GitHub OAuth Token
Description
General
- Documentation: https://docs.github.com/en/rest/overview/other-authentication-methods#via-oauth-and-personal-access-tokens
- Summary: GitHub OAuth Tokens are used to authenticate API requests on behalf of a user through an OAuth flow. These tokens are issued to third-party applications and grant access to GitHub resources based on the permissions requested during the OAuth authorization process.
Revoke the secret
Tokens can be revoked from the OAuth Apps panel. Navigate to the "Authorized OAuth Apps" section and revoke access for the application.
Details for GitHub Oauth Access Token
-
Family: token
-
Category: version_control_platform
-
Company: GitHub
-
High recall: False
-
Validity check available: True
-
Analyzer available: True
-
On-premise instances exist: True
-
Only valid secrets raise an alert: False
-
Minimum number of matches: 1
-
Occurrences found for one million commits: 2.83
-
Prefixed: False
Secret Analyzer
Analysis Method
- Provider allows scopes enumeration: True
- Total network call count: 1
- Total call count may vary: False
HTTP Calls
Requests are designed to capture metadata and not to function effectively.
- GET: /user
Other Calls
Non-HTTP queries or HTTP calls made through a third-party app (e.g., Python package). No other calls for this analyzer.