You connect GitHub live in the UI. Each repository you connect becomes a
catalog you can open in Drive, reference in chat with
@, and use with
Athena’s tools and agents.What connecting GitHub unlocks
- Browse and read repository contents in Drive, and read files, issues, and pull requests directly in chat.
- GitHub toolkit in any session — list directories, read files, and more, with no secret to paste.
- Computer environments — inject a scoped
GITHUB_TOKENinto a computer so the developer agent can usegit, theghCLI, and the GitHub API.
Choose how you connect
Athena supports four connection methods. We recommend GitHub App — OAuth for most teams — it gives each member their own GitHub identity through a quick in-browser sign-in, with fine-grained, org-approved repository access and automatic token rotation. Pick whichever your organization’s GitHub policies allow — you can set up more than one (for example, a GitHub App plus a fallback token).| Method | How you sign in | Best for |
|---|---|---|
| GitHub App — OAuth · Recommended | Authorize in a GitHub popup | The default “sign in with GitHub” experience, with per-user identity and permissions |
| GitHub App — Installation | No sign-in; a shared, org-approved app token | A workspace-wide service connection with fine-grained, org-approved repo access |
| OAuth App | Authorize in a GitHub popup | Organizations that use classic OAuth Apps instead of GitHub Apps |
| Personal Access Token | No sign-in; one shared token | Organizations that don’t allow GitHub Apps or OAuth Apps |
Step 1 — Set up the connection
In Athena, open Integration Definitions (Workspace Settings → Treasury → Integration Definitions), click New integration, and choose provider GitHub. Then follow the tab for the method you picked above. For every method that uses a GitHub App or OAuth App, the callback URL is:- GitHub App — OAuth (Recommended)
- GitHub App — Installation
- OAuth App
- Personal Access Token
On GitHubLeave
- Create a GitHub App: Organization settings → Developer settings → GitHub Apps → New GitHub App.
- Set Callback URL to
https://api.athenaintel.com/api/github-direct/oauth/callback. - Enable “Request user authorization (OAuth) during installation” and “Expire user authorization tokens” (recommended — this gives Athena rotating refresh tokens).
- Under Repository permissions, grant Read for Contents, Pull requests, Issues, and Metadata (add write scopes only if you need them later).
- Install the App on your organization and choose which repositories it may access.
- Copy the Client ID and generate a Client secret.
oauth2, paste your Client secret into the
Client secret field, and use this config:scopes empty — a GitHub App’s access is defined by the repository
permissions you granted when installing it, not by OAuth scopes.Step 2 — Connect your repositories
Go to Integrations and click GitHub → Connect.- OAuth methods open a GitHub authorization popup, then a repository picker.
- Installation and Personal Access Token methods skip straight to the repository picker.
@, and use with the GitHub toolkit and computer
environments.

