name:Docker

on:

schedule:

-cron:'27 0 * * *'

push:

branches:[ "main" ]

tags:[ 'v*.*.*' ]

pull_request:

branches:[ "main" ]

env:

REGISTRY:ghcr.io

IMAGE_NAME:${{ github.repository }}

jobs:

build:

runs-on:ubuntu-latest

permissions:

contents:read

packages:write

id-token:write

steps:

-name:Checkout repository

uses:actions/checkout@v4

-name:Install cosign

if:github.event_name != 'pull_request'

uses:sigstore/cosign-installer@59acb6260d9c0ba8f4a2f9d9b48431a222b68e20#v3.5.0

with:

cosign-release:'v2.2.4'

-name:Set up Docker Buildx

uses:docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226# v3.0.0

-name:Log into registry ${{ env.REGISTRY }}

if:github.event_name != 'pull_request'

uses:docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d# v3.0.0

with:

registry:${{ env.REGISTRY }}

username:${{ github.actor }}

password:${{ secrets.GITHUB_TOKEN }}

-name:Extract Docker metadata

id:meta

uses:docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934# v5.0.0

with:

images:${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}

-name:Build and push Docker image

id:build-and-push

uses:docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09# v5.0.0

with:

context:.

push:${{ github.event_name != 'pull_request' }}

tags:${{ steps.meta.outputs.tags }}

labels:${{ steps.meta.outputs.labels }}

cache-from:type=gha

cache-to:type=gha,mode=max

-name:Sign the published Docker image

if:${{ github.event_name != 'pull_request' }}

env:

TAGS:${{ steps.meta.outputs.tags }}

DIGEST:${{ steps.build-and-push.outputs.digest }}

run:echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}

[fork]:https://github.com/github/github-mcp-server/fork

[pr]:https://github.com/github/github-mcp-server/compare

[style]:https://github.com/github/github-mcp-server/blob/main/.golangci.yaml

Hi there! We're thrilled that you'd like to contribute to this project. Your help is essential for keeping it great.

Contributions to this project are[released](https://help.github.com/articles/github-terms-of-service/#6-contributions-under-repository-license) to the public under the[project's open source license](LICENSE.txt).

Please note that this project is released with a[Contributor Code of Conduct](CODE_OF_CONDUCT.md). By participating in this project you agree to abide by its terms.

These are one time installations required to be able to test your changes locally as part of the pull request (PR) submission process.

1. install Go[through download](https://go.dev/doc/install) |[through Homebrew](https://formulae.brew.sh/formula/go)

1.[install golangci-lint](https://golangci-lint.run/welcome/install/#local-installation)

1.[Fork][fork] and clone the repository

1. Make sure the tests pass on your machine:`go test -v ./...`

1. Make sure linter passes on your machine:`golangci-lint run`

1. Create a new branch:`git checkout -b my-branch-name`

1. Make your change, add tests, and make sure the tests and linter still pass

1. Push to your fork and[submit a pull request][pr]

1. Pat yourself on the back and wait for your pull request to be reviewed and merged.

Here are a few things you can do that will increase the likelihood of your pull request being accepted:

- Follow the[style guide][style].

- Write tests.

- Keep your change as focused as possible. If there are multiple changes you would like to make that are not dependent upon each other, consider submitting them as separate pull requests.

- Write a[good commit message](http://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html).

-[How to Contribute to Open Source](https://opensource.guide/how-to-contribute/)

-[Using Pull Requests](https://help.github.com/articles/about-pull-requests/)

-[GitHub Help](https://help.github.com)

FROM golang:1.23.7 AS build

WORKDIR /build

COPY . .

RUN go mod download

RUN CGO_ENABLED=0 go build -o github-mcp-server cmd/github-mcp-server/main.go

FROM gcr.io/distroless/base-debian12

WORKDIR /server

COPY --from=build /build/github-mcp-server .

