GitHub

Stack Monitors

Monitor GitHub with Crowswatch

Monitor Actions workflow runs, Dependabot alerts, and commit activity across your GitHub repositories directly from Crowswatch.

What This Integration Provides

  • Actions: workflow run status, duration, and failure rate by repository
  • Dependabot alerts: open vulnerability count and severity breakdown
  • Commit activity: commit frequency and contributor activity over time
  • Repository health: open issue count, pull request volume, and release history
  • Runner status: self-hosted runner availability (where applicable)

Requirements

RequirementDetail
GitHub accountFree or above
Fine-grained Personal Access TokenRecommended over classic PATs
Repository or organisation accessConfigured in the token
Estimated setup time~5 minutes

Step 1: Generate Credentials

GitHub supports two types of Personal Access Token (PAT). Fine-grained tokens are recommended, as they let you select exactly which permissions are needed and limit the token to specific repositories.

To create a fine-grained PAT:

  1. Log in to github.com
  2. Go to Settings → Developer settings → Personal access tokens → Fine-grained tokens
  3. Click Generate new token
  4. Enter a name (e.g. crowswatch-monitor) and set an expiration
  5. Under Repository access, choose All repositories or select specific repositories
  6. Under Permissions, set the following to Read-only:
    PermissionPurpose
    ActionsRead workflow runs, jobs, and run history
    ContentsRead commit history and code frequency stats
    Dependabot alertsRead open security vulnerability alerts
    MetadataRequired by default (grants access to repository metadata)
  7. Click Generate token
  8. Copy the token, as it is only shown once
Classic PATs (under Tokens (classic)) also work. Select the repo scope for private repositories. Fine-grained tokens are preferred for better security.

Step 2: Locate Required IDs

Repository name

GitHub API calls reference repositories by their owner and name: {owner}/{repo} (e.g. my-org/my-app). This is visible in the URL of any repository page.

Organisation name

Your organisation name is visible in the URL when navigating your organisation on GitHub (e.g. github.com/my-org). No additional numeric IDs are required.

Step 3: Add Credentials to Crowswatch

Navigate to: Crowswatch → Add Service → GitHub

FieldValue
Personal Access TokenThe fine-grained token from Step 1
Organisation or usernameYour GitHub org name or personal username

Select which repositories you want to monitor after connecting.

Available Metrics

Actions

  • Workflow run count (total, success, failure) per repository
  • Workflow run duration (average, p95)
  • Failure rate by workflow
  • Currently running workflows

Dependabot Alerts

  • Open alert count by severity (Critical, High, Medium, Low)
  • Alerts by repository
  • Recently opened and dismissed alerts

Commit Activity

  • Commit count over time per repository
  • Active contributor count
  • Push frequency

Repository Health

  • Open issue count
  • Open pull request count
  • Days since last commit
  • Latest release tag and date

Connect

  1. Enter your Personal Access Token and organisation or username
  2. Click Verify to confirm the credentials are valid
  3. Select the repositories and metrics to monitor
  4. Click Connect

Security

  • Use a fine-grained token with only the permissions listed above. Avoid broad classic repo scope where possible
  • Set an expiration date and rotate the token before it expires
  • Limit the token to specific repositories if you only need to monitor a subset
  • Create a dedicated token for Crowswatch. Do not reuse tokens from other integrations

Troubleshooting

Authentication error

Verify the token has not expired. Fine-grained tokens require an expiration date. Confirm the token is for the correct GitHub account or organisation.

Workflow data not appearing

Ensure the token has Actions: Read permission. Confirm at least one workflow run exists in the selected repositories.

Dependabot alerts not visible

The Dependabot alerts permission must be explicitly enabled on the token. Dependabot must also be enabled on the repository (Settings → Security → Dependabot alerts).

Private repository data missing

Fine-grained tokens must explicitly include private repositories under Repository access. Classic tokens require the repo scope to access private repository data.

Organisation data not accessible

For organisation-level data, the token owner must be a member of the organisation. Some organisation policies restrict PAT access, so check with your GitHub org admin.