL_CONTRIBUTOR_COMMIT_ACTIVITY | Retrieves commit activity (total commits, weekly additions/deletions/commits) for all contributors to a repository; may require a retry if GitHub returns 202 while preparing data. | Read + write code, Full access |
Get all deployment protection rules for envGITHUB_GET_ALL_DEPLOYMENT_PROTECTION_RULES_FOR_ENV | Lists all enabled custom deployment protection rules for a specific environment in a repository; the environment must exist and be configured for deployments. | Read + write code, Full access |
Get an appGITHUB_GET_AN_APP | Retrieves publicly available information for an existing GitHub App, identified by its unique URL-friendly app_slug. | Read + write code, Full access |
Get an artifactGITHUB_GET_AN_ARTIFACT | Gets a specific artifact for a repository by artifact_id. | Read + write code, Full access |
Get an assignmentGITHUB_GET_AN_ASSIGNMENT | Retrieves detailed information for a specific GitHub Classroom assignment if the authenticated user is an administrator of the classroom. | Read + write code, Full access |
Get an autolink reference of a repositoryGITHUB_GET_AN_AUTOLINK_REFERENCE_OF_A_REPOSITORY | Retrieves a specific autolink reference (which automatically hyperlinks text like 'JIRA-123' to an external system) for a repository using its unique ID; requires administrator access to the repository. | Read + write code, Full access |
Get an environmentGITHUB_GET_AN_ENVIRONMENT | Retrieves the details of a specific deployment environment for a given repository, including its name, configurations, and current status. | Read + write code, Full access |
Get an environment public keyGITHUB_GET_AN_ENVIRONMENT_PUBLIC_KEY | Retrieves the public key for a specified GitHub repository environment, used to encrypt secrets for GitHub Actions. | Read + write code, Full access |
Get an environment secretGITHUB_GET_AN_ENVIRONMENT_SECRET | Retrieves metadata (name and timestamps) for a single secret in a GitHub Actions environment. | Read + write code, Full access |
Get an environment variableGITHUB_GET_AN_ENVIRONMENT_VARIABLE | Retrieves a specific environment variable from a GitHub Actions environment by repository owner, repository name, environment name, and variable name. | Read + write code, Full access |
Get an issueGITHUB_GET_AN_ISSUE | Retrieves detailed information about a specific issue in a repository using the owner, repository name, and issue number. | Read + write code, Full access |
Get an issue commentGITHUB_GET_AN_ISSUE_COMMENT | Action to get an issue comment. | Read + write code, Full access |
Get an issue eventGITHUB_GET_AN_ISSUE_EVENT | Fetches details of a specific issue event for a given repository and event ID. | Read + write code, Full access |
Get an organizationGITHUB_GET_AN_ORGANIZATION | Get an organization | Read + write code, Full access |
Get an organization public keyGITHUB_GET_AN_ORGANIZATION_PUBLIC_KEY | Action for GetAnOrganizationPublicKey. | Read + write code, Full access |
Get an organization roleGITHUB_GET_AN_ORGANIZATION_ROLE | Retrieves a specific GitHub organization role by its ID. | All levels |
Get an organization secretGITHUB_GET_AN_ORGANIZATION_SECRET | Gets an organization secret's metadata (e.g., name, creation/update dates, visibility), but not its encrypted value. | All levels |
Get an organization variableGITHUB_GET_AN_ORGANIZATION_VARIABLE | Retrieves details (name, value, visibility, timestamps) of a specific, existing variable for an existing GitHub organization. | All levels |
Get an organization webhookGITHUB_GET_AN_ORGANIZATION_WEBHOOK | Retrieves the full configuration, including subscribed events and delivery settings, for an existing organization webhook. | All levels |
Get assignment gradesGITHUB_GET_ASSIGNMENT_GRADES | Retrieves all grades for an existing GitHub Classroom assignment. | All levels |
Get a blobGITHUB_GET_A_BLOB | Retrieves the raw, typically Base64-encoded, content of a file (blob) from a GitHub repository using its SHA hash, if the repository and blob SHA exist. | All levels |
Get a branchGITHUB_GET_A_BRANCH | Retrieves detailed information for a specified branch within a GitHub repository. | All levels |
Get a commitGITHUB_GET_A_COMMIT | Retrieves a specific commit from a repository by its owner, name, and a valid commit reference (SHA, branch, or tag), supporting pagination for large diffs. | All levels |
Get a milestoneGITHUB_GET_A_MILESTONE | Retrieves detailed information for a specific milestone within a GitHub repository by its number. | All levels |
Get a package for an organizationGITHUB_GET_A_PACKAGE_FOR_AN_ORGANIZATION | Retrieves a specific package (by type and name) from an organization, if both the package and organization exist. | All levels |
Get a package for a userGITHUB_GET_A_PACKAGE_FOR_A_USER | Retrieves metadata for a specific package owned by a GitHub user, using package type, name, and username as identifiers. | All levels |
Get a package for the authenticated userGITHUB_GET_A_PACKAGE_FOR_THE_AUTHENTICATED_USER | Retrieves detailed information for a specific package owned by the authenticated user. | All levels |
Get a package version for an organizationGITHUB_GET_A_PACKAGE_VERSION_FOR_AN_ORGANIZATION | Retrieves detailed information for a specific version of a package within an organization. | All levels |
Get a package version for a userGITHUB_GET_A_PACKAGE_VERSION_FOR_A_USER | Retrieves a specific public package version associated with a GitHub user. | All levels |
Get a package version for the authenticated userGITHUB_GET_A_PACKAGE_VERSION_FOR_THE_AUTHENTICATED_USER | Retrieves detailed information for an existing specific package version associated with the authenticated user, identified by its type, name, and version ID. | All levels |
Get a projectGITHUB_GET_A_PROJECT | Retrieves detailed information for a specific GitHub project (V2) using its project number and owner. | All levels |
Get a project cardGITHUB_GET_A_PROJECT_CARD | Retrieves all details of a specific project card, given its unique card_id. | All levels |
Get a project columnGITHUB_GET_A_PROJECT_COLUMN | Retrieves detailed information for a specific project column from GitHub Projects (classic). | All levels |
