GitHub MCP warning (#979)
This commit is contained in:
parent
6723c72fa5
commit
61d0cc39fd
|
@ -4,10 +4,14 @@ Master usage of Gemini CLI to automate development tasks.
|
|||
|
||||
## Setting up Model Context Protocol (MCP) Servers
|
||||
|
||||
> **A Note on Third-Party MCP Servers:** Before using a third-party MCP server, ensure you trust its source and understand the tools it provides. Your use of third-party servers is at your own risk.
|
||||
> [!NOTE]
|
||||
> Before using a third-party MCP server, ensure you trust its source and understand the tools it provides. Your use of third-party servers is at your own risk.
|
||||
|
||||
### GitHub MCP Server
|
||||
|
||||
> [!WARNING]
|
||||
> The GitHub MCP Server has known security vulnerabilities, proceed with caution.
|
||||
|
||||
The [GitHub MCP server] provides tools for interacting with GitHub repositories, such as creating issues, commenting on pull requests, and more.
|
||||
|
||||
[GitHub MCP server]: https://github.com/github/github-mcp-server
|
||||
|
@ -52,6 +56,9 @@ In your project's root directory, create or open the `.gemini/settings.json` fil
|
|||
|
||||
##### Set Your GitHub Token
|
||||
|
||||
> [!CAUTION]
|
||||
> Using a broadly scoped personal access token that has access to personal and private repositories can lead to information from the private repository leaked into the public repository. We recommend using a fine grained access token that doesn't share access to both public and private repositories.
|
||||
|
||||
Use an environment variable to store your PAT.
|
||||
|
||||
```bash
|
||||
|
|
Loading…
Reference in New Issue