ⓘ | GitHub | github.get_gist | Repository | low | high | | | Reads a single gist by id. |
ⓘ | GitHub | github.get_global_security_advisory | Code & Release | low | high | | | Reads a public global security advisory from the GitHub Advisory Database. |
ⓘ | GitHub | github.get_job_logs | Secrets & Workflows | medium | high | | SOC2ISO_27001 | Reads workflow job logs; logs frequently leak environment values, tokens, and connection strings. |
ⓘ | GitHub | github.get_label | Issues | low | high | | | Reads a single label definition. |
ⓘ | GitHub | github.get_latest_release | Repository | low | high | | | Reads the metadata of the most recent release for a repository. |
ⓘ | GitHub | github.get_me | Identity & Admin | low | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Reads the authenticated user's profile. |
ⓘ | GitHub | github.get_notification_details | Operations | low | high | | | Reads details of a single notification thread. |
ⓘ | GitHub | github.get_release_by_tag | Repository | low | high | | | Reads release metadata for a specific tag. |
ⓘ | GitHub | github.get_repository_tree | Repository | low | high | | | Reads the git tree (file listing) for a repository at a given ref. |
ⓘ | GitHub | github.get_secret_scanning_alert | Code & Release | medium | high | | SOC2ISO_27001NIST_CSF | Reads a secret scanning alert; the alert payload may include the leaked secret value or a partial fingerprint. |
ⓘ | GitHub | github.get_tag | Repository | low | high | | | Reads tag metadata for a repository. |
ⓘ | GitHub | github.get_team_members | Identity & Admin | low | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Lists members of an organization team; returns identifiable user data. |
ⓘ | GitHub | github.get_teams | Identity & Admin | low | high | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Lists teams in an organization; returns team membership and slug data. |
ⓘ | GitHub | github.github_support_docs_search | Operations | low | high | | | Searches GitHub's public product and support documentation; read-only over public material. |
ⓘ | GitHub | github.issue_read | Issues | low | medium | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Reads issue details and comments; private repository issues may contain customer-reported PII or security details. |
ⓘ | GitHub | github.issue_write | Issues | low | high | | | Creates or updates an issue (title, body, assignees, state). |
ⓘ | GitHub | github.label_write | Issues | low | high | | | Creates, updates, or removes a label on a repository. |
ⓘ | GitHub | github.list_branches | Repository | low | high | | | Lists branches in a repository. |
ⓘ | GitHub | github.list_code_scanning_alerts | Code & Release | medium | high | | SOC2ISO_27001NIST_CSF | Enumerates code scanning alerts across a repository; surfaces unpatched vulnerabilities to the caller. |
ⓘ | GitHub | github.list_commits | Repository | low | medium | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Lists commits on a branch or path; surfaces author identity and timestamps. |
ⓘ | GitHub | github.list_copilot_spaces | Operations | low | medium | | | Enumerates Copilot Spaces visible to the caller; metadata-only. |
ⓘ | GitHub | github.list_dependabot_alerts | Code & Release | medium | high | | SOC2ISO_27001NIST_CSF | Enumerates open Dependabot alerts; surfaces the unpatched dependency surface to the caller. |
ⓘ | GitHub | github.list_discussion_categories | Issues | low | high | | | Lists discussion categories configured on a repository. |
ⓘ | GitHub | github.list_discussions | Issues | low | high | | | Lists discussion threads on a repository. |
ⓘ | GitHub | github.list_gists | Repository | low | high | | | Lists gists for the authenticated user. |
ⓘ | GitHub | github.list_global_security_advisories | Code & Release | low | high | | | Lists public global security advisories. |
ⓘ | GitHub | github.list_issue_types | Issues | low | high | | | Lists configured issue types for an organization. |
ⓘ | GitHub | github.list_issues | Issues | low | high | | | Lists issues on a repository or for the caller. |
ⓘ | GitHub | github.list_label | Issues | low | high | | | Lists labels defined on a repository. |
ⓘ | GitHub | github.list_notifications | Operations | low | high | | | Lists the caller's GitHub notifications. |
ⓘ | GitHub | github.list_org_repository_security_advisories | Code & Release | medium | high | | SOC2ISO_27001NIST_CSF | Lists security advisories across an organization's repositories, including private/draft advisories. |
ⓘ | GitHub | github.list_pull_requests | Code & Release | low | high | | | Lists pull requests on a repository. |
ⓘ | GitHub | github.list_releases | Repository | low | high | | | Lists releases for a repository. |
ⓘ | GitHub | github.list_repository_security_advisories | Code & Release | medium | high | | SOC2ISO_27001NIST_CSF | Lists security advisories on a single repository, including private/draft advisories. |
ⓘ | GitHub | github.list_secret_scanning_alerts | Code & Release | medium | high | | SOC2ISO_27001NIST_CSF | Enumerates secret scanning alerts; an attacker reading this list can prioritize live credentials to harvest. |
ⓘ | GitHub | github.list_starred_repositories | Operations | low | high | | | Lists repositories the caller or another user has starred. |
ⓘ | GitHub | github.list_tags | Repository | low | high | | | Lists tags for a repository. |
ⓘ | GitHub | github.manage_notification_subscription | Operations | low | high | | | Updates the caller's subscription state for a single notification thread. |
ⓘ | GitHub | github.manage_repository_notification_subscription | Operations | low | high | | | Updates the caller's subscription state for an entire repository. |
ⓘ | GitHub | github.mark_all_notifications_read | Operations | low | high | | | Marks all of the caller's notifications as read. |
ⓘ | GitHub | github.merge_pull_request | Code & Release | medium | high | | SOXCOSOSOC2ISO_27001 | Integrates a pull request into the target branch; for financial-system repositories this is in scope for SOX ITGCs and change-management controls. |
ⓘ | GitHub | github.projects_get | Issues | low | high | | | Reads metadata for a Projects v2 board, item, or field. |
ⓘ | GitHub | github.projects_list | Issues | low | high | | | Lists Projects v2 boards or items accessible to the caller. |
ⓘ | GitHub | github.projects_write | Issues | low | high | | | Creates, updates, or removes Projects v2 items, fields, or status; standard planning-board write. |
ⓘ | GitHub | github.pull_request_read | Code & Release | low | high | | | Reads pull request details, diffs, comments, and review state. |
ⓘ | GitHub | github.pull_request_review_write | Code & Release | high | high | ⚠ SoD | SOXCOSOSOC2ISO_27001NIST_CSF | Submits a pull request review (approve, request changes, comment); the same principal can author and approve a PR, the textbook segregation-of-duties violation. |
ⓘ | GitHub | github.push_files | Repository | medium | high | | SOXCOSOSOC2ISO_27001 | Commits a batch of file changes directly to a branch; combined with merge_pull_request, this enables ship-without-review. |
ⓘ | GitHub | github.request_copilot_review | Operations | low | high | | | Requests an AI Copilot code review on a pull request; review verdict is advisory and does not satisfy required-reviewer rules. |
ⓘ | GitHub | github.search_code | Repository | medium | high | | SOC2ISO_27001GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Searches code across accessible repositories; can surface secrets, credentials, or PII at scale and constitutes a data-exfiltration vector. |
ⓘ | GitHub | github.search_issues | Issues | low | medium | | GDPRUK_GDPRCCPAPIPEDALGPDAPPIPIPLPOPIA | Searches issues across accessible repositories; can surface PII reported in issue bodies at scale. |