Get a pull requestGITHUB_GET_A_PULL_REQUEST | Retrieves a specific pull request from a GitHub repository using its owner, repository name, and pull request number. | All levels |
Get a referenceGITHUB_GET_A_REFERENCE | Retrieves a specific Git reference (e.g., a branch, tag, or fully qualified like 'heads/main') from a GitHub repository. | Read + write code, Full access |
Get a releaseGITHUB_GET_A_RELEASE | Gets a specific release from a GitHub repository, provided the repository is accessible and the release exists. | All levels |
Get a release assetGITHUB_GET_A_RELEASE_ASSET | Gets metadata for a specific release asset in a GitHub repository, including a browser_download_url for downloading the asset. | All levels |
Get a release by tag nameGITHUB_GET_A_RELEASE_BY_TAG_NAME | Gets a release from a GitHub repository by its tag name; the repository and a release with this tag must already exist. | All levels |
Get a repositoryGITHUB_GET_A_REPOSITORY | Retrieves detailed information about an existing and accessible GitHub repository. | All levels |
Get a repository public keyGITHUB_GET_A_REPOSITORY_PUBLIC_KEY | Gets a repository's public key for encrypting secrets to be used in GitHub Actions, if the repository exists and is accessible. | All levels |
Get a repository readmeGITHUB_GET_A_REPOSITORY_README | Fetches the README file (if it exists and is accessible) from a specified GitHub repository, returning its Base64-encoded content and metadata. | All levels |
Get a repository readme for a directoryGITHUB_GET_A_REPOSITORY_README_FOR_A_DIRECTORY | Retrieves the README file from a specified directory within a GitHub repository, optionally at a given commit, branch, or tag. | All levels |
Get a repository rulesetGITHUB_GET_A_REPOSITORY_RULESET | Retrieves a specific repository ruleset by its ID; if includes_parents is true, the search for this ruleset_id also extends to rulesets from parent organizations. | All levels |
Get a repository rule suiteGITHUB_GET_A_REPOSITORY_RULE_SUITE | Gets detailed information for a specific repository rule suite by its ID, including its evaluation status and the results of its individual rules. | All levels |
Get a repository secretGITHUB_GET_A_REPOSITORY_SECRET | Gets metadata (name, creation/update timestamps) for an existing repository secret, excluding its encrypted value. | All levels |
Get a repository subscriptionGITHUB_GET_A_REPOSITORY_SUBSCRIPTION | Gets the authenticated user's subscription details for a repository, indicating if they receive notifications. | All levels |
Get a repository variableGITHUB_GET_A_REPOSITORY_VARIABLE | Gets a specific GitHub Actions variable by name from an accessible repository. | All levels |
Get a repository webhookGITHUB_GET_A_REPOSITORY_WEBHOOK | Returns the configuration of an existing webhook for a given repository. | All levels |
Get a review comment for a pull requestGITHUB_GET_A_REVIEW_COMMENT_FOR_A_PULL_REQUEST | Retrieves a specific pull request review comment by its ID, provided the repository exists, is accessible, and the comment ID is valid. | All levels |
Get a review for a pull requestGITHUB_GET_A_REVIEW_FOR_A_PULL_REQUEST | Retrieves a specific review for a pull request using its owner, repository, pull request number, and review ID. | All levels |
Get a secret for the authenticated userGITHUB_GET_A_SECRET_FOR_THE_AUTHENTICATED_USER | Retrieves metadata (name, timestamps, visibility; not the value) for a specific, existing development environment secret associated with the authenticated user's GitHub Codespaces. | All levels |
Get a self hosted runner for an organizationGITHUB_GET_A_SELF_HOSTED_RUNNER_FOR_AN_ORGANIZATION | Retrieves detailed information about a specific self-hosted runner registered within a GitHub organization. | All levels |
Get a self hosted runner for a repositoryGITHUB_GET_A_SELF_HOSTED_RUNNER_FOR_A_REPOSITORY | Gets a specific self-hosted runner for a repository by its unique ID. | All levels |
Get a tagGITHUB_GET_A_TAG | Retrieves detailed information for a specific Git tag object from a GitHub repository, using the SHA of the tag object itself. | All levels |
Get a team by nameGITHUB_GET_A_TEAM_BY_NAME | Retrieves a GitHub team by its slug from a specific organization. | All levels |
Get a threadGITHUB_GET_A_THREAD | Retrieves a specific GitHub notification thread using its unique thread_id. | All levels |
Get a thread subscription for the authenticated userGITHUB_GET_A_THREAD_SUBSCRIPTION_FOR_THE_AUTHENTICATED_USER | Retrieves the authenticated user's subscription details for a specific notification thread, identified by thread_id. | Read + write code, Full access |
Get a treeGITHUB_GET_A_TREE | Browse and list all files/directories in a GitHub repository. | All levels |
Get a userGITHUB_GET_A_USER | Retrieves the public profile information for an existing GitHub user, specified by their username. | Read + write code, Full access |
Get a webhook configuration for an organizationGITHUB_GET_A_WEBHOOK_CONFIGURATION_FOR_AN_ORGANIZATION | Retrieves the configuration for a specific webhook associated with a GitHub organization. | All levels |
Get a webhook configuration for a repositoryGITHUB_GET_A_WEBHOOK_CONFIGURATION_FOR_A_REPOSITORY | Returns the configuration for an existing webhook on the specified repository. | All levels |
Get a webhook delivery for an organization webhookGITHUB_GET_A_WEBHOOK_DELIVERY_FOR_AN_ORGANIZATION_WEBHOOK | Returns detailed information for a specific delivery attempt of a webhook configured for the specified GitHub organization. | All levels |
Get a workflowGITHUB_GET_A_WORKFLOW | Retrieves detailed information for a specific GitHub Actions workflow in a repository, identified by either its numeric ID or its filename. | Read + write code, Full access |
Get a workflow runGITHUB_GET_A_WORKFLOW_RUN | Gets a specific workflow run by its ID from a GitHub repository. | All levels |
Get a workflow run attemptGITHUB_GET_A_WORKFLOW_RUN_ATTEMPT | Retrieves detailed information for a specific attempt of a workflow run in a GitHub repository, including its status, conclusion, and timings. | All levels |