CMD ["./github-mcp-server","stdio"]

-`repo`: Repository name (string, required)

-`issue_number`: Issue number (number, required)

-**create_issue** - Create a new issue in a GitHub repository

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`title`: Issue title (string, required)

-`body`: Issue body content (string, optional)

-`assignees`: Comma-separated list of usernames to assign to this issue (string, optional)

-`labels`: Comma-separated list of labels to apply to this issue (string, optional)

-**add_issue_comment** - Add a comment to an issue

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`issue_number`: Issue number (number, required)

-`body`: Comment text (string, required)

-**list_issues** - List and filter repository issues

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`state`: Filter by state ('open', 'closed', 'all') (string, optional)

-`labels`: Comma-separated list of labels to filter by (string, optional)

-`sort`: Sort by ('created', 'updated', 'comments') (string, optional)

-`direction`: Sort direction ('asc', 'desc') (string, optional)

-`since`: Filter by date (ISO 8601 timestamp) (string, optional)

-`page`: Page number (number, optional)

-`per_page`: Results per page (number, optional)

-**search_issues** - Search for issues and pull requests

-`query`: Search query (string, required)

-`sort`: Sort field (string, optional)

-`state`: Alert state (string, optional)

-`severity`: Alert severity (string, optional)

-**Get Repository Content**

Retrieves the content of a repository at a specific path.

-**Template**:`repo://{owner}/{repo}/contents{/path*}`

-**Parameters**:

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`path`: File or directory path (string, optional)

-**Get Repository Content for a Specific Branch**

Retrieves the content of a repository at a specific path for a given branch.

-**Template**:`repo://{owner}/{repo}/refs/heads/{branch}/contents{/path*}`

-**Parameters**:

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`branch`: Branch name (string, required)

-`path`: File or directory path (string, optional)

-**Get Repository Content for a Specific Commit**

Retrieves the content of a repository at a specific path for a given commit.

-**Template**:`repo://{owner}/{repo}/sha/{sha}/contents{/path*}`

-**Parameters**:

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`sha`: Commit SHA (string, required)

-`path`: File or directory path (string, optional)

-**Get Repository Content for a Specific Tag**

Retrieves the content of a repository at a specific path for a given tag.

-**Template**:`repo://{owner}/{repo}/refs/tags/{tag}/contents{/path*}`

-**Parameters**:

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`tag`: Tag name (string, required)

-`path`: File or directory path (string, optional)

-**Get Repository Content for a Specific Pull Request**

Retrieves the content of a repository at a specific path for a given pull request.

-**Template**:`repo://{owner}/{repo}/refs/pull/{pr_number}/head/contents{/path*}`

-**Parameters**:

-`owner`: Repository owner (string, required)

-`repo`: Repository name (string, required)

-`pr_number`: Pull request number (string, required)

-`path`: File or directory path (string, optional)

"TOOL_ADD_ISSUE_COMMENT_DESCRIPTION":"an alternative description",

"TOOL_CREATE_BRANCH_DESCRIPTION":"Create a new branchin a GitHub repository"

Thanks for helping make GitHub safe for everyone.

GitHub takes the security of our software products and services seriously, including all of the open source code repositories managed through our GitHub organizations, such as[GitHub](https://github.com/GitHub).

Even though[open source repositories are outside of the scope of our bug bounty program](https://bounty.github.com/index.html#scope) and therefore not eligible for bounty rewards, we will ensure that your finding gets passed along to the appropriate maintainers for remediation.

If you believe you have found a security vulnerability in any GitHub-owned repository, please report it to us through coordinated disclosure.

**Please do not report security vulnerabilities through public GitHub issues, discussions, or pull requests.**

Instead, please send an email to opensource-security[@]github.com.

Please include as much of the information listed below as you can to help us better understand and resolve the issue:

* The type of issue (e.g., buffer overflow, SQL injection, or cross-site scripting)

* Full paths of source file(s) related to the manifestation of the issue

* The location of the affected source code (tag/branch/commit or direct URL)

* Any special configuration required to reproduce the issue

* Step-by-step instructions to reproduce the issue

* Proof-of-concept or exploit code (if possible)

* Impact of the issue, including how an attacker might exploit the issue

This information will help us triage your report more quickly.

See[GitHub's Safe Harbor Policy](https://docs.github.com/en/site-policy/security-policies/github-bug-bounty-program-legal-safe-harbor#1-safe-harbor-terms)

This project uses GitHub issues to track bugs and feature requests. Please search the existing issues before filing new issues to avoid duplicates. For new issues, file your bug or feature request as a new issue.

For help or questions about using this project, please open an issue.

- The`github-mcp-server` is under active development and maintained by GitHub staff**AND THE COMMUNITY**. We will do our best to respond to support, feature requests, and community questions in a timely manner.

Support for this project is limited to the resources listed above.