All servers

Developer tools

GitHub logo

GitHub MCP server

Give AI agents governed access to the GitHub MCP server through one audited gateway. Scoped repo permissions, full observability, and tamper-evident logs on every tool call.

Book a demoExplore the MCP Gateway

What is the GitHub MCP server?

The GitHub MCP server is an open Model Context Protocol (MCP) server that connects AI agents to GitHub repositories, issues, pull requests, and Actions. Through it an agent can search code, open and update issues, review pull requests, and inspect CI without bespoke integration code, while the Averta MCP Gateway keeps every action scoped and audited.

github-search-code

Search code across repositories in the organization.

github-get-file

Read file contents from any branch or commit.

github-create-issue

Open issues with labels, assignees, and milestones.

github-update-issue

Update issue state, labels, and assignees.

github-list-pull-requests

List and filter pull requests by status and author.

github-create-pull-request

Open a pull request from a branch with a description.

github-list-commits

Browse commit history on a branch.

github-get-actions

Inspect workflow runs and their statuses.

github-search-repos

Find repositories across the organization.

github-manage-collaborators

List repository collaborators and their access.

Why the Averta MCP Gateway

Centralized governance

Unified authentication, audit logging, and rate control for every GitHub MCP connection.

Observability and control

Real-time visibility into usage, anomalies, and SLA compliance across every request.

One-click deployment

Enable the GitHub MCP server for your AI teams through one governed gateway, with no manual setup.

Enterprise hardening

High availability, security, and compliance alignment turn MCP from a developer utility into production-grade infrastructure.

OAuth and SSO enforcement

Enterprise authentication and SSO applied automatically to every GitHub endpoint.

Shared and per-user auth

Configure service accounts or per-user access, with secrets protected and centralized revocation.

One managed endpoint

Connect agents to GitHub through a single governed endpoint instead of locally run servers, improving your security posture.

Granular tool access control

Allow only the tools each role needs. Enable read-only access and block write tools like create and delete.

Works with every major AI platform

ChatGPT logoChatGPT
Gemini logoGemini
Mistral logoMistral
Claude Code logoClaude Code
Cursor logoCursor
Windsurf logoWindsurf
Cognition logoCognition
OpenCode logoOpenCode
Continue logoContinue
Manus logoManus
Hermes logoHermes
Lindy logoLindy
OpenClaw logoOpenClaw
Your own logoYour own

Built for enterprise teams.

Cloud, private VPC, embedded SDK, or gateway integration. Run Averta where your data, policies, and auditors need it.

AWS
Google Cloud
Azure
Oracle
Book a demo

Cloud (SaaS)

Fully managed by Averta. Fastest path to production, no infrastructure to run.

Private / VPC

Deploy in your own environment, so data never leaves your boundary.

Embedded SDK & Proxy

Drop Averta into your stack at the SDK or proxy layer, wherever your agents run.

Gateway Integration

Route agent traffic through the gateway, so policy and audit apply at the edge.

GitHub MCP use cases

Where teams put the GitHub MCP server to work, governed end to end through the Averta MCP Gateway.

Agents summarize open pull requests, surface blockers, and nudge reviewers, with read access scoped to specific repos.

Book a demo
GitHub MCP · Pull request triage

Summarize pull requests waiting on review for more than 3 days.

You

Summarized 6 stale pull requests and their blockers.

  • Listing open pull requests
  • Reading review status

All actions logged and governed

Powering safe AI execution at leading teams.

Cyfrin secures its production AI agents with Averta.

Book a demo
Averta gave our agents enforceable boundaries for the dev environment, so instructions like ‘don’t read .env files’ became policy instead of polite suggestions.
Mikhail Karan

Mikhail Karan

Head of Engineering

Explore other MCP servers

GitLab logo

GitLab MCP server

Developer tools

Give AI agents governed access to the GitLab MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

Linear logo

Linear MCP server

Project management

Give AI agents governed access to the Linear MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

Supabase logo

Supabase MCP server

Database

Give AI agents governed access to the Supabase MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

Stripe logo

Stripe MCP server

Payments

Give AI agents governed access to the Stripe MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

Slack logo

Slack MCP server

Communication

Give AI agents governed access to the Slack MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

HubSpot logo

HubSpot MCP server

Sales and CRM

Give AI agents governed access to the HubSpot MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

Google Drive logo

Google Drive MCP server

Productivity

Give AI agents governed access to the Google Drive MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.

GitHub MCP server, answered

Security and setup questions teams ask before connecting the GitHub MCP server to AI agents.

Have a different question? Talk to us →

Yes. The Averta MCP Gateway sits between your AI agents and any MCP server, giving each agent scoped, per-agent permissions, applying allow, escalate, or block policies on every tool call, and recording a tamper-evident audit of every action. The “Why the Averta MCP Gateway” section on this page covers what it enforces.

It is as safe as the controls around it. The server can read code and act on issues, pull requests, and Actions through one token, so the risk lives in scoping, approvals, and auditing. The Averta MCP Gateway limits what each agent can reach and records every action.

By default it can reach the repositories, issues, pull requests, and Actions the connecting token is granted, with both read and write tools. Narrowing that to specific repos and read-only operations is a governance decision.

Apply allow, escalate, or block policies per tool through the Averta MCP Gateway, so write actions like merging a pull request require approval while read operations stay automatic. Every call is logged.

Route agents through Averta's MCP Gateway for scoped per-agent permissions, tool-level policy, and tamper-evident audit across every GitHub action.

Yes. GitHub publishes an official MCP server, and it is listed in the GitHub MCP Registry alongside community servers. Whichever server you run, routing it through the Averta MCP Gateway is what gives each agent scoped access and a tamper-evident audit trail.

GitHub Copilot supports the Model Context Protocol, so it can connect to MCP servers including GitHub's. The same governance question applies: the Averta MCP Gateway lets you control which tools each agent can reach and records every call.

Any MCP-compatible client, including Claude Code and Cursor, can connect to the GitHub MCP server. Pointing those clients at the Averta MCP Gateway instead of the raw server adds scoped permissions, approval policies, and a tamper-evident log without changing the client setup.

See Averta OS in action

Book a demo and see how Averta OS secures your AI agents from input to execution.

Book a demo