Get billing usage report userGITHUB_GET_BILLING_USAGE_REPORT_USER | Retrieves the billing usage report for a specified GitHub user. | Read + write code, Full access |
Get branch protectionGITHUB_GET_BRANCH_PROTECTION | Retrieves branch protection settings for a specific, existing, and accessible branch in a GitHub repository; protection feature availability varies by GitHub product plan. | All levels |
Get catalog modelsGITHUB_GET_CATALOG_MODELS | Retrieve the list of AI models available in the GitHub Models catalog. | Read + write code, Full access |
Get check runGITHUB_GET_CHECK_RUN | Retrieves detailed information for a specific check run within a GitHub repository. | All levels |
Get check suiteGITHUB_GET_CHECK_SUITE | Retrieves a specific check suite (a collection of check runs) by its ID from a repository accessible to the authenticated user. | All levels |
Get classroomGITHUB_GET_CLASSROOM | Retrieves details for a specific GitHub Classroom. | All levels |
Get codeql databaseGITHUB_GET_CODEQL_DATABASE | Gets an existing CodeQL database (including a download URL) for a specified language in an accessible repository, if one has been successfully built for that language. | All levels |
Get codespaceGITHUB_GET_CODESPACE | Call to retrieve detailed information for a codespace_name belonging to the authenticated user, ensuring the codespace exists and is accessible. | All levels |
Get code of conductGITHUB_GET_CODE_OF_CONDUCT | Retrieves the full details of a specific GitHub code of conduct using its unique key. | All levels |
Get code of conduct graph qlGITHUB_GET_CODE_OF_CONDUCT_GRAPH_QL | Look up a code of conduct by its key using GitHub's GraphQL API. | All levels |
Get code scanning alertGITHUB_GET_CODE_SCANNING_ALERT | Retrieves a specific code scanning alert, which identifies potential code vulnerabilities or errors, by its number from the specified GitHub repository. | All levels |
Get code scanning analysisGITHUB_GET_CODE_SCANNING_ANALYSIS | Retrieves detailed information for a specific code scanning analysis on an accessible repository, identified by its analysis_id. | All levels |
Get code scanning default setupGITHUB_GET_CODE_SCANNING_DEFAULT_SETUP | Gets the default setup configuration for code scanning in a repository, including state, languages, query suite, and schedule for a repository if it exists. | All levels |
Get commit authorsGITHUB_GET_COMMIT_AUTHORS | Fetches commit authors identified during a repository import, used to map authors from an external VCS to GitHub accounts. | All levels |
Get commit commentGITHUB_GET_COMMIT_COMMENT | Retrieves the full details of a specific commit comment in a GitHub repository, using its unique identifier. | All levels |
Get commit objectGITHUB_GET_COMMIT_OBJECT | Retrieves detailed information (including author, committer, message, tree, parents, verification) for a specific commit in a GitHub repository, identified by its SHA. | All levels |
Get commit signature protectionGITHUB_GET_COMMIT_SIGNATURE_PROTECTION | Gets the commit signature protection status for a branch in a repository. | All levels |
Get commit statusesGITHUB_GET_COMMIT_STATUSES | List all statuses for a commit reference (SHA, branch, or tag) in reverse chronological order. | Read + write code, Full access |
Get community profile metricsGITHUB_GET_COMMUNITY_PROFILE_METRICS | Retrieves a repository's community profile metrics, including health percentage and the presence of key community files (e.g., README, LICENSE). | All levels |
Get contextual information for a userGITHUB_GET_CONTEXTUAL_INFORMATION_FOR_A_USER | Gets contextual hovercard information for a GitHub user; subject_type and subject_id can be jointly provided for more specific details. | Read + write code, Full access |
Get custom deployment protection ruleGITHUB_GET_CUSTOM_DEPLOYMENT_PROTECTION_RULE | Retrieves a specific custom deployment protection rule (used by GitHub Apps for external validation or manual approval of deployments) for a given environment in a repository. | All levels |
Get default attributes for a codespaceGITHUB_GET_DEFAULT_ATTRIBUTES_FOR_A_CODESPACE | Get pre-flight data (e.g., default location, devcontainer path) for creating a Codespace in a given repository (must exist and be accessible), optionally for a specific Git ref. | All levels |
Get default workflow permissions for an organizationGITHUB_GET_DEFAULT_WORKFLOW_PERMISSIONS_FOR_AN_ORGANIZATION | Gets the default GITHUB_TOKEN workflow permissions and settings for a GitHub organization. | All levels |
Get default workflow permissions for a repositoryGITHUB_GET_DEFAULT_WORKFLOW_PERMISSIONS_FOR_A_REPOSITORY | Gets the default workflow permissions (read or write) for the GITHUB_TOKEN and whether it can approve pull request reviews in an existing and accessible repository. | All levels |
Get dependency diffGITHUB_GET_DEPENDENCY_DIFF | Gets the dependency diff between two Git revisions in a repository, where 'basehead' specifies the revisions and 'name' can optionally scope to a specific manifest file. | All levels |
Get deploymentGITHUB_GET_DEPLOYMENT | Gets a specific deployment by ID from a repository, provided the repository and deployment ID exist. | All levels |
Get deployment branch policyGITHUB_GET_DEPLOYMENT_BRANCH_POLICY | Retrieves a specific deployment branch policy for an environment in a repository, identified by its unique ID. | All levels |
Get deployment statusGITHUB_GET_DEPLOYMENT_STATUS | Retrieves a specific deployment status by its ID for a given deployment within a GitHub repository. | All levels |
Get deploy keyGITHUB_GET_DEPLOY_KEY | Gets a specific deploy key, identified by its key_id, for the GitHub repository specified by owner and repo. | All levels |
Get details about a codespace exportGITHUB_GET_DETAILS_ABOUT_A_CODESPACE_EXPORT | Retrieves detailed information about a specific export of a codespace. | All levels |
Get discussionGITHUB_GET_DISCUSSION | Fetches a specific discussion by its number from a team within an organization. | All levels |
Get discussion commentGITHUB_GET_DISCUSSION_COMMENT | Fetches a specific comment from a team discussion within a specific organization. | All levels |
Get emojisGITHUB_GET_EMOJIS | Lists all emojis available for use on GitHub, including custom and Unicode emojis. | Read + write code, Full access |
