gh-mcp
Verified Safeby shuymn
Overview
A GitHub CLI extension that runs the Model Context Protocol (MCP) server in a Docker container using existing `gh` authentication to provide GitHub context to AI models/agents.
Installation
gh mcpEnvironment Variables
- GITHUB_PERSONAL_ACCESS_TOKEN
- GITHUB_HOST
- GITHUB_TOOLSETS
- GITHUB_TOOLS
- GITHUB_DYNAMIC_TOOLSETS
- GITHUB_READ_ONLY
- GITHUB_LOCKDOWN_MODE
- LOG_LEVEL
Security Notes
The extension handles sensitive GitHub Personal Access Tokens (PATs) responsibly. It retrieves the PAT from the securely stored `gh` CLI credentials and passes it to the Docker container via environment variables. The PAT is never stored by the extension itself, and the Docker container runs with `--rm` to ensure automatic cleanup, preventing data persistence. The Docker client initialization from environment variables (`client.FromEnv`) is standard practice. No `eval` or similar dangerous patterns are used. The primary security risk would be if the underlying `github-mcp-server` Docker image itself had vulnerabilities, which is outside the scope of this extension's direct code.
Similar Servers
mcp-servers
Provides a curated collection of Model Context Protocol (MCP) server configurations to enable AI agents to interact with various developer tools and services.
mcp-use-cli
An interactive command-line interface (CLI) tool for connecting to and interacting with Model Context Protocol (MCP) servers using natural language, acting as an AI client that orchestrates LLM responses with external tools.
docker-mcp-server
Provides a containerized Model Context Protocol (MCP) server for AI agents to securely execute shell commands and perform file operations via HTTP with bearer token authentication, supporting aggregation of child MCP servers.
mcp-server
A web-based Docker management platform for deploying, managing, and building custom AI tools (MCP servers) for integration with language models.