Install · what we'll ask for

Two clicks. The next screen is GitHub's.

When you continue, GitHub will ask you to choose which repositories agentlint can access. Here's exactly what permissions the App requests and what each one is for.

Contents · Read

So we can read your CLAUDE.md, AGENTS.md, .cursor/rules, hook scripts, and skill files. We never write to your repository.
Pull requests · Read & write

So we can post inline comments and review summaries on PRs that touch a rules file. Comments only — no commits, no merge gates, no approvals.
Issues · Read & write

So we can open the one-time initial-audit issue when you first install, and post the paywall reminder when you exceed the free tier.
Metadata · Read

Standard for every GitHub App. The repo's name, default branch, and visibility — nothