What it does
The official GitHub MCP server (Go, `github/github-mcp-server`) gives an AI client structured, authenticated access to the GitHub platform: repositories, files, issues, pull requests, Actions, security alerts, discussions, and more. Tool calls are deterministic GitHub API operations — the connecting LLM does the reasoning, nothing runs inside the server.
Example prompts
- List the open pull requests on my repository and summarize each.
- Open an issue titled "Flaky test in CI" with a short repro.
Tools provided
- get_file_contents — Read a file or directory from a repository.
- create_or_update_file — Commit a file change to a repository.
- create_issue — Open a new issue.
- list_issues — List issues in a repository.
- create_pull_request — Open a pull request.
- merge_pull_request — Merge a pull request.
- search_code — Search code across repositories.
- list_commits — List commit history for a branch.
What you'll need to connect
This agent will ask you for the following. You enter them when you connect — they're encrypted and never shared with the creator.
- GitHub Personal Access Token · optionalA GitHub PAT (or sign in with OAuth on the hosted endpoint).Create a personal access token in GitHub (Settings → Developer settings → Personal access tokens) scoped to what the agent needs.Paste the value as a single line.Only sent to: api.githubcopilot.com, github.com
How you're protected
FindAgent runs these safety checks on every agent automatically. They're always on and can't be turned off.
- Prompt-injection scanning
Every request is checked for known prompt-injection and jailbreak attempts before the agent runs. This is always on.
- Secret-leak scanning
Every response is scanned for leaked API keys, tokens, and other secrets before it reaches you. This is always on.
