Overview
What is ghas-mcp-server?
ghas-mcp-server is a server designed to facilitate calls to GitHub Advanced Security (GHAS) for GitHub repositories, enabling users to manage security alerts effectively.
How to use ghas-mcp-server?
To use ghas-mcp-server, install it in your VS Code or VS Code Insiders environment by following the provided installation instructions. Configure it with the necessary GitHub Personal Access Token (PAT) or use the authenticated GitHub CLI for secure access.
Key features of ghas-mcp-server?
- List Dependabot alerts for repositories.
- List secret scanning alerts for repositories.
- List code scanning alerts for repositories.
- Supports configuration via VS Code for easy setup.
Use cases of ghas-mcp-server?
- Monitoring and managing security alerts in GitHub repositories.
- Automating the retrieval of security-related information for compliance and auditing.
- Enhancing the security posture of software projects by addressing vulnerabilities promptly.
FAQ from ghas-mcp-server?
- What tools does ghas-mcp-server support?
It currently supports listing Dependabot alerts, secret scanning alerts, and code scanning alerts.
- How do I install ghas-mcp-server?
You can install it directly in VS Code or VS Code Insiders using the provided installation buttons and instructions.
- Is there a way to use the GitHub CLI for authentication?
Yes, you can configure the server to use the authenticated GitHub CLI instead of a Personal Access Token.