Github

Creating GitHub Fine-Grained Personal Access Tokens for Upriver

Upriver requires limited, read-only GitHub access so the agent can analyze your codebase and provide accurate insights related to your data pipelines, transformations, and operational logic. By reading the relevant repository contents, Upriver can help identify issues, debug pipeline behavior, and enhance end-to-end understanding of how your code generates and processes data. The token you create grants only the minimal permissions needed for this analysis.

1. Access Your Personal Settings

1. In the upper-right corner of any GitHub page, click your profile picture.

2. Select Settings from the dropdown menu.

2. Navigate to Developer Settings

1. In the left sidebar, click Developer settings.

2. Under Personal access tokens, select Fine-grained tokens.

Tip: You can also go directly to the Generate new fine-grained personal access token page.

3. Generate a New Token

1. Click Generate new token.

4. Configure the Token

• Token name: Use a descriptive name (e.g., upriver-agent-access).

• Expiration: Choose an expiration date. Shorter durations provide better security.

• Description (optional): Add a brief note about the token's purpose.

• Resource owner: Select the organization containing the repositories Upriver should analyze.

5. Set Repository Access and Permissions

Repository Access

• Select Only select repositories (recommended).

• Choose only the repositories that you want Upriver to access.

Permissions

Under Permissions, add:

These are the only permissions Upriver requires.

6. Finalize the Token Creation

1. Click Generate token.

⚠️ Important: The token value (beginning with github_pat_...) will be displayed only once. Copy it immediately and store it securely. If you lose it, you’ll need to generate a new token.