MCP GitHub Server

v2025.4.6

GitHub (formerly Anthropic)

MCPgitversion-controlmcpmodel-context-protocol
82
Strong
About This MCP

MCP server providing AI models with comprehensive GitHub integration capabilities. Enables repository management, issue tracking, pull request operations, and code search. NOTE: The original Anthropic version has been deprecated. Development moved to GitHub's official server at github.com/github/github-mcp-server.

Last Evaluated: November 9, 2025
Official Website

Trust Vector Analysis

Dimension Breakdown

🚀Performance & Reliability
+
api reliability

API stability and uptime analysis

Evidence
GitHub API DocumentationBuilt on GitHub's reliable REST API with 99.9% uptime SLA
highVerified: 2025-11-09
operation success rate

Operation success testing

Evidence
MCP GitHub ServerHigh success rate for repo operations, issues, and PR management
highVerified: 2025-11-09
rate limit handling

Rate limiting behavior testing

Evidence
GitHub Rate LimitsRespects GitHub rate limits (5000/hour authenticated, 60/hour unauthenticated)
mediumVerified: 2025-11-09
search accuracy

Search result quality assessment

Evidence
GitHub Search APIPowerful code and repository search capabilities
highVerified: 2025-11-09
error recovery

Error handling testing

Evidence
MCP ImplementationHandles API errors gracefully with retry logic
mediumVerified: 2025-11-09
🛡️Security
+
authentication security

Authentication mechanism review

Evidence
GitHub Personal Access TokensUses GitHub PAT or OAuth for secure authentication
highVerified: 2025-11-09
token exposure risk

Token security analysis

Evidence
MCP Security ModelToken stored locally but AI can perform any action within token scope
highVerified: 2025-11-09
scope limitation

Permission scope testing

Evidence
GitHub Token ScopesSupports granular permission scopes, but requires careful configuration
mediumVerified: 2025-11-09
action auditability

Audit logging review

Evidence
GitHub Audit LogAll actions logged in GitHub's audit system
highVerified: 2025-11-09
unauthorized action risk

Authorization boundary testing

Evidence
Security AnalysisAI can create PRs, issues, and modify repos within token permissions
mediumVerified: 2025-11-09
🔒Privacy & Compliance
+
code exposure

Data flow analysis

Evidence
MCP Data FlowRepository code and metadata sent to LLM provider for analysis
highVerified: 2025-11-09
sensitive data protection

Privacy controls assessment

Evidence
MCP Security GuidelinesNo built-in secret detection; risk of exposing API keys or credentials in code
mediumVerified: 2025-11-09
organization data control

Access control review

Evidence
GitHub PermissionsAccess controlled by GitHub org permissions and token scopes
mediumVerified: 2025-11-09
third party data sharing

Data sharing analysis

Evidence
LLM Provider PoliciesRepository data shared with LLM provider per their privacy policy
highVerified: 2025-11-09
👁️Trust & Transparency
+
documentation quality

Documentation completeness review

Evidence
MCP GitHub DocsComprehensive documentation with setup guides and API reference
highVerified: 2025-11-09
operation visibility

Logging and traceability assessment

Evidence
MCP ProtocolAll GitHub operations visible in MCP logs and GitHub audit trail
highVerified: 2025-11-09
open source transparency

Source code review

Evidence
GitHub RepositoryFully open source implementation with MIT license
highVerified: 2025-11-09
api coverage clarity

API documentation review

Evidence
MCP Server DocumentationClear documentation of supported GitHub API operations
mediumVerified: 2025-11-09
⚙️Operational Excellence
+
ease of setup

Setup complexity assessment

Evidence
MCP Setup GuideSimple setup requiring only GitHub PAT configuration
highVerified: 2025-11-09
api performance

Performance benchmarking

Evidence
GitHub API PerformanceResponse times vary based on GitHub API load (typically 200-500ms)
mediumVerified: 2025-11-09
reliability

Uptime analysis

Evidence
GitHub StatusDepends on GitHub API uptime (historically >99.9%)
highVerified: 2025-11-09
feature coverage

Feature completeness assessment

Evidence
MCP GitHub ServerCovers repos, issues, PRs, search, and file operations
highVerified: 2025-11-09
community adoption

Community activity analysis

Evidence
GitHub CommunityGrowing adoption as MCP protocol gains traction (launched late 2024)
mediumVerified: 2025-11-09
Strengths
  • +Comprehensive GitHub API coverage (repos, issues, PRs, search)
  • +Built on reliable GitHub infrastructure with high uptime
  • +Excellent for development workflows and code collaboration
  • +Full operation auditability through GitHub's audit logs
  • +Open source implementation with active Anthropic support
  • +Supports granular permission scopes via GitHub tokens
Limitations
  • !Repository code and metadata exposed to LLM provider APIs
  • !Risk of unintended repository modifications or PR creation
  • !No built-in secret detection or sensitive data filtering
  • !Subject to GitHub API rate limits (5000 requests/hour)
  • !Token scope misconfiguration can grant excessive permissions
  • !Potential for accidental data leakage from private repositories
Metadata
license: MIT
supported platforms
0: All platforms with Node.js/Python
programming languages
0: TypeScript
1: Python
mcp version: 1.0
github repo: https://github.com/github/github-mcp-server
github stars: 58700
deprecated repo: https://github.com/modelcontextprotocol/servers-archived
api dependency: GitHub REST API v3
authentication: GitHub Personal Access Token or OAuth
first release: 2024-11
maintained by: GitHub
status: Migrated - Now maintained by GitHub
transport types
0: stdio
installation methods
0: npm

Use Case Ratings

code generation

Excellent for AI-assisted development, PR creation, and code review workflows

customer support

Useful for creating support issues and tracking feature requests

content creation

Good for managing documentation and content in GitHub repos

data analysis

Useful for analyzing repository metrics, commit history, and issue data

research assistant

Excellent for researching codebases, finding examples, and tracking issues

legal compliance

Limited applicability; potential risk of exposing private repositories

healthcare

Low suitability due to risk of exposing sensitive code to LLM providers

financial analysis

Moderate risk; requires careful repository access controls

education

Great for teaching programming, managing assignments, and code review

creative writing

Useful for managing writing projects in GitHub, but not the primary use case