Get enterprise member invitationGITHUB_GET_ENTERPRISE_MEMBER_INVITATION | Look up a pending enterprise unaffiliated member invitation by invitee and enterprise. | All levels |
Get feedsGITHUB_GET_FEEDS | Fetches a list of available GitHub feed URLs for the authenticated user. | All levels |
Get gistGITHUB_GET_GIST | Fetches a specific GitHub gist by its gist_id, returning comprehensive details if the gist exists. | All levels |
Get gist commentGITHUB_GET_GIST_COMMENT | Retrieves a specific Gist comment by its ID and the Gist's ID. | All levels |
Get gist revisionGITHUB_GET_GIST_REVISION | Retrieves a specific revision of a gist. | All levels |
Get github actions cache usage for an organizationGITHUB_GET_GITHUB_ACTIONS_CACHE_USAGE_FOR_AN_ORGANIZATION | Retrieves total GitHub Actions cache usage statistics for an organization, including active cache count and size across all repositories. | All levels |
Get github actions cache usage for a repositoryGITHUB_GET_GITHUB_ACTIONS_CACHE_USAGE_FOR_A_REPOSITORY | Retrieves the total count of active GitHub Actions caches and their combined size in bytes for a specified repository. | All levels |
Get github actions permissions for an organizationGITHUB_GET_GITHUB_ACTIONS_PERMISSIONS_FOR_AN_ORGANIZATION | Gets the GitHub Actions permissions for a specified organization, detailing repository enablement and allowed actions policies. | All levels |
Get github actions permissions for a repositoryGITHUB_GET_GITHUB_ACTIONS_PERMISSIONS_FOR_A_REPOSITORY | Gets the GitHub Actions permissions policy for a repository, including its enabled status and the scope of allowed actions. | All levels |
Get github billing premium request usage report userGITHUB_GET_GITHUB_BILLING_PREMIUM_REQUEST_USAGE_REPORT_USER | Get billing premium request usage report for a GitHub user. | Read + write code, Full access |
Get github billing usage summary for userGITHUB_GET_GITHUB_BILLING_USAGE_SUMMARY_FOR_USER | Retrieve billing usage summary for a GitHub user account. | All levels |
Get github meta informationGITHUB_GET_GITHUB_META_INFORMATION | Fetches GitHub's publicly available metadata, useful for configuring network security policies or IP allow-listing. | All levels |
Get github pages buildGITHUB_GET_GITHUB_PAGES_BUILD | Retrieves detailed information about a specific GitHub Pages build for a repository, which must have GitHub Pages enabled. | All levels |
Get gitignore templateGITHUB_GET_GITIGNORE_TEMPLATE | Retrieves a specific .gitignore template from GitHub by its name, which must be an existing template in GitHub's collection. | All levels |
Get global security advisoryGITHUB_GET_GLOBAL_SECURITY_ADVISORY | Retrieve a global GitHub security advisory by its GHSA identifier. | Read + write code, Full access |
Get graphql nodeGITHUB_GET_GRAPHQL_NODE | Fetch any GitHub object by its global node ID. | All levels |
Get graphql rate limitGITHUB_GET_GRAPHQL_RATE_LIMIT | Retrieve the authenticated client's GitHub GraphQL API rate limit information. | Read + write code, Full access |
Get information about a sarif uploadGITHUB_GET_INFORMATION_ABOUT_A_SARIF_UPLOAD | Retrieves detailed information, including processing status and results URL, about a specific SARIF (Static Analysis Results Interchange Format) upload for a repository, uniquely identified by its sarif_id. | All levels |
Get interaction restrictions for an organizationGITHUB_GET_INTERACTION_RESTRICTIONS_FOR_AN_ORGANIZATION | Retrieves interaction restrictions for an organization, showing which GitHub user types can interact with its public repositories and when restrictions expire; returns an empty response if no restrictions are set. | All levels |
Get interaction restrictions for a repositoryGITHUB_GET_INTERACTION_RESTRICTIONS_FOR_A_REPOSITORY | Retrieves active interaction restrictions for a repository, detailing which user groups are limited from activities like commenting or creating pull requests, and when these restrictions expire. | All levels |
Get interaction restrictions for public reposGITHUB_GET_INTERACTION_RESTRICTIONS_FOR_PUBLIC_REPOS | Retrieves currently active interaction restrictions for the authenticated user's public repositories. | All levels |
Get labelGITHUB_GET_LABEL | Retrieves a specific label by its name from a specified GitHub repository. | All levels |
Get large filesGITHUB_GET_LARGE_FILES | Lists files larger than 100MB identified during a previous source import for the specified repository. | All levels |
Get latest pages buildGITHUB_GET_LATEST_PAGES_BUILD | Retrieves information about the most recent GitHub Pages build for a repository, which must exist, be accessible, have GitHub Pages enabled, and have at least one prior build. | All levels |
Get licenseGITHUB_GET_LICENSE | Call this action to retrieve comprehensive details for a specific software license recognized by GitHub, using its unique license key. | All levels |
Get license graph qlGITHUB_GET_LICENSE_GRAPH_QL | Look up an open source license by its SPDX ID using GitHub's GraphQL API. | All levels |
Get octocatGITHUB_GET_OCTOCAT | Fetches an ASCII art representation of GitHub's Octocat, suitable for text-based displays. | All levels |
Get oidc subject claim templateGITHUB_GET_OIDC_SUBJECT_CLAIM_TEMPLATE | Retrieves the OpenID Connect (OIDC) subject claim customization template for a repository, which defines the sub claim structure in OIDC tokens for GitHub Actions workflows; returns the default configuration if no cus… | All levels |
Get organization audit logGITHUB_GET_ORGANIZATION_AUDIT_LOG | Retrieve an organization's audit log events for security and compliance investigations. | All levels |
Get organization custom propertyGITHUB_GET_ORGANIZATION_CUSTOM_PROPERTY | Retrieves the definition (schema) of a specific, existing custom property for an organization. | All levels |
Get organization project itemGITHUB_GET_ORGANIZATION_PROJECT_ITEM | Get an item from an organization-owned GitHub Projects V2 project. | Read + write code, Full access |
Get organization public keyGITHUB_GET_ORGANIZATION_PUBLIC_KEY | Retrieves an organization's public key, which must be used to encrypt secret values before they are configured for Codespaces. | Read + write code, Full access |
