28 个仓库
Manages authentication tokens for secure access to repository resources and services.
Distinct from Access Authentication: Distinct from Access Authentication: focuses specifically on GitHub-native token management rather than generic infrastructure handshakes.
Explore 28 awesome GitHub repositories matching security & cryptography · GitHub Authentication. Refine with filters or upvote what's useful.
Deepagents is an LLM agent orchestration platform and stateful application server designed for deploying and managing AI agents built with computational graphs. It provides a containerized runtime environment that handles agent execution, state persistence, and the versioning of AI assistants. The platform distinguishes itself through deep integration with the Model Context Protocol, allowing agents to function as servers that expose tools and capabilities to external clients. It features a sophisticated observability suite for capturing execution traces, performing LLM-based evaluations agai
Processes redirect callbacks from GitHub Apps to register installations and update repository permissions.
Prefect is a workflow orchestration platform designed to define, schedule, and monitor complex data pipelines as Python code. It functions as a container-native engine that wraps individual tasks in isolated environments, ensuring consistent dependencies and resource allocation across diverse infrastructure. By utilizing a state-machine-based orchestration model, the system tracks execution progress through discrete transitions and persistent event logs to maintain reliable and observable task processing. The platform distinguishes itself through a decoupled worker-API architecture, which sep
Stores and manages authentication tokens to securely access GitHub resources and services within automated workflows.
mcp-use is a development framework designed for building, deploying, and managing servers, clients, and autonomous agents using the Model Context Protocol. It provides a comprehensive toolkit for creating servers that expose custom tools, data resources, and prompts to compatible AI agents. The project distinguishes itself by offering a complete lifecycle for protocol-based applications, including a dedicated hosting platform for production servers and a compliance validator to ensure servers meet marketplace publishing requirements. It also features an observability suite for tracing protoco
Handles GitHub App installation callbacks and permission updates using signed state tokens.
Flux is a Kubernetes GitOps delivery tool used to automate application deployments by synchronizing cluster state with configurations stored in Git, OCI, or Helm repositories. It functions as a set of controllers that monitor desired state in external sources and continuously reconcile the live cluster to match those definitions. The system distinguishes itself through a multi-cluster management plane that coordinates application delivery across fleets of remote clusters from a central hub. It provides a dedicated mechanism for automated image updates, which scans container registries for new
Manages authentication tokens for secure access to GitHub repositories using GitHub Apps.
Octokit.js is a GitHub API SDK used to interact with GitHub via REST and GraphQL interfaces. It serves as a client for executing typed queries and mutations, managing authenticated REST requests, and handling signed webhooks across Node.js, Deno, and browser environments. The library features a plugin-based request pipeline and an adapter-based HTTP client, allowing the interception of requests and responses across different runtimes. It employs strategy-based authentication to separate credential management from request logic, supporting static tokens, OAuth flows, and GitHub App installatio
Manages authentication tokens for secure access to GitHub repository resources on behalf of App installations.
This project is an automated release note tool and markdown history generator that transforms repository activity into structured documentation. It functions as a GitHub API client and CI/CD pipeline component, aggregating tags, issues, and pull requests to produce categorized summaries of project changes. The tool distinguishes itself through native GitHub Enterprise integration, supporting custom API endpoints for self-hosted server instances. It employs a label-based categorization system to group changes into specific sections and utilizes personal access tokens or OAuth to manage API rat
Supports GitHub-native token management via environment variables or flags to remove API rate restrictions.
This project is a step-by-step guide for setting up a complete programming environment on a new Mac. It walks through configuring Git with identity and credential caching, installing and managing software through the Homebrew package manager, and customizing the terminal with Oh My Zsh, fuzzy finders, and keyboard shortcuts. The guide also covers setting up JetBrains IDEs with shared key mappings and plugins, and installing development language runtimes for Node, Python, C++, Ruby, Go, and Java. The guide differentiates itself by providing a structured onboarding checklist that covers the ful
Configures Git to use HTTPS for GitHub authentication and caches credentials to avoid repeated prompts.
Tinyauth is an authentication middleware service and identity provider that verifies user identities to grant system access. It operates as a standalone server or as an authentication gateway, utilizing a reverse proxy model to intercept requests and validate credentials before traffic reaches protected backend services. The project functions as an OpenID Connect provider for single sign-on experiences and an OAuth 2.0 gateway that delegates verification to external providers such as Google and GitHub. It also acts as an LDAP authentication server, allowing for centralized user management and
Verifies user identities by connecting to GitHub Apps with granular permission controls during login.
GitHub Profile Trophy is a service that generates SVG images of achievement trophies based on a GitHub user's profile statistics, designed for embedding in README files. It fetches profile data through the GitHub GraphQL API, renders the trophies server-side as SVG markup, and serves them directly to clients, with a Redis-based caching layer to reduce repeated API calls and speed up subsequent requests. The service can be deployed as a self-hosted HTTP server running on the Deno JavaScript runtime, packaged with Docker for consistent local and CI environments. It also offers a GitHub Action w
Authenticates GraphQL API requests using a personal access token to fetch profile data from GitHub.
The Model Context Protocol (MCP) Registry is an official service for publishing and discovering MCP servers, providing a centralized namespace system with integrated authentication and domain verification. It functions as both a registry for server discovery and a publishing tool that enforces ownership proof through domain-based organization. The registry distinguishes itself through a CLI-driven publishing pipeline that bundles server metadata, validates authentication, and submits to the registry API. It implements DNS-based domain verification, requiring a TXT record or HTTP challenge fil
Authenticates GitHub Actions workflows via OpenID Connect tokens, enabling serverless publishing without stored secrets.
