GitHub · Capability
GitHub Repos API — Analysis
GitHub Repos API — Analysis. 4 operations. Lead operation: List Code Scanning Analyses For Repository. Self-contained Naftiko capability covering one Github business surface.
What You Can Do
GET
Listcodescanninganalysesforrepository
— List Code Scanning Analyses For Repository
/v1/repos/{owner}/{repo}/code-scanning/analyses
GET
Getcodescanninganalysisforrepository
— Get Code Scanning Analysis For Repository
/v1/repos/{owner}/{repo}/code-scanning/analyses/{analysis-id}
DELETE
Deletecodescanninganalysisfromrepository
— Delete Code Scanning Analysis From Repository
/v1/repos/{owner}/{repo}/code-scanning/analyses/{analysis-id}
POST
Uploadananalysisassarifdata
— Upload An Analysis As Sarif Data
/v1/repos/{owner}/{repo}/code-scanning/sarifs
MCP Tools
list-code-scanning-analyses-repository
List Code Scanning Analyses For Repository
read-only
idempotent
get-code-scanning-analysis-repository
Get Code Scanning Analysis For Repository
read-only
idempotent
delete-code-scanning-analysis-repository
Delete Code Scanning Analysis From Repository
idempotent
upload-analysis-sarif-data
Upload An Analysis As Sarif Data
Capability Spec
naftiko: 1.0.0-alpha2
info:
label: GitHub Repos API — Analysis
description: 'GitHub Repos API — Analysis. 4 operations. Lead operation: List Code Scanning Analyses For Repository. Self-contained
Naftiko capability covering one Github business surface.'
tags:
- Github
- Analysis
created: '2026-05-19'
modified: '2026-05-19'
binds:
- namespace: env
keys:
GITHUB_API_KEY: GITHUB_API_KEY
capability:
consumes:
- type: http
namespace: temp-analysis
baseUri: ''
description: GitHub Repos API — Analysis business capability. Self-contained, no shared references.
resources:
- name: repos-owner-repo-code-scanning-analyses
path: /repos/{owner}/{repo}/code-scanning/analyses
operations:
- name: listcodescanninganalysesforrepository
method: GET
description: List Code Scanning Analyses For Repository
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: ref
in: query
type: string
description: 'The Git reference for the analyses you want to list. The `ref` for a branch can be formatted either
as `refs/heads/<branch name>` or simply `<branch name>`. To '
- name: sarif_id
in: query
type: string
description: Filter analyses belonging to the same SARIF upload.
- name: sort
in: query
type: string
description: The property by which to sort the results.
- name: Authorization
in: header
type: string
- name: X-GitHub-Api-Version
in: header
type: string
- name: Accept
in: header
type: string
- name: repos-owner-repo-code-scanning-analyses-analysis_id
path: /repos/{owner}/{repo}/code-scanning/analyses/{analysis_id}
operations:
- name: getcodescanninganalysisforrepository
method: GET
description: Get Code Scanning Analysis For Repository
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: analysis_id
in: path
type: integer
description: The ID of the analysis, as returned from the `GET /repos/{owner}/{repo}/code-scanning/analyses` operation.
required: true
- name: Authorization
in: header
type: string
- name: X-GitHub-Api-Version
in: header
type: string
- name: Accept
in: header
type: string
- name: deletecodescanninganalysisfromrepository
method: DELETE
description: Delete Code Scanning Analysis From Repository
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: analysis_id
in: path
type: integer
description: The ID of the analysis, as returned from the `GET /repos/{owner}/{repo}/code-scanning/analyses` operation.
required: true
- name: confirm_delete
in: query
type: string
description: Allow deletion if the specified analysis is the last in a set. If you attempt to delete the final analysis
in a set without setting this parameter to `true`, yo
- name: Authorization
in: header
type: string
- name: X-GitHub-Api-Version
in: header
type: string
- name: Accept
in: header
type: string
- name: repos-owner-repo-code-scanning-sarifs
path: /repos/{owner}/{repo}/code-scanning/sarifs
operations:
- name: uploadananalysisassarifdata
method: POST
description: Upload An Analysis As Sarif Data
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: Authorization
in: header
type: string
- name: X-GitHub-Api-Version
in: header
type: string
- name: Accept
in: header
type: string
- name: body
in: body
type: object
description: Request body (JSON).
required: true
authentication:
type: bearer
token: '{{env.GITHUB_API_KEY}}'
exposes:
- type: rest
namespace: temp-analysis-rest
port: 8080
description: REST adapter for GitHub Repos API — Analysis. One Spectral-compliant resource per consumed operation, prefixed
with /v1.