Get organization public key for dependabotGITHUB_GET_ORGANIZATION_PUBLIC_KEY_FOR_DEPENDABOT | Retrieves the public key for an existing GitHub organization, required for encrypting Dependabot secrets. | Read + write code, Full access |
Get org allowed actionsGITHUB_GET_ORG_ALLOWED_ACTIONS | Gets the list of allowed actions and reusable workflows for an organization when the 'allowed_actions' policy is set to 'selected'. | Read + write code, Full access |
Get org dev environment secret safelyGITHUB_GET_ORG_DEV_ENVIRONMENT_SECRET_SAFELY | Retrieves metadata for a specific secret available to an organization's GitHub Codespaces without exposing its encrypted value. | All levels |
Get org oidc subject claim templateGITHUB_GET_ORG_OIDC_SUBJECT_CLAIM_TEMPLATE | Retrieves the OpenID Connect (OIDC) subject claim customization template for a GitHub organization, which defines how the sub claim in OIDC tokens for workflows is constructed. | All levels |
Get pages dns health checkGITHUB_GET_PAGES_DNS_HEALTH_CHECK | Retrieves the DNS health check status (e.g., CNAME/A records, HTTPS) for a GitHub Pages site; the check may be pending (HTTP 202) on initial calls or after site changes. | All levels |
Get pages siteGITHUB_GET_PAGES_SITE | Retrieves information for a GitHub Pages site, which must be enabled for the repository. | All levels |
Get page viewsGITHUB_GET_PAGE_VIEWS | Retrieves page view statistics for a repository over the last 14 days, including total views, unique visitors, and a daily or weekly breakdown. | All levels |
Get pending deployments for a workflow runGITHUB_GET_PENDING_DEPLOYMENTS_FOR_A_WORKFLOW_RUN | Retrieves pending deployment environments for a specific workflow run that are awaiting approval due to protection rules. | All levels |
Get project permission for a userGITHUB_GET_PROJECT_PERMISSION_FOR_A_USER | Retrieves permission information for a GitHub project (classic) collaborator. | All levels |
Get public key for secret encryptionGITHUB_GET_PUBLIC_KEY_FOR_SECRET_ENCRYPTION | Retrieves a repository's public key for encrypting GitHub Codespaces secrets; requires repo scope or equivalent read access to codespaces secrets for private repositories. | All levels |
Get public key for the authenticated userGITHUB_GET_PUBLIC_KEY_FOR_THE_AUTHENTICATED_USER | Retrieves the authenticated user's public key for encrypting GitHub Codespaces secrets. | All levels |
Get pull request review protectionGITHUB_GET_PULL_REQUEST_REVIEW_PROTECTION | Retrieves the pull request review protection settings for a specific branch in a GitHub repository, if such protection is configured. | All levels |
Get rate limit status for the authenticated userGITHUB_GET_RATE_LIMIT_STATUS_FOR_THE_AUTHENTICATED_USER | Retrieves the authenticated user's current GitHub API rate limit status, including usage and limits across different resource categories. | All levels |
Get raw repository contentGITHUB_GET_RAW_REPOSITORY_CONTENT | Fetch raw file content from a GitHub repository. | All levels |
Get repository clonesGITHUB_GET_REPOSITORY_CLONES | Retrieves the total number of clones and a breakdown of clone activity (daily or weekly) for a specified repository over the preceding 14 days. | All levels |
Get repository contentGITHUB_GET_REPOSITORY_CONTENT | Retrieves a file's Base64 encoded content or lists a directory's contents from a GitHub repository. | Read + write code, Full access |
Get repository graph qlGITHUB_GET_REPOSITORY_GRAPH_QL | Lookup a repository by owner and name using GitHub's GraphQL API. | Read + write code, Full access |
Get repository ownerGITHUB_GET_REPOSITORY_OWNER | Lookup a repository owner (User or Organization) by login using GitHub's GraphQL API. | All levels |
Get repository permissions for a userGITHUB_GET_REPOSITORY_PERMISSIONS_FOR_A_USER | Retrieves a specific user's permission level ('admin', 'write', 'read', or 'none') for a given repository, where 'maintain' role is reported as 'write' and 'triage' as 'read'. | All levels |
Get repository public key for encryptionGITHUB_GET_REPOSITORY_PUBLIC_KEY_FOR_ENCRYPTION | Gets a repository's public key, used to encrypt secrets for Dependabot. | All levels |
Get repository secret securelyGITHUB_GET_REPOSITORY_SECRET_SECURELY | Retrieves metadata for an existing Dependabot secret in a repository, without exposing its encrypted value. | All levels |
Get repository security advisoryGITHUB_GET_REPOSITORY_SECURITY_ADVISORY | Retrieve a repository security advisory using its GHSA identifier. | Read + write code, Full access |
Get repository webhook deliveryGITHUB_GET_REPOSITORY_WEBHOOK_DELIVERY | Retrieves a specific delivery for a repository webhook, identified by its hook_id and delivery_id. | All levels |
Get repos attestationsGITHUB_GET_REPOS_ATTESTATIONS | Retrieve attestations by subject digest from a GitHub repository. | Read + write code, Full access |
Get repo allowed actionsGITHUB_GET_REPO_ALLOWED_ACTIONS | Gets the settings for allowed actions and reusable workflows in a repository. | All levels |
Get repo dev env secretGITHUB_GET_REPO_DEV_ENV_SECRET | Gets metadata (name, creation/update timestamps) for a specific, existing development environment secret (Codespaces secret) in a repository, without exposing its value. | Read + write code, Full access |
Get rules for a branchGITHUB_GET_RULES_FOR_A_BRANCH | Retrieves all active rules for a specific branch in a GitHub repository, excluding rules in 'evaluate' or 'disabled' status. | Read + write code, Full access |
Get single org secret without decryptionGITHUB_GET_SINGLE_ORG_SECRET_WITHOUT_DECRYPTION | Gets a single organization Dependabot secret's metadata (name, timestamps, visibility) without revealing its encrypted value. | Read + write code, Full access |
Get status checks protectionGITHUB_GET_STATUS_CHECKS_PROTECTION | Retrieves the status check protection settings for a specific branch in a GitHub repository, if status check protection is enabled for it. | Read + write code, Full access |
Get teams with access to the protected branchGITHUB_GET_TEAMS_WITH_ACCESS_TO_THE_PROTECTED_BRANCH | Lists teams with explicit push access to a protected branch, provided team restrictions are configured in the branch's protection settings; returns an empty list otherwise. | Read + write code, Full access |
