Getting Started with MCP
This guide walks you through integrating Model Context Protocol (MCP) servers with GitHub Agentic Workflows, from your first configuration to advanced patterns.
What is MCP?
Section titled “What is MCP?”Model Context Protocol (MCP) is a standardized protocol that enables agents to connect to external tools, databases, and APIs. MCP servers act as specialized adapters, giving agents access to GitHub, web search, databases, and third-party services like Notion, Slack, and Datadog.
Quick Start
Section titled “Quick Start”Get your first MCP integration running in under 5 minutes.
Step 1: Add GitHub Tools
Section titled “Step 1: Add GitHub Tools”Create a workflow file at .github/workflows/my-workflow.md:
---on: issues: types: [opened]permissions: contents: read issues: readtools: github: toolsets: [default]---
# Issue Analysis Agent
Analyze the issue and provide a summary of similar existing issues.The toolsets: [default] configuration gives your agentic workflow access to repository, issue, and pull request tools.
Step 2: Compile and Test
Section titled “Step 2: Compile and Test”Compile the workflow to generate the GitHub Actions YAML:
gh aw compile my-workflowVerify the MCP configuration:
gh aw mcp inspect my-workflowYou now have a working MCP integration. The agent can read issues, search repositories, and access pull request information.
Configuration Patterns
Section titled “Configuration Patterns”Toolsets Pattern (Recommended)
Section titled “Toolsets Pattern (Recommended)”Use toolsets: to enable groups of related GitHub tools:
tools: github: toolsets: [default] # Expands to: context, repos, issues, pull_requests (action-friendly)Toolsets remain stable across MCP server versions, while individual tool names may change. See Available Toolsets for the full list.
Allowed Pattern (Custom MCP Servers)
Section titled “Allowed Pattern (Custom MCP Servers)”Use allowed: when configuring custom (non-GitHub) MCP servers:
mcp-servers: notion: container: "mcp/notion" allowed: ["search_pages", "get_page"]GitHub MCP Server
Section titled “GitHub MCP Server”The GitHub MCP server is built into agentic workflows and provides comprehensive access to GitHub’s API.
Available Toolsets
Section titled “Available Toolsets”| Toolset | Description | Tools |
|---|---|---|
context | User and team information | get_teams, get_team_members |
repos | Repository operations | get_repository, get_file_contents, list_commits |
issues | Issue management | list_issues, create_issue, update_issue |
pull_requests | PR operations | list_pull_requests, create_pull_request |
actions | Workflow runs and artifacts | list_workflows, list_workflow_runs |
discussions | GitHub Discussions | list_discussions, create_discussion |
code_security | Security alerts | list_code_scanning_alerts |
users | User profiles | get_me, get_user, list_users |
The default toolset includes: context, repos, issues, pull_requests. When used in workflows, [default] expands to action-friendly toolsets that work with GitHub Actions tokens. Note: The users toolset is not included by default as GitHub Actions tokens do not support user operations.
Operating Modes
Section titled “Operating Modes”Remote mode (mode: remote) connects to a hosted server for faster startup with no Docker required. Local mode (mode: local) runs in Docker, enabling version pinning for offline or restricted environments. See Remote vs Local Mode.
The GitHub MCP server always operates read-only. Write operations are handled through safe outputs, which run in a separate permission-controlled job.
MCP Registry
Section titled “MCP Registry”The GitHub MCP registry provides a centralized catalog of MCP servers.
Adding Servers
Section titled “Adding Servers”# Browse available MCP serversgh aw mcp add
# Add a specific servergh aw mcp add my-workflow makenotion/notion-mcp-server
# Add with custom tool IDgh aw mcp add my-workflow makenotion/notion-mcp-server --tool-id my-notionThe command searches the registry, adds the server configuration, and recompiles the workflow.
Reference registry servers directly in your workflow:
mcp-servers: markitdown: registry: https://api.mcp.github.com/v0/servers/microsoft/markitdown container: "ghcr.io/microsoft/markitdown" allowed: ["*"]The registry field provides metadata for tooling while the container or command fields specify how to run the server.
Using a Custom Registry
Section titled “Using a Custom Registry”For enterprise or private registries:
gh aw mcp add my-workflow server-name --registry https://custom.registry.com/v1Custom MCP Servers
Section titled “Custom MCP Servers”Configure third-party MCP servers using commands, Docker containers, or HTTP endpoints:
mcp-servers: # Command-based (stdio) markitdown: command: "npx" args: ["-y", "markitdown-mcp"] allowed: ["*"]
# Docker container ast-grep: container: "mcp/ast-grep:latest" allowed: ["*"]
# HTTP endpoint with auth slack: url: "https://api.slack.com/mcp" env: SLACK_BOT_TOKEN: "${{ secrets.SLACK_BOT_TOKEN }}" network: allowed: ["api.slack.com"] # Optional egress restrictions allowed: ["send_message", "get_channel_history"]Practical Examples
Section titled “Practical Examples”Example 1: Basic Issue Triage
Section titled “Example 1: Basic Issue Triage”---on: issues: types: [opened]permissions: contents: read issues: readtools: github: toolsets: [default]safe-outputs: add-comment:---
# Issue Triage Agent
Analyze issue #${{ github.event.issue.number }} and add a comment with category, related issues, and suggested labels.Example 2: Multi-Service Integration
Section titled “Example 2: Multi-Service Integration”---on: weekly on sundaypermissions: contents: read security-events: read discussions: writetools: github: toolsets: [default, code_security, discussions]safe-outputs: create-discussion: category: "Security" title-prefix: "[security-scan] "---
# Security Audit Agent
Review code scanning alerts and create weekly security discussions with findings.Debugging MCP Configurations
Section titled “Debugging MCP Configurations”Inspect configured servers and available tools:
# View all MCP serversgh aw mcp inspect my-workflow
# Get detailed server informationgh aw mcp inspect my-workflow --server github --verbose
# List available toolsgh aw mcp list-tools github my-workflow
# Validate configurationgh aw compile my-workflow --validate --strictTroubleshooting
Section titled “Troubleshooting”Tool not found: Run gh aw mcp inspect my-workflow to verify available tools. Ensure the correct toolset is enabled or that tool names in allowed: match exactly.
Authentication errors: Verify the secret exists in repository settings and has required scopes.
Connection failures: Check URL syntax for HTTP servers, network configuration for containers, and verify Docker images exist.
Validation errors: Check YAML syntax, ensure toolsets: uses array format ([default] not default), and verify allowed: is an array.
Next Steps
Section titled “Next Steps”- Using MCPs - Complete MCP configuration reference
- Tools Reference - All available tools and options
- Security Guide - MCP security best practices
- CLI Commands - Full CLI documentation including
mcpcommands - Imports - Shared MCP configurations in
.github/workflows/shared/mcp/