[mcp-tools-report] GitHub MCP Remote Server Tools Report — 2026-06-21

[github-actions[bot]]

GitHub MCP Remote Server Tools Report

Generated: 2026-06-21 · MCP Mode: Remote (read-only) · Toolsets: All · Previous Report: 2026-06-14

Executive Summary

• Total Tools Discovered (read-only session): 58 (was 57)
• Toolset Categories (session groupings): 21
• Source: github_toolsets_permissions.json · Instructions: .github/aw/github-mcp-server.md
• Changes Since Last Report: New = 1, Removed = 0, Unchanged = 57

Scope note: This is a read-only session, so only read tools are exposed. Write tools (issue_write, create_pull_request, label_write, ...) and some read tools not surfaced remotely (get_me, get_teams, get_team_members, get_file_blame) exist in the server but are not visible here. The JSON mapping tracks the full toolset including writes.

Highlight: New code_quality Toolset 🎉

The upstream github-mcp-server added a brand-new toolset since the last report.

Field	Value
Toolset ID	code_quality
Description	GitHub Code Quality related tools
Tool	get_code_quality_finding — get details of a specific code quality finding
Source	code_quality.go · ID in tools.go
API	GET repos/{owner}/{repo}/code-quality/findings/{findingNumber}
Permission	security-events (read)

Action taken: Opened a PR adding the code_quality toolset to the JSON mapping (branch update-github-mcp-tools-mapping).

Inconsistency Detection

• Duplicate Tools: None.
• Miscategorized Tools: None.
• Naming Inconsistencies: Pre-existing & cosmetic — the remote session groups search_issues under an issues_search bucket; the repo JSON places it under issues.
• Orphaned Tools: None.
• Missing Expected Tools: context tools (get_me, get_teams, get_team_members) and get_file_blame are server-defined but not exposed in this read-only remote session — consistent with the previous report, not a regression.

JSON Mapping Comparison

Summary: Total Discrepancies = 1 · Missing (JSON-only, actionable) = 0 · Extra (MCP-only) = 1 · Moved = 0

Extra Tools (in MCP but not in JSON)

Toolset	Tool Name	Action Taken
code_quality	get_code_quality_finding	Added new code_quality toolset to JSON mapping (PR opened)

Changes Since Last Report

New Tools Added ✨

Toolset	Tool Name	Purpose
code_quality	get_code_quality_finding	Get details of a specific code quality finding

Removed / Moved

No tools were removed or moved between toolsets since the last report.

Tools by Toolset (compact)

Toolset	#	Tools	Source
actions	3	actions_get, actions_list, get_job_logs	actions.go
code_quality (new)	1	get_code_quality_finding	code_quality.go
code_security	2	get_code_scanning_alert, list_code_scanning_alerts	code_scanning.go
copilot_spaces	2	get_copilot_space, list_copilot_spaces	remote-only
dependabot	2	get_dependabot_alert, list_dependabot_alerts	dependabot.go
discussions	4	get_discussion, get_discussion_comments, list_discussion_categories, list_discussions	discussions.go
gists	2	get_gist, list_gists	gists.go
git	1	get_repository_tree	repositories.go
github_support_docs_search	1	github_support_docs_search	remote-only
issues	4	issue_read, list_issue_fields, list_issue_types, list_issues	issues.go
issues_search	1	search_issues	issues.go
labels	2	get_label, list_label	labels.go
notifications	2	get_notification_details, list_notifications	notifications.go
orgs	1	list_org_repository_security_advisories	security_advisories.go
projects	2	projects_get, projects_list	projects.go
pull_requests	2	list_pull_requests, pull_request_read	pullrequests.go
repos	10	get_commit, get_file_contents, get_latest_release, get_release_by_tag, get_tag, list_branches, list_commits, list_releases, list_repository_collaborators, list_tags	repositories.go
search	8	search_code, search_commits, search_orgs, search_pull_requests, search_repositories, search_users, semantic_issue_similarity_search, semantic_issues_search	search.go
secret_protection	3	get_secret_scanning_alert, list_secret_scanning_alerts, run_secret_scanning	secret_scanning.go
security_advisories	4	check_dependency_vulnerabilities, get_global_security_advisory, list_global_security_advisories, list_repository_security_advisories	security_advisories.go
stargazers	1	list_starred_repositories	repositories.go

Source files live under github/github-mcp-server/pkg/github.

Recommended Default Toolsets

Recommended Defaults: context, repos, issues, pull_requests — unchanged from current instructions.

Rationale: context (identity/team awareness), repos (file/commit reads), issues (triage/comment), and pull_requests (read/create/review) cover the most common workflows with minimal security exposure.

Enable explicitly when needed: actions, code_quality (new — for code quality findings; requires security-events read), code_security, dependabot, discussions, experiments, gists, git, labels, notifications, orgs, projects, search, secret_protection, security_advisories, stargazers, copilot_spaces, github_support_docs_search.

Methodology

• Discovery: Self-inspection of read-only MCP session tools, cross-referenced against the previous cache.
• Verification: New toolset confirmed from github-mcp-server source (code_quality.go, tools.go).
• Mapping updated via PR; cache refreshed to 58 tools.

References: §27905155216

Generated by 📊 GitHub MCP Remote Server Tools Report Generator · 243.8 AIC · ⌖ 11.2 AIC · ⊞ 10.3K · ◷

• expires on Jun 24, 2026, 5:10 AM UTC-08:00

[github-actions[bot]]

This discussion was automatically closed because it expired on 2026-06-24T13:10:44.624Z.

Closed by Workflow