Get team membership for a userGITHUB_GET_TEAM_MEMBERSHIP_FOR_A_USER | Retrieves a user's role and membership status within a specific team in an organization. | Read + write code, Full access |
Get the authenticated userGITHUB_GET_THE_AUTHENTICATED_USER | Gets the profile information for the currently authenticated GitHub user, including potentially private details based on user settings. | Read + write code, Full access |
Get the combined status for a specific referenceGITHUB_GET_THE_COMBINED_STATUS_FOR_A_SPECIFIC_REFERENCE | Retrieves the aggregated commit status (e.g., success, failure, pending) from all checks for a specific reference (SHA, branch, or tag) in a GitHub repository. | Read + write code, Full access |
Get the hourly commit count for each dayGITHUB_GET_THE_HOURLY_COMMIT_COUNT_FOR_EACH_DAY | Retrieves the 'punch card' data, showing hourly commit counts for each day of the week for an existing and accessible repository. | Read + write code, Full access |
Get the last year of commit activityGITHUB_GET_THE_LAST_YEAR_OF_COMMIT_ACTIVITY | Fetches weekly commit totals and daily commit counts for the last 52 weeks for a specified GitHub repository. | Read + write code, Full access |
Get the latest releaseGITHUB_GET_THE_LATEST_RELEASE | Fetches the latest official (non-prerelease, non-draft) release for a GitHub repository; requires at least one such published release. | Read + write code, Full access |
Get the license for a repositoryGITHUB_GET_THE_LICENSE_FOR_A_REPOSITORY | Retrieves the license file and its details for a repository, optionally from a specific Git reference (branch, tag, or commit SHA). | Read + write code, Full access |
Get the review history for a workflow runGITHUB_GET_THE_REVIEW_HISTORY_FOR_A_WORKFLOW_RUN | Retrieves the detailed approval history for a specific workflow run in a GitHub repository, detailing each review's environment, state, reviewer, and comments, to track the approval process for workflows, particularly a… | Read + write code, Full access |
Get the status of a github pages deploymentGITHUB_GET_THE_STATUS_OF_A_GITHUB_PAGES_DEPLOYMENT | Retrieves the status of a specific GitHub Pages deployment for a repository, which must have GitHub Pages enabled. | Read + write code, Full access |
Get the weekly commit activityGITHUB_GET_THE_WEEKLY_COMMIT_ACTIVITY | Fetches the weekly commit activity (additions and deletions per week) for a repository over the past year; best for repositories with under 10,000 commits. | Read + write code, Full access |
Get the weekly commit countGITHUB_GET_THE_WEEKLY_COMMIT_COUNT | Retrieves the weekly commit count for a repository, detailing commits by the owner and all contributors over the last 52 weeks; GitHub may return a 202 status or an empty response if statistics are being computed. | Read + write code, Full access |
Get the zen of githubGITHUB_GET_THE_ZEN_OF_GITHUB | Retrieves a random quote from GitHub's 'Zen of GitHub' collection, reflecting GitHub's design philosophies and offering humorous insights, useful for displaying GitHub wisdom or a lighthearted message. | Read + write code, Full access |
Get top referral pathsGITHUB_GET_TOP_REFERRAL_PATHS | Fetches the top 10 most viewed content paths for a repository from the last 14 days. | Read + write code, Full access |
Get top referral sourcesGITHUB_GET_TOP_REFERRAL_SOURCES | Fetches the top 10 websites that referred traffic to a repository within the last 14 days. | Read + write code, Full access |
Get users attestationsGITHUB_GET_USERS_ATTESTATIONS | Get attestations by subject digest for a GitHub user. | Read + write code, Full access |
Get users projects v2GITHUB_GET_USERS_PROJECTS_V2 | List GitHub Projects v2 for a specified user. | All levels |
Get users with access to the protected branchGITHUB_GET_USERS_WITH_ACCESS_TO_THE_PROTECTED_BRANCH | Lists users with explicit push access to a protected branch, provided its protection rule restricts pushes to specific users. | Read + write code, Full access |
Get user by idGITHUB_GET_USER_BY_ID | Retrieves a GitHub user's profile information by their unique numeric account ID. | Read + write code, Full access |
Get user project itemGITHUB_GET_USER_PROJECT_ITEM | Get an item from a user-owned project in GitHub Projects V2. | Read + write code, Full access |
Get viewer graphqlGITHUB_GET_VIEWER_GRAPHQL | Retrieve the authenticated user's profile information via GitHub GraphQL. | All levels |
Get workflow external accessGITHUB_GET_WORKFLOW_EXTERNAL_ACCESS | Gets the access level settings for a private repository, determining how workflows outside this repository can use its actions and reusable workflows. | Read + write code, Full access |
Get workflow run jobGITHUB_GET_WORKFLOW_RUN_JOB | Retrieves detailed information for a specific job within a GitHub Actions workflow run, given its job_id which must be valid for the specified repository's workflow. | All levels |
Get workflow run usageGITHUB_GET_WORKFLOW_RUN_USAGE | Gets the billable time, in milliseconds, for a specific workflow run, detailing time spent on various operating systems. | Read + write code, Full access |
Get workflow usageGITHUB_GET_WORKFLOW_USAGE | Gets the billable time (in milliseconds, broken down by runner OS) for a specific workflow within a repository for the current billing cycle. | Read + write code, Full access |
Is repository starred by the userGITHUB_IS_REPOSITORY_STARRED_BY_THE_USER | Use to determine if the authenticated user has starred a specific GitHub repository, which is confirmed by an HTTP 204 status (resulting in an empty dictionary in the response data); the action fails (e.g., HTTP 404) if… | All levels |
List accepted assignments for an assignmentGITHUB_LIST_ACCEPTED_ASSIGNMENTS_FOR_AN_ASSIGNMENT | Lists accepted assignments (student repositories created after acceptance) for an existing GitHub Classroom assignment, identified by its unique assignment_id. | All levels |
List accessible repositoriesGITHUB_LIST_ACCESSIBLE_REPOSITORIES | Lists repositories that the authenticated user can access through a specific GitHub App installation. | All levels |
