GitHub Security Checkup

Small CLI for checking basic GitHub repository security and hygiene signals.

It uses the GitHub REST API and reports:

• repository visibility
• default branch
• archived status
• open issue count
• last pushed date
• default branch protection status
• license status
• security policy status
• Dependabot config status
• workflow count
• workflow permission hints
• a simple summary level: ok, warning, or needs_review

Use

python check_repo.py owner/repo

For a shorter human-readable report:

python check_repo.py owner/repo --summary

For higher rate limits or private repos, set a GitHub token first:

# Windows PowerShell
$env:GITHUB_TOKEN = "ghp_your_token_here"
python check_repo.py owner/repo

# macOS / Linux
export GITHUB_TOKEN="ghp_your_token_here"
python check_repo.py owner/repo

Example

python check_repo.py FxckingAngel/github-security-checkup

{
  "repo": "FxckingAngel/github-security-checkup",
  "visibility": "public",
  "private": false,
  "archived": false,
  "default_branch": "main",
  "open_issues": 0,
  "pushed_at": "2026-06-08T01:31:22Z",
  "branch_protection": "not enabled or not visible",
  "license": "MIT",
  "security_policy": "missing",
  "dependabot_config": "missing",
  "workflow_count": 0,
  "workflow_permission_hints": "no workflow directory",
  "summary": {
    "level": "warning",
    "ok": 2,
    "warnings": 3,
    "needs_review": 0
  }
}

Summary output:

repo: FxckingAngel/github-security-checkup
level: warning
- ok: license (MIT)
  License detected.
- warning: branch_protection (not enabled or not visible)
  Enable branch protection for important repos.

Why

This is a quick first pass before a deeper repo review.

It does not replace a real security audit. It helps spot basic repo hygiene issues fast.

Checks To Add

• branch protection details when visible
• release/signing checks
• repository ruleset checks
• multiple repo scan mode

License

MIT