GitHub Integration
Manasvi can read from GitHub — repositories and issues — through governed tools. Like every tool, a GitHub call goes through policy evaluation and the execution chain; the API gateway holds the token and makes the actual request.
This first version is read-only. Write actions (creating issues, comments, etc.) are intentionally not included yet — they belong behind an approval gate, following the same pattern as Gmail and Calendar writes.
Tools
| Tool | What it does |
|---|---|
tool.github-list-repos | List repositories the connected account can access |
tool.github-list-issues | List issues for a repository (pull requests are flagged) |
Both are read-only, and their results are treated as untrusted external content — they can't silently become trusted memory or authority.
Configure
Create a GitHub personal access token with read scopes (e.g. repo for private
repositories, or public_repo for public only) and set it on the API gateway:
GITHUB_TOKEN=ghp_xxx
Restart the gateway. When the token is unset, the GitHub tools return a clear
GITHUB_NOT_CONFIGURED error instead of failing silently.
Use
Ask the agent naturally, for example:
- "List my GitHub repositories."
- "Show the open issues in acme/manasvi."
The agent proposes the matching tool; policy allows the read; the gateway calls GitHub and returns normalized results.
Notes
- The token lives only on the gateway, never in the sandbox or in prompts.
- Read tools are allowed without approval by default policy; if you later add write tools, gate them behind approval like the Gmail/Calendar write actions.
Related
- Tools overview
- MCP Tools — another way to add external capability