Skip to content
Code Search

GitHub

Connect Code Search to GitHub to index your GitHub repositories.

Prerequisites

Section titled “Prerequisites”
  • A GitHub account
  • Access to repositories you want to index
  • A Personal Access Token (PAT) or GitHub App

Creating a Personal Access Token

Section titled “Creating a Personal Access Token”

  1. Go to GitHub Settings → Developer Settings → Personal Access Tokens → Tokens (classic)

  2. Give your token a descriptive name (e.g., “Code Search”)

  3. Set an expiration (or “No expiration” for long-term use)

  4. Select these scopes:

    • repo - Full control of private repositories
    • read:org - Read organization membership (optional, for org repos)

  5. Click Generate token

  6. Copy the token immediately - you won’t be able to see it again!

Adding the Connection

Section titled “Adding the Connection”

Via Web UI

Section titled “Via Web UI”
  1. Open the Code Search web UI
  2. Go to ConnectionsAdd Connection
  3. Fill in:
    • Name: GitHub (or any descriptive name)
    • Type: GitHub
    • URL: https://api.github.com
    • Token: Your Personal Access Token
  4. Click Test Connection to verify
  5. Click Create

Via API

Section titled “Via API”
Terminal window
curl -X POST "http://localhost:8080/api/v1/connections" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "GitHub",
    "type": "github",
    "url": "https://api.github.com",
    "token": "ghp_xxxxxxxxxxxx"
  }'

Via Configuration File

Section titled “Via Configuration File”

Add code hosts to your config.yaml:

codehosts:
  # The key is the connection name
  github:
    type: github
    token: "$CS_GITHUB_TOKEN"  # Environment variable reference
    exclude_archived: true     # Skip archived repos during sync

With environment variable:

Terminal window
export CS_GITHUB_TOKEN="ghp_xxxxxxxxxxxx"

You can define multiple GitHub connections with different names:

codehosts:
  # Personal GitHub account
  github-personal:
    type: github
    token: "$CS_GITHUB_PERSONAL_TOKEN"
    exclude_archived: true


  # Organization with different token
  github-work:
    type: github
    token: "$CS_GITHUB_WORK_TOKEN"
    exclude_archived: true

Syncing Repositories

Section titled “Syncing Repositories”

After adding the connection:

  1. Click Sync on the connection card
  2. Code Search will discover your repositories
  3. Repositories are automatically queued for indexing

Filtering Repositories

Section titled “Filtering Repositories”

You can exclude archived repositories:

codehosts:
  github:
    type: github
    token: "$CS_GITHUB_TOKEN"
    exclude_archived: true  # Skip archived repos during sync

Token Scopes

Section titled “Token Scopes”

Minimum Required Scopes

Section titled “Minimum Required Scopes”
ScopePurpose
repoAccess to repositories (public and private)

Optional Scopes

Section titled “Optional Scopes”
ScopePurpose
read:orgAccess organization repositories
read:userAccess user profile information
workflowAccess GitHub Actions workflows

Fine-Grained Tokens (Beta)

Section titled “Fine-Grained Tokens (Beta)”

GitHub also supports fine-grained personal access tokens with more specific permissions:

  1. Go to GitHub Settings → Developer Settings → Personal Access Tokens → Fine-grained tokens

  2. Set repository access:

    • All repositories or
    • Only select repositories

  3. Set permissions:

    • Contents: Read-only (required)
    • Metadata: Read-only (required)

GitHub Apps

Section titled “GitHub Apps”

For organization-wide access, consider using a GitHub App:

  1. Create a GitHub App in your organization settings
  2. Grant it repository permissions
  3. Install the app on desired repositories
  4. Use the app’s private key for authentication

Rate Limits

Section titled “Rate Limits”

GitHub API has rate limits:

AuthenticationLimit
Personal Access Token5,000 requests/hour
GitHub App15,000 requests/hour

Code Search respects rate limits and will automatically slow down when approaching limits.

Troubleshooting

Section titled “Troubleshooting”

Authentication failed

Section titled “Authentication failed”
401 Unauthorized: Bad credentials
  • Verify the token is correct
  • Check the token hasn’t expired
  • Ensure the token has required scopes

Repository not found

Section titled “Repository not found”
404 Not Found: Repository not found
  • Verify you have access to the repository
  • Check the token has repo scope
  • For organization repos, ensure you have org membership

Rate limit exceeded

Section titled “Rate limit exceeded”
403 Forbidden: API rate limit exceeded
  • Wait for the rate limit to reset (check X-RateLimit-Reset header)
  • Use a GitHub App for higher rate limits
  • Reduce sync frequency

Sync not discovering repos

Section titled “Sync not discovering repos”
  • Verify read:org scope for organization repositories
  • Check repository visibility settings
  • Ensure the token owner has access to the repositories

Next Steps

Section titled “Next Steps”