git.stella-ops.org/etc/scm-connectors/github.yaml

# GitHub SCM Connector
# GitHub.com and GitHub Enterprise Server integration

id: stellaops.scm.connector.github
name: GitHub Connector
version: 1.0.0
description: |
  Integrates with GitHub for remediation automation.
  Supports PR creation, status checks, and security alerts.
assembly: StellaOps.AdvisoryAI.ScmConnector.GitHub.dll

capabilities:
  - pull-request
  - status-check
  - security-advisories
  - dependabot
  - code-scanning
  - branch-protection

requirements:
  runtime: net10.0
  platforms: [linux-x64, linux-arm64, win-x64, osx-arm64]

enabled: false
priority: 100

config:
  # GitHub API settings
  api:
    # Base URL (empty = github.com)
    baseUrl: "${GITHUB_BASE_URL:-}"
    # API version
    apiVersion: "2022-11-28"

  # Authentication
  auth:
    # Authentication type: pat, app, oauth
    type: pat
    # Personal Access Token
    token: "${GITHUB_TOKEN:-}"
    # GitHub App credentials (for app type)
    appId: "${GITHUB_APP_ID:-}"
    privateKeyPath: "${GITHUB_APP_PRIVATE_KEY_PATH:-}"
    installationId: "${GITHUB_APP_INSTALLATION_ID:-}"

  # Pull request settings
  pullRequest:
    # Create draft PRs
    draft: false
    # Request reviewers
    requestReviewers: true
    defaultReviewers: []
    # Labels
    labels: ["security", "dependencies", "stellaops"]
    # Body template
    bodyTemplate: |
      ## Security Remediation

      This PR was automatically created by StellaOps to address:
      {{#each vulnerabilities}}
      - **{{this.id}}**: {{this.summary}}
      {{/each}}

      ### Changes
      {{changes}}

      ---
      🤖 Generated by [StellaOps](https://stellaops.io)

  # Status checks
  statusCheck:
    # Create commit status
    enabled: true
    # Context name
    context: "stellaops/security-gate"

  # Rate limiting
  rateLimit:
    # Respect GitHub rate limits
    respectLimits: true
    # Retry on rate limit
    retryOnLimit: true
    maxWaitSeconds: 3600