# GitHub MCP Server

## Overview

The GitHub MCP server connects Panther AI to your GitHub account, providing tools to interact with repositories, issues, pull requests, GitHub Actions, and code security features.

**MCP server URL:** `https://api.githubcopilot.com/mcp`

## Prerequisites

* A GitHub account
* For organizations using GitHub Copilot Business or Enterprise
  * An organization admin must enable the **MCP servers in Copilot** policy

## Setup

The GitHub MCP server requires manual OAuth credentials. GitHub supports two app types for OAuth: **GitHub Apps** (recommended) and **OAuth Apps**. GitHub Apps are more secure — they use short-lived tokens and fine-grained permissions. OAuth Apps are simpler to set up but use broader, longer-lived tokens.

Regardless of app type, add the server in Panther first to obtain the redirect URL.

### Option 1: GitHub App (recommended)

1. **Add the server in Panther:**
   1. In the upper-right corner of your Panther Console, click the gear icon (**Settings**) > **Panther AI**.
   2. Navigate to the **MCP Servers** tab.
   3. Click **Add MCP Server**.
   4. Select **GitHub** from the catalog.
   5. Enter a **Name** for the server (e.g., "GitHub").
   6. Optionally enter a **Description**.
   7. Click **Next**. Panther will display a **Redirect URL**. Copy this URL — you will need it in the next step.
2. **Create a GitHub App:**
   1. Log in to your GitHub account.
   2. Navigate to **Settings** > **Developer settings** > **GitHub Apps**.
   3. Click **New GitHub App**.
   4. Fill in the following:
      * **GitHub App name**: Enter a name (e.g., "Panther AI MCP").
      * **Homepage URL**: Enter your Panther instance URL.
      * **Callback URL**: Paste the redirect URL copied from step 1.
   5. Set the required **permissions** for the actions you want to allow.
   6. Click **Create GitHub App**.
   7. Note the **Client ID** and generate a **Client Secret**.
3. **Install the GitHub App:**
   * To grant access to a personal account: navigate to the app's settings page and click **Install App**.
   * To grant access to an organization: an organization admin must install the app at **Organization Settings** > **GitHub Apps**, or navigate to `https://github.com/organizations/[ORG_NAME]/settings/apps`.
4. **Complete the setup in Panther:**
   1. Return to the Panther MCP server setup wizard.
   2. Enter the **Client ID** and **Client Secret** from step 2.
   3. Click **Create**.

### Option 2: OAuth App

1. **Add the server in Panther:**
   1. In the upper-right corner of your Panther Console, click the gear icon (**Settings**) > **Panther AI**.
   2. Navigate to the **MCP Servers** tab.
   3. Click **Add MCP Server**.
   4. Select **GitHub** from the catalog.
   5. Enter a **Name** for the server (e.g., "GitHub").
   6. Optionally enter a **Description**.
   7. Click **Next**. Panther will display a **Redirect URL**. Copy this URL — you will need it in the next step.
2. **Create a GitHub OAuth App:**
   1. Log in to your GitHub account.
   2. Navigate to **Settings** > **Developer settings** > **OAuth Apps**.
   3. Click **New OAuth App**.
   4. Fill in the following:
      * **Application name**: Enter a name (e.g., "Panther AI MCP").
      * **Homepage URL**: Enter your Panther instance URL.
      * **Authorization callback URL**: Paste the redirect URL copied from step 1.
   5. Click **Register application**.
   6. Note the **Client ID** and generate a **Client Secret**.
3. **Complete the setup in Panther:**
   1. Return to the Panther MCP server setup wizard.
   2. Enter the **Client ID** and **Client Secret** from step 2.
   3. Click **Create**.

### Connecting your account

After an admin adds the GitHub server:

1. On the MCP Servers page, find **GitHub** in the available servers list.
2. Click **Connect**.
3. You will be redirected to GitHub's OAuth authorization page. Sign in and grant the requested permissions.
4. After authorization, you will be redirected back to Panther to configure your tool permissions.

### Granting access to organization private repositories

Organizations may block GitHub Apps and OAuth Apps until explicitly approved. If users encounter authorization errors when accessing organization resources, an organization admin must approve access.

* **GitHub App**: An organization admin must install the app at `https://github.com/organizations/[ORG_NAME]/settings/apps`.
* **OAuth App**: An organization admin must approve the app.
  * In GitHub, navigate to **Organization Settings** > **Third-party Access** > **OAuth app policy.**
  * Click **Review** > **Grant access**.

Until approved, the app will only be able to access the organization's public resources.

## Learn more

* [GitHub MCP Server documentation](https://docs.github.com/en/copilot/how-tos/provide-context/use-mcp/set-up-the-github-mcp-server)
* [GitHub MCP Server repository](https://github.com/github/github-mcp-server)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.panther.com/ai/mcp-integrations/github-mcp-server.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.