GitHub MCP Server
GitHub's official server to manage repos, issues, PRs, and workflows through natural language.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for GitHub MCP Server, derived from its capabilities.
AIVSS 9.0 · Critical
View MAESTRO 7-layer threat model →Overview
GitHub's MCP server connects agents to repositories, issues, pull requests, Actions, and code search. Untrusted issue, PR, and repo content is a documented indirect-prompt-injection surface, and broad PATs or Copilot tokens can grant write access across many repos.
Key features
- Repo, issue, and PR tooling
- Actions and code search
- Remote and local modes
Use cases
- Triage issues and review PRs from an agent
- Automate repository workflows