PartyKit is a serverless WebSocket backend platform for building real-time multiplayer applications. It provides a globally distributed edge computing runtime that runs stateful server code close to users, with automatic scaling and hibernation for idle rooms. The platform handles WebSocket connections, HTTP requests, and durable storage without requiring infrastructure management, and includes a client and server SDK with hooks, storage, and Yjs integration for building collaborative features. The platform distinguishes itself through per-room isolation using Durable Objects, where each uniq
Logs in or out of the service using a GitHub account, with automatic login on deploy.
Gitify is a cross-platform desktop application for monitoring GitHub alerts and activity through a native system tray or menu bar interface. It functions as a specialized API client that connects to both GitHub cloud and GitHub Enterprise servers on macOS, Windows, and Linux. The application manages multiple GitHub accounts and servers simultaneously from a single interface. It focuses on reducing notification noise by allowing users to filter alerts and prioritize important updates, moving monitoring away from the web browser. Users can customize alert behaviors through visual themes, nativ
Manages authentication for both GitHub cloud and Enterprise servers using tokens and device flows.
Ory Keto is an open-source authorization server that implements Google Zanzibar’s relationship-based access control model. It stores every access relationship as a tuple in a SQL database and exposes a declarative TypeScript-like namespace language for defining object types, relations, and permissions. The service provides bidirectional permission resolution, configurable consistency levels for checks, and dual gRPC and REST APIs for broad integration. Keto extends the Zanzibar model with edge enforcement of access policies, structured compliance auditing of permission decisions, and infrastr
Handles the OAuth2 login flow and token lifecycle for authentication through GitHub accounts.
Picx is a web-based image hosting tool and manager that uses GitHub repositories as the backend storage system. It functions as a personal image bed, allowing users to upload, organize, and serve images for websites, blogs, and markdown documentation. The project differentiates itself through client-side image processing, which compresses files and applies watermarks within the browser before uploading to reduce bandwidth. It also features a rule-based URL generation system that transforms repository file paths into shareable links using customizable templates. The application provides a man
Implements a login mechanism using GitHub authorization tokens to access image hosting features.
Athens is a Go module proxy server and dependency cache that provides a persistent storage system for Go dependencies. It acts as a mirror and datastore to ensure reproducible build environments by storing immutable copies of external packages, protecting against upstream deletions or outages. The project distinguishes itself by serving as a secure gateway for private Go module hosting, utilizing authentication tokens, SSH keys, and GitHub Apps to retrieve dependencies from private version control systems. It further enables software dependency compliance through request filtering and checksu
Integrates with GitHub Apps and credential helpers to access private repositories.
Devpush is a self-hosted Git-based PaaS that automates the deployment of containerized applications. It maps each Git branch to an isolated Docker environment, creating a multi-environment runtime where staging, production, and other workflows run in parallel with scoped configuration and encrypted variables. Deployments are triggered automatically by Git push events via a configured GitHub App, managing the full lifecycle from build to release with zero-downtime rollouts and instant rollback. The platform includes a built-in Let's Encrypt SSL manager that automatically provisions and renews
Creates a GitHub App to handle user login and repository access.
useSend is an email marketing platform and transactional delivery system built to manage bulk campaigns and individual messages using AWS SES for delivery. It provides a RESTful API, an SMTP relay gateway, and a visual management interface for designing HTML templates and coordinating email broadcasts. The platform distinguishes itself by translating legacy SMTP traffic into modern API calls and implementing an event-driven webhook system. This system pushes real-time delivery, bounce, and click notifications to external servers using HMAC-SHA256 signed payloads to ensure authenticity. The s
Verifies user identities using GitHub credentials to secure access to the management interface.
The Odin Project is an open-source, full-stack web development curriculum that guides learners from basic scripting to deploying complete applications through a structured, project-based learning path. It functions as a self-directed bootcamp covering frontend, backend, databases, and job-seeking skills, with a peer-to-peer learning community where developers give and receive structured help through a forum. The platform distinguishes itself through a project-based curriculum engine that presents curated resources and assignments requiring independent problem-solving rather than step-by-step
Signs in users by delegating identity verification to their GitHub account.
copilot.lua 是一个基于 Lua 的 Neovim 插件,集成了 GitHub Copilot 以提供 AI 代码补全引擎。它在编辑器内提供实时幽灵文本和内联建议,利用 Neovim LSP 客户端来管理通信和缓冲区特定的激活。 该项目通过基于令牌的身份验证和企业实例支持来处理 GitHub 帐户集成。它允许管理 AI 模型并配置语言服务器协议,以授权和自定义服务访问。 该系统通过预测性编辑建议和替代补全查看器涵盖了 AI 编码辅助。它还包括用于插件激活逻辑、状态管理和系统健康检查的配置工具,以便进行故障排除。
Manages GitHub authentication tokens to authorize access to the AI completion service.
Gitment is a serverless commenting engine that provides a client-side interface for website discussions. It functions as a third-party identity integrator and markdown content renderer that requires no dedicated database or backend server. The system utilizes GitHub Issues as a storage layer to manage comments and user reactions. It employs an authentication layer to verify user identities through external account providers, securing both profile management and post submissions. The project includes capabilities for rich text rendering with syntax highlighting and a pluggable component syste
Manages secure authentication via GitHub to verify user identity.