List apps with access to the protected branchGITHUB_LIST_APPS_WITH_ACCESS_TO_THE_PROTECTED_BRANCH | Lists GitHub Apps with push access to a repository's protected branch. | All levels |
List app installationsGITHUB_LIST_APP_INSTALLATIONS | Lists GitHub App installations accessible to the authenticated user via their access token, including installation details, permissions, and repository access. | All levels |
List artifacts for a repositoryGITHUB_LIST_ARTIFACTS_FOR_A_REPOSITORY | Lists GitHub Actions workflow artifacts for a specified repository, which must exist. | All levels |
List assigneesGITHUB_LIST_ASSIGNEES | Lists users who can be assigned to issues in a repository, typically those with push access. | All levels |
List assignments for a classroomGITHUB_LIST_ASSIGNMENTS_FOR_A_CLASSROOM | Lists all assignments for a given GitHub Classroom classroom_id; the classroom must exist and be accessible. | All levels |
List attestation repositoriesGITHUB_LIST_ATTESTATION_REPOSITORIES | List attestation repositories for an organization. | All levels |
List available machine types for a repositoryGITHUB_LIST_AVAILABLE_MACHINE_TYPES_FOR_A_REPOSITORY | Lists machine types available for GitHub Codespaces in a repository, optionally using a Git ref to check compatibility based on prebuild availability and devcontainer configurations. | All levels |
List branchesGITHUB_LIST_BRANCHES | Lists branches for an existing GitHub repository, with an option to filter by protection status. | All levels |
List branches for head commitGITHUB_LIST_BRANCHES_FOR_HEAD_COMMIT | Lists branches in an accessible repository where the provided commit SHA is the head, useful for identifying development lines based on that commit. | All levels |
List check runs for a refGITHUB_LIST_CHECK_RUNS_FOR_A_REF | List GitHub check runs for a commit SHA, branch, or tag to assess CI status and conclusions. | Read + write code, Full access |
List check runs in a check suiteGITHUB_LIST_CHECK_RUNS_IN_A_CHECK_SUITE | Lists check runs for a specific check suite in a GitHub repository, optionally filtering by check name or status. | Read + write code, Full access |
List check run annotationsGITHUB_LIST_CHECK_RUN_ANNOTATIONS | Lists annotations for a specific check run in a GitHub repository, detailing issues like errors or warnings on particular code lines. | Read + write code, Full access |
List check suites for a git referenceGITHUB_LIST_CHECK_SUITES_FOR_A_GIT_REFERENCE | Lists check suites for a Git reference (commit SHA, branch, or tag) in a repository, optionally filtering by GitHub App ID or check run name. | Read + write code, Full access |
List child teamsGITHUB_LIST_CHILD_TEAMS | Lists the immediate child teams of a parent team within an organization. | Read + write code, Full access |
List classroomsGITHUB_LIST_CLASSROOMS | Lists GitHub Classrooms to which the authenticated user has administrative access. | Read + write code, Full access |
List codeowners errorsGITHUB_LIST_CODEOWNERS_ERRORS | Lists syntax errors in a repository's CODEOWNERS file, which must be located at the root, .github/, or docs/ directory for the specified ref. | Read + write code, Full access |
List codeql databases for a repositoryGITHUB_LIST_CODEQL_DATABASES_FOR_A_REPOSITORY | Lists all CodeQL databases for a repository where CodeQL analysis has been previously run and completed. | Read + write code, Full access |
List codespaces for a user in organizationGITHUB_LIST_CODESPACES_FOR_A_USER_IN_ORGANIZATION | Lists all GitHub Codespaces owned by a specified member of a given organization. | Read + write code, Full access |
List codespaces for the authenticated userGITHUB_LIST_CODESPACES_FOR_THE_AUTHENTICATED_USER | Lists GitHub Codespaces for the authenticated user, optionally filtering by repository ID and supporting pagination. | Read + write code, Full access |
List codespaces for the organizationGITHUB_LIST_CODESPACES_FOR_THE_ORGANIZATION | Lists active/pending GitHub Codespaces for an existing organization; admins list all, members list their own. | Read + write code, Full access |
List codes of conductGITHUB_LIST_CODES_OF_CONDUCT | Retrieves all available codes of conduct from GitHub, often used to select one for a repository. | Read + write code, Full access |
List codes of conduct graphqlGITHUB_LIST_CODES_OF_CONDUCT_GRAPHQL | Fetch all available codes of conduct using GitHub's GraphQL API. | Read + write code, Full access |
List code scanning alerts for an organizationGITHUB_LIST_CODE_SCANNING_ALERTS_FOR_AN_ORGANIZATION | Lists code scanning alerts for a GitHub organization; use EITHER tool_name OR tool_guid if filtering by tool, not both. | Read + write code, Full access |
List code scanning alerts for a repositoryGITHUB_LIST_CODE_SCANNING_ALERTS_FOR_A_REPOSITORY | Lists code scanning alerts for a repository, optionally filtering by tool (which must have produced scan results for the repository), Git reference, state, or severity. | Read + write code, Full access |
List code scanning analyses for a repositoryGITHUB_LIST_CODE_SCANNING_ANALYSES_FOR_A_REPOSITORY | Lists code scanning analyses for an existing repository, optionally filtering by tool (name or GUID), Git reference, or SARIF ID. | Read + write code, Full access |
List comments for a pull request reviewGITHUB_LIST_COMMENTS_FOR_A_PULL_REQUEST_REVIEW | Lists all comments for a specific review on a GitHub pull request. | Read + write code, Full access |
List comment changesGITHUB_LIST_COMMENT_CHANGES | List issue and PR comment changes across an organization's repositories efficiently. | All levels |
List commitsGITHUB_LIST_COMMITS | Lists commits for a GitHub repository. Requires 'owner' (username/org) and 'repo' (repository name) parameters. Optionally filter by SHA/branch, path, author, committer, or date range. | Read + write code, Full access |
List commits on a pull requestGITHUB_LIST_COMMITS_ON_A_PULL_REQUEST | Lists commits for a pull request; requires the repository and pull request to exist and be accessible, and supports pagination. | Read + write code, Full access |
List commit commentsGITHUB_LIST_COMMIT_COMMENTS | Retrieves all comments for a specific commit in a GitHub repository, supporting pagination. | Read + write code, Full access |
