Show HN: GitRails-Let agents call only the GitHub endpoints and params you allow

[maxaw]

This is a proxy over the GitHub API. The aim is to make it easy to provide untrusted agents very fine-grained access to GitHub. To test it, you can install the GitHub app, receive a principal key, and point a trusted agent at the README.md with the key and ask it to help you configure keys and permissions for untrusted agents, which can then call the proxied endpoints. It is open source and a work in progress :)

[yol]

How is this better than the traditional scoped access token from github?

[maxaw]

Thanks for commenting :) The whole point is tighter scopes. You control what parameters the agent is allowed to pass when calling endpoints. This allows things like revealing only a few folders in your repo to your agent