resources:
- path: /v1/repos/{owner}/{repo}/code-scanning/analyses
name: repos-owner-repo-code-scanning-analyses
description: REST surface for repos-owner-repo-code-scanning-analyses.
operations:
- method: GET
name: listcodescanninganalysesforrepository
description: List Code Scanning Analyses For Repository
call: temp-analysis.listcodescanninganalysesforrepository
with:
ref: rest.ref
sarif_id: rest.sarif_id
sort: rest.sort
Authorization: rest.Authorization
X-GitHub-Api-Version: rest.X-GitHub-Api-Version
Accept: rest.Accept
outputParameters:
- type: object
mapping: $.
- path: /v1/repos/{owner}/{repo}/code-scanning/analyses/{analysis-id}
name: repos-owner-repo-code-scanning-analyses-analysis-id
description: REST surface for repos-owner-repo-code-scanning-analyses-analysis_id.
operations:
- method: GET
name: getcodescanninganalysisforrepository
description: Get Code Scanning Analysis For Repository
call: temp-analysis.getcodescanninganalysisforrepository
with:
analysis_id: rest.analysis_id
Authorization: rest.Authorization
X-GitHub-Api-Version: rest.X-GitHub-Api-Version
Accept: rest.Accept
outputParameters:
- type: object
mapping: $.
- method: DELETE
name: deletecodescanninganalysisfromrepository
description: Delete Code Scanning Analysis From Repository
call: temp-analysis.deletecodescanninganalysisfromrepository
with:
analysis_id: rest.analysis_id
confirm_delete: rest.confirm_delete
Authorization: rest.Authorization
X-GitHub-Api-Version: rest.X-GitHub-Api-Version
Accept: rest.Accept
outputParameters:
- type: object
mapping: $.
- path: /v1/repos/{owner}/{repo}/code-scanning/sarifs
name: repos-owner-repo-code-scanning-sarifs
description: REST surface for repos-owner-repo-code-scanning-sarifs.
operations:
- method: POST
name: uploadananalysisassarifdata
description: Upload An Analysis As Sarif Data
call: temp-analysis.uploadananalysisassarifdata
with:
Authorization: rest.Authorization
X-GitHub-Api-Version: rest.X-GitHub-Api-Version
Accept: rest.Accept
body: rest.body
outputParameters:
- type: object
mapping: $.
- type: mcp
namespace: temp-analysis-mcp
port: 9090
transport: http
description: MCP adapter for GitHub Repos API — Analysis. One tool per consumed operation, routed inline through this
capability's consumes block.
tools:
- name: list-code-scanning-analyses-repository
description: List Code Scanning Analyses For Repository
hints:
readOnly: true
destructive: false
idempotent: true
call: temp-analysis.listcodescanninganalysesforrepository
with:
ref: tools.ref
sarif_id: tools.sarif_id
sort: tools.sort
Authorization: tools.Authorization
X-GitHub-Api-Version: tools.X-GitHub-Api-Version
Accept: tools.Accept
outputParameters:
- type: object
mapping: $.
- name: get-code-scanning-analysis-repository
description: Get Code Scanning Analysis For Repository
hints:
readOnly: true
destructive: false
idempotent: true
call: temp-analysis.getcodescanninganalysisforrepository
with:
analysis_id: tools.analysis_id
Authorization: tools.Authorization
X-GitHub-Api-Version: tools.X-GitHub-Api-Version
Accept: tools.Accept
outputParameters:
- type: object
mapping: $.
- name: delete-code-scanning-analysis-repository
description: Delete Code Scanning Analysis From Repository
hints:
readOnly: false
destructive: true
idempotent: true
call: temp-analysis.deletecodescanninganalysisfromrepository
with:
analysis_id: tools.analysis_id
confirm_delete: tools.confirm_delete
Authorization: tools.Authorization
X-GitHub-Api-Version: tools.X-GitHub-Api-Version
Accept: tools.Accept
outputParameters:
- type: object
mapping: $.
- name: upload-analysis-sarif-data
description: Upload An Analysis As Sarif Data
hints:
readOnly: false
destructive: false
idempotent: false
call: temp-analysis.uploadananalysisassarifdata
with:
Authorization: tools.Authorization
X-GitHub-Api-Version: tools.X-GitHub-Api-Version
Accept: tools.Accept
body: tools.body
outputParameters:
- type: object
mapping: $.