Install command
Provided
Official GitHub MCP server providing comprehensive GitHub API access for repository management, file operations, and search functionality
Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.
Decision playbook
Signals are comparatively strong, but you should still validate source, privacy posture, and package provenance for your environment.
0
96
—
No baseline selected
No major trust-signal divergence detected in the current selection.
Confirm ownership and provenance before trusting install instructions.
Source link availableRequired
Open the canonical repository and verify ownership.
Source provenance statusRequired
Marked as first-party.
Metadata reviewed
Registry metadata indicates a reviewed listing.
Validate risk disclosures before installation or API wiring.
Safety notes presentRequired
Review the listed safety guidance before running commands.
Privacy notes presentRequired
Review data handling notes before connecting accounts or secrets.
Trust level risk gateRequired
Trust level does not block evaluation.
Check package metadata and artifact integrity signals.
Install payload available
Install or copy payload is available for review.
Package verification flag
Package marked verified.
Checksum metadata
SHA-256 hash is present.
Use compare context to validate trade-offs before adoption.
Compare tray has multiple entries
Add at least one more entry to compare trust differences.
Baseline comparison available
No baseline peer selected yet.
Diverging trust signals identified
No major trust-signal divergence found.
Setup at a glance
Copy-ready — paste the snippet to get started.
Install command
Provided
Config snippet
Provided
Copy snippet
Provided
Prerequisites
10 to clear
Platforms
4 listed
Difficulty
0/100
Adoption plan
Current risk score 0/100. Use staged verification before broader rollout.
Validate source and review signals before any execution.
Confirm source provenanceRequired
Source URL/provenance metadata is present.
Confirm metadata review state
Listing has review metadata.
Verify install payload
Install/config payload exists and can be inspected.
Confirm safety, privacy, and package integrity signals.
Review safety notesRequired
Safety notes are present.
Review privacy notesRequired
Privacy notes are present.
Verify package integrity metadata
Package verification/checksum metadata is available.
Adopt in controlled steps based on the selected plan.
Run in isolated sandbox firstRequired
Use a constrained sandbox and observe behavior across multiple tasks.
Roll out graduallyRequired
Roll out to a small cohort before wider usage.
Set monitoring and fallback
Define rollback path and monitor errors after adoption.
Evidence readiness
Required evidence gates are covered (6/6 signals complete).
Source repository/provenance is listed.
Required in this preset
Review metadata is present.
Required in this preset
Safety notes are present.
Required in this preset
Privacy notes are present.
Optional in this preset
Package integrity metadata is present.
Optional in this preset
Install payload is available.
Required in this preset
Required evidence gates are covered for this preset.
Decision timeline
6/6 steps complete with no blocking gaps for this preset.
triage
Source/provenance metadata is available.
triage
Review metadata is available.
verify
Safety notes are available.
verify
Privacy notes are available.
verify
Package integrity metadata is available.
rollout
Install payload is available.
No required blockers for this timeline preset.
Prerequisite readiness
10 prerequisites to line up before setup. Have accounts and credentials ready first.
Safety & privacy surface
1 safety and 1 privacy notes across 2 risk areas. Review closely: credentials & tokens, network access.
{
"github": {
"env": {
"GITHUB_PERSONAL_ACCESS_TOKEN": "${GITHUB_PERSONAL_ACCESS_TOKEN}"
},
"args": [
"run",
"-i",
"--rm",
"-e",
"GITHUB_PERSONAL_ACCESS_TOKEN",
"ghcr.io/github/github-mcp-server"
],
"command": "docker"
}
}Transform how you interact with GitHub repositories by connecting Claude to the official GitHub MCP Server. Seamlessly read, create, and update files across repositories, search code and issues, manage pull requests, and analyze repository insights—all through natural language commands with automatic branch creation and proper Git history preservation.
{
"github": {
"env": {
"GITHUB_PERSONAL_ACCESS_TOKEN": "${GITHUB_PERSONAL_ACCESS_TOKEN}"
},
"args": ["run", "-i", "--rm", "-e", "GITHUB_PERSONAL_ACCESS_TOKEN", "ghcr.io/github/github-mcp-server"],
"command": "docker"
}
}
Read files and directories from any GitHub repository you have access to. Claude will fetch the content and help you understand or modify it.
// Ask Claude to read a specific file
"Can you show me the contents of src/lib/utils.ts from my-org/my-repo?";
// Or read multiple files
"Show me all TypeScript files in the src/components directory of my-org/my-repo";
Create new files or update existing ones. The MCP server automatically creates branches and maintains proper Git history for all changes.
// Create a new React component
"Create a new Button component in my-org/my-repo at src/components/Button.tsx with TypeScript and proper props";
// Update existing file
"Update the README.md in my-org/my-repo to include installation instructions for the new Button component";
Search code using GitHub's powerful search API. Find functions, classes, patterns, or specific implementations across your repositories.
// Search for specific patterns
"Find all files in my-org/my-repo that use the 'useState' hook";
// Search across multiple repos
"Search all my repositories for functions that handle authentication";
Query issues and pull requests using GitHub's search syntax. Filter by labels, status, author, and more.
// List issues
"Show me all open issues with the 'bug' label in my-org/my-repo";
// Find pull requests
"Find all pull requests that mention 'authentication' in my-org/my-repo";
Access repository metadata, statistics, and insights. Useful for analyzing project health and contributor activity.
// Get repository details
"Show me information about my-org/my-repo including stars, forks, and main language";
// List all repositories
"List all repositories in my-org organization sorted by stars";
Perform multiple file operations atomically. The MCP server handles branch creation and ensures all changes are committed together.
