{"id":47183020,"url":"https://github.com/jaggzh/repo-verify-utils","last_synced_at":"2026-03-27T13:01:06.151Z","repository":{"id":296688229,"uuid":"994156574","full_name":"jaggzh/repo-verify-utils","owner":"jaggzh","description":"Examine your repository access before giving it to AI agents and editors.","archived":false,"fork":false,"pushed_at":"2025-06-01T15:28:09.000Z","size":173,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"master","last_synced_at":"2025-06-01T19:13:28.274Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jaggzh.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-01T10:40:55.000Z","updated_at":"2025-06-01T15:28:13.000Z","dependencies_parsed_at":"2025-06-01T19:13:30.223Z","dependency_job_id":"f5d84a8c-0f3f-4fc5-be0d-5095b612e778","html_url":"https://github.com/jaggzh/repo-verify-utils","commit_stats":null,"previous_names":["jaggzh/repo-verify-utils"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/jaggzh/repo-verify-utils","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jaggzh%2Frepo-verify-utils","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jaggzh%2Frepo-verify-utils/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jaggzh%2Frepo-verify-utils/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jaggzh%2Frepo-verify-utils/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jaggzh","download_url":"https://codeload.github.com/jaggzh/repo-verify-utils/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jaggzh%2Frepo-verify-utils/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31045640,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-27T09:35:52.079Z","status":"ssl_error","status_checked_at":"2026-03-27T09:35:20.916Z","response_time":164,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-03-13T08:00:38.389Z","updated_at":"2026-03-27T13:01:06.123Z","avatar_url":"https://github.com/jaggzh.png","language":"Shell","funding_links":[],"categories":["\u003ca name=\"git\"\u003e\u003c/a\u003eGit and accessories"],"sub_categories":[],"readme":"# repo-verify-utils\nA utility collection to help examine what repositories and scopes your GitHub identity has access to.\n\n---\n\n## Overview\n\nWith the shift toward using agents, automation tools, cloud editors, etc. --\nthat act on your behalf -- you may be granting repository access to more than you\nrealize. This repository provides small, inspectable utilities that help\nyou see what repos your credentials can access — including repos you don't own\nbut can still affect.\n\nIt’s designed to be simple, transparent, and shell-native.\n\nInitial utilities are focused on GitHub (and use bash) and assume you’re using\na `GH_TOKEN` with appropriate API access, and `GH_LOGIN` set to\nyour username).\n\n![Screenshot](i/ss1.jpg \"Screenshot of use\")\n\n---\n\n## Issues:\n - The $GH_TOKEN display in commands is supposed to be redacted, but it's not working --\n   **SO DON'T PASTE YOUR OUTPUT FROM THESE SCRIPTS TO OTHER PEOPLE**\n - I just set this up. We probably need to reference the shell script location\n   so it will source its utility routines scripts from the proper paths. **For\n   now, run the scripts from here in your clone of the repo.**\n - Need to make a `-C` option so piping will retain `jq` syntax highlighting.\n\n---\n\n## Example: List Repos You Can Access but Don’t Own\n\n```bash\ngithub/github--list--repos-affiliated--not-mine | less\n```\n\n**Tip**: use `bat` instead of `less` if you want color to go across lines\n\n## Example: List Repos You Own\n\n```bash\ngithub/github--list--repos-affiliated--mine | less\n```\n\n---\n\n## Usage\n\nClone or symlink this repo and run utilities directly. You can either:\n\n### Option 1: Run in place\n```bash\ngit clone https://github.com/yourname/repo-verify-utils.git\ncd repo-verify-utils/github\nexport GH_TOKEN=ghp_yourTokenHere\nexport GH_LOGIN=yourusername\n./github--list--repos-affiliated--not-mine\n```\n\n### Option 2: Symlink into your `$PATH`\n```bash\nln -s ~/repo-verify-utils/github/github--list--repos-affiliated--not-mine ~/bin/\ngithub--list--repos-affiliated--not-mine\n```\n\n---\n\n## Files\n\n* `ansi.sh`:\n Color/formatting utility functions used across scripts.\n\n* `repofns.sh`: Helper functions including:\n  - Color print helpers (`asection`, `awarn`, etc.)\n  - `github_env_verify` – checks if `GH_TOKEN` and `GH_LOGIN` are set\n\n* `github/github--list--repos-affiliated--mine`:\n Lists all affiliated GitHub repos that **you own**.\n\n* `github/github--list--repos-affiliated--not-mine`:\n Lists all affiliated GitHub repos that **you do not own**, i.e., where you're\n a collaborator or org member.\n\n* `github/zz--set-env--GH_LOGIN--to-your-username`:\n Convenience script for setting the `GH_LOGIN` environment variable.\n\n* `github/zz--set-env--GH_TOKEN`:\n Convenience script for setting the `GH_TOKEN` environment variable.\n\n---\n\n## Requirements\n\n* Bash (for now)\n* `curl`\n* `jq`\n* (optional but recommended) [`bat`](https://github.com/sharkdp/bat) for colorized output\n\n---\n\n## Goals\n\n* Help users explore what repos their token/identity can modify or access\n* Make GitHub API interaction easy and safe to inspect\n* Avoid accidental exposure or unintended permissions\n* Encourage review of OAuth app scopes and access boundaries\n\n---\n\n## Future Plans (chatgpt made this up):\n\n* Add support for org/team listings\n* Classify access by permission level (push/admin/etc.)\n* Add GitHub Apps / OAuth audit helpers\n* Optional HTML/JSON output modes\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjaggzh%2Frepo-verify-utils","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjaggzh%2Frepo-verify-utils","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjaggzh%2Frepo-verify-utils/lists"}