List commit comments for a repositoryGITHUB_LIST_COMMIT_COMMENTS_FOR_A_REPOSITORY | Lists all commit comments for a specified repository, which must exist and be accessible. | Read + write code, Full access |
List commonly used licensesGITHUB_LIST_COMMONLY_USED_LICENSES | Retrieves a list of commonly used software licenses from GitHub, optionally filtering for 'featured' licenses whose specific selection criteria by GitHub may vary. | Read + write code, Full access |
List custom properties for an organizationGITHUB_LIST_CUSTOM_PROPERTIES_FOR_AN_ORGANIZATION | Gets the schema definitions for all custom properties configured for an organization, not the specific values assigned to repositories. | Read + write code, Full access |
List custom property values for a repositoryGITHUB_LIST_CUSTOM_PROPERTY_VALUES_FOR_A_REPOSITORY | Gets all custom property values for a repository. | Read + write code, Full access |
List custom property values for org reposGITHUB_LIST_CUSTOM_PROPERTY_VALUES_FOR_ORG_REPOS | Lists repositories in an organization with their custom property values. | Read + write code, Full access |
List deliveries for an organization webhookGITHUB_LIST_DELIVERIES_FOR_AN_ORGANIZATION_WEBHOOK | Retrieves a list of webhook deliveries for a specific webhook in an organization, allowing inspection of delivery history and details. | Read + write code, Full access |
List deliveries for a repository webhookGITHUB_LIST_DELIVERIES_FOR_A_REPOSITORY_WEBHOOK | Retrieves delivery attempts for a specific repository webhook to inspect its history; ensure the webhook ID exists. | Read + write code, Full access |
List deploymentsGITHUB_LIST_DEPLOYMENTS | Lists deployments for a specified repository; repository must exist. | Read + write code, Full access |
List deployment branch policiesGITHUB_LIST_DEPLOYMENT_BRANCH_POLICIES | Lists all deployment branch policies for a specified environment in a GitHub repository. | Read + write code, Full access |
List deployment statusesGITHUB_LIST_DEPLOYMENT_STATUSES | Lists all statuses for a given deployment in a repository. | Read + write code, Full access |
List deploy keysGITHUB_LIST_DEPLOY_KEYS | Lists deploy SSH keys for a specified repository; the repository must exist. | Read + write code, Full access |
List discussionsGITHUB_LIST_DISCUSSIONS | Lists discussions for a specific team within an organization, with options for sorting, pagination, and filtering by pinned status. | Read + write code, Full access |
List discussion commentsGITHUB_LIST_DISCUSSION_COMMENTS | Lists all comments for a specific team discussion within an organization. | Read + write code, Full access |
List email addresses for the authenticated userGITHUB_LIST_EMAIL_ADDRESSES_FOR_THE_AUTHENTICATED_USER | Lists all email addresses for the authenticated user, including their primary status, verification status, and visibility. | Read + write code, Full access |
List environmentsGITHUB_LIST_ENVIRONMENTS | Retrieves all deployment environments for a specified repository, which are used to configure protection rules and secrets for different software lifecycle stages. | All levels |
List environment custom deployment rulesGITHUB_LIST_ENVIRONMENT_CUSTOM_DEPLOYMENT_RULES | Lists all custom deployment protection rule integrations for a repository environment; the environment_name must be URL-encoded. | All levels |
List environment secretsGITHUB_LIST_ENVIRONMENT_SECRETS | Lists the names and metadata (not values) of secrets for a specified, existing environment within an existing GitHub repository. | All levels |
List environment variablesGITHUB_LIST_ENVIRONMENT_VARIABLES | Lists all environment variables, which are plaintext key-value pairs for GitHub Actions workflows, for a specified environment within a GitHub repository. | All levels |
List events for the authenticated userGITHUB_LIST_EVENTS_FOR_THE_AUTHENTICATED_USER | Lists public events for the specified GitHub user, or private events if authenticated as that user, in reverse chronological order. | All levels |
List events received by the authenticated userGITHUB_LIST_EVENTS_RECEIVED_BY_THE_AUTHENTICATED_USER | Lists events a specific GitHub user received from followed users and watched repositories; returns private events if authenticated for username, otherwise public. | All levels |
List followers of a userGITHUB_LIST_FOLLOWERS_OF_A_USER | Lists followers for a specified, existing GitHub user. | All levels |
List followers of the authenticated userGITHUB_LIST_FOLLOWERS_OF_THE_AUTHENTICATED_USER | Lists users following the authenticated GitHub user, returning an empty list if the user has no followers. | Read + write code, Full access |
List forksGITHUB_LIST_FORKS | Lists forks for a specified repository, which must exist, with options for sorting and pagination. | All levels |
List gist commentsGITHUB_LIST_GIST_COMMENTS | Lists comments for a specified GitHub Gist. | All levels |
List gist commitsGITHUB_LIST_GIST_COMMITS | Lists all commits for a specified gist. | All levels |
List gist forksGITHUB_LIST_GIST_FORKS | Lists all forks for a given GitHub gist ID. | All levels |
Just ask in plain language: “check GitHub for …”, “create … in GitHub”, “every Monday, … ”, and the agent finds the right tool, runs it, and reports back with a receipt in your Runs ledger. Anything outward-facing (sending, posting, publishing) that a mission didn't clearly authorize comes back to you as a ticket first.
| Agent says | What's happening | Fix |
|---|---|---|
| "GitHub isn't connected" | No active connection (or this agent is denied) | Connect on the Integrations page; check the agent's per-app policy |
| "The connection has expired" | GitHub ended the authorization (they all do periodically) | Click Reconnect on the account, same settings, one click |
| "I'm not allowed to do that" | The action is above the account's access level, or the agent is scoped down | Raise the level under Manage, or adjust that agent's policy |
| It did something unexpected | The ask was ambiguous (e.g. matched an existing item) | Be explicit, "create a NEW …", and give agents a working folder where relevant |