// Create multiple related files at once
"Create a new feature in my-org/my-repo:
- Component file at src/components/Feature.tsx
- Test file at src/components/Feature.test.tsx
- Export it from src/components/index.ts"
Create a new GitHub issue with labels and description
// Create GitHub issue with labels
const issue = await github.issues.create({
owner: "owner",
repo: "repo",
title: "Bug: Fix authentication error",
body: "Issue description",
labels: ["bug", "high-priority"],
});
Personal access tokens have 5,000 requests/hour limit. Wait for hourly reset or use GitHub App with 15,000/hour limit for Enterprise Cloud. Check X-RateLimit-Reset header for reset time.
Regenerate personal access token from GitHub Settings > Developer Settings. Verify token includes repo scope for repository access. Check token hasn't expired and update GITHUB_PERSONAL_ACCESS_TOKEN in config.
Authorize token for SSO if organization requires it. Go to GitHub Settings > Applications > Personal Access Tokens, click Configure SSO, and authorize organization. Verify you have repo access.
Verify repository name spelling: owner/repo-name format. Check you have read permissions to repository. For private repos, ensure token has repo scope, not just public_repo.
Verify token has repo write permissions. Check repository isn't archived or locked. For organization repos, confirm you have push access and branch protection rules allow commits.
Verify personal access token is valid and not expired. Check token scopes match required operations. Ensure token format is correct (Bearer token in Authorization header). For OAuth integrations, verify token refresh logic is working correctly.
Implement exponential backoff retry logic with jitter. Use GitHub API rate limit headers to monitor usage. Reduce concurrent requests. Cache frequently accessed repository data. GitHub allows 5,000 requests per hour for authenticated users.
Verify token has access to the repository. Check repository permissions and organization membership. Ensure token has required scopes (repo, issues, pull_requests) for target operations.
Check network connectivity and firewall settings. Verify GitHub API endpoints are accessible. Increase request timeout values. Implement connection pooling and retry mechanisms with exponential backoff.
GitHub MCP Server for Claude side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
3 trust signals differ across this comparison (Package trust, Source provenance, Submitter).
| Field | Official GitHub MCP server providing comprehensive GitHub API access for repository management, file operations, and search functionality Open dossier | Official MCP server providing Git repository tools for reading, searching, and manipulating Git repositories Open dossier | Official LINE MCP server that connects Claude and other AI agents to the LINE Messaging API for push messages, broadcasts, profile lookup, quotas, follower IDs, and rich-menu management. Open dossier | Read and write records, manage bases and tables in Airtable directly from Claude Open dossier |
|---|---|---|---|---|
| Next steps | ||||
| Trust | ||||
| Review status | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed |
| Package trustDiffers | Package verified | Package verified | Package not verified | Package verified |
| Source provenanceDiffers | Source-backed | No submission link | Source-backed | No submission link |
| SubmitterDiffers | — | — | oktofeesh1 | — |
| Install risk | Low risk | Low risk | Review first | Low risk |
| Notes | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ |
| Brand | ||||
| Category | mcp | mcp | mcp | mcp |
| Source | first-party | first-party | source-backed | first-party |
| Author | GitHub | Anthropic | LINE | domdomegg |
| Added | 2025-09-18 | 2025-09-16 | 2026-06-06 | 2025-09-18 |
| Platforms | Claude CodeCodexCursorClaude Desktop | Claude CodeClaude Desktop | Claude CodeClaude Desktop | Claude CodeClaude Desktop |
| Source repo | — | — | — | — |
| Safety notes | ✓Use a least-privilege GitHub token because repository, issue, pull request, and file operations can modify public or private projects. | ✓Restrict access to intended repositories and review write operations because commands can alter branches, commits, and working trees. | ✓LINE Bot MCP Server can push text and flex messages to users, broadcast messages to all followers, retrieve follower IDs, inspect profiles, check message quotas, create rich menus, set default rich menus, cancel defaults, and delete rich menus. Broadcast and rich-menu tools can affect every user following the connected LINE Official Account, so require human approval before running them in production. Push-message tools can contact individual users directly; confirm the target `userId`, message body, and account context before sending. Rich-menu tools can upload generated menu images and change user-facing navigation for the account. Use least-privilege channel tokens where possible, keep test and production LINE accounts separate, and monitor quota consumption. The upstream README marks the project as a preview version for experimental use with potentially incomplete functionality or support. | ✓Restrict the Airtable API key to the bases and write scopes Claude is allowed to use before enabling record or schema changes. |
| Privacy notes | ✓Repository contents, issues, pull requests, comments, org metadata, and user details may be sent through model context. | ✓Source code, commit history, author metadata, file paths, and repository configuration may be sent through tool calls. | ✓Channel access tokens, destination user IDs, follower IDs, profile display names, profile picture URLs, status messages, language, message contents, flex-message JSON, and rich-menu IDs can be exposed to the MCP client. Broadcast prompts, generated messages, user IDs, and profile results may be retained in MCP client logs, terminal history, model context, or chat transcripts. Treat LINE Official Account credentials and recipient identifiers as secrets, and avoid pasting real tokens or user IDs into shared logs. Review LINE platform policies and internal consent requirements before retrieving follower IDs or using AI-generated outbound messages. | ✓Airtable records, field values, attachments, and base metadata may be sent through the MCP client and model context. |
| Prerequisites |
|
|
|
|
| Install | | | | |
| Config | | | | |
| Citations | ||||
| Claim | Unclaimed | Unclaimed | Unclaimed | Unclaimed |
Source-backed guides for putting this to work.
Choose the right HeyClaude surface for each workflow.
Loading live community signals…
A short, calm digest of reviewed Claude resources. Unsubscribe any time.