GitHub Integration

Pensar Console integrates with GitHub to scan and secure your repositories. The integration uses a GitHub App to provide secure access to your code without requiring personal access tokens.

Prerequisites

Before connecting GitHub, ensure you have:

A GitHub account with access to the repositories you want to scan
Organization owner or admin access (if installing on an organization)

Connecting GitHub

From Workspace Settings

Navigate to Settings → Integrations in your Pensar Console workspace
Expand the GitHub section
Click Install another GitHub account (or Install GitHub if this is your first connection)
A popup window will open to GitHub’s app installation page
Select the organization or user account where you want to install the app
Choose to install on all repositories or select specific repositories
Click Install
You’ll be automatically redirected back to Pensar Console

Direct Installation

You can also install the Pensar GitHub App directly from GitHub:

Visit github.com/apps/pensarapp
Click Install
Select the organization or user account where you want to install the app
Choose your repository access preferences
Click Install

From Onboarding

When creating a new workspace, you’ll be prompted to connect GitHub during the onboarding process. Simply follow the same steps above.

You can connect multiple GitHub accounts or organizations to the same workspace. This is useful if your code is spread across different GitHub organizations.

Permissions

The Pensar GitHub App requests the following permissions:

Permission	Access Level	Purpose
Contents	Read & Write	Read repository code for scanning, create auto-remediation commits
Pull requests	Read & Write	Create and manage pull requests for security fixes
Checks	Read & Write	Report scan status and results on pull requests
Actions	Read & Write	Integrate with GitHub Actions workflows

Adding Repositories

After the app is installed:

Go to Projects → New Project in Pensar Console
Your GitHub repositories will appear in the repository list
Select a repository and configure your project settings
Click Create Project to start scanning

Managing Installations

Viewing Connected Accounts

Navigate to Settings → Integrations
Expand the GitHub section
You’ll see all connected GitHub accounts and organizations

Adding More Accounts

Click Install another GitHub account to connect additional GitHub organizations or user accounts.

Modifying Repository Access

To change which repositories Pensar can access:

Go to your GitHub organization or account settings
Navigate to Installed GitHub Apps
Find Pensar and click Configure
Update the repository access settings
The changes will be reflected in Pensar Console automatically

Removing an Installation

To disconnect a GitHub account:

Go to your GitHub organization or account settings
Navigate to Installed GitHub Apps
Find Pensar and click Configure
Scroll down and click Uninstall

Removing a GitHub installation will prevent Pensar from scanning repositories in that account. Any projects using those repositories will no longer be able to perform scans.

Troubleshooting

Installation Pending Approval

If you see “Installation pending approval”, it means you requested to install the app on an organization where you’re not an admin. An organization owner will need to approve the installation.

Repositories Not Appearing

If your repositories don’t appear in the project creation list:

Verify the GitHub App is installed on the correct organization
Check that the app has access to the specific repository
Ensure you have at least read access to the repository on GitHub

Permission Errors

If you see permission errors when scanning:

Verify the GitHub App has the required permissions listed above
Ensure the app is installed on the repository you’re trying to scan
Check that the installation hasn’t been suspended

Need Help?

If you encounter issues setting up your GitHub integration, please contact our support team at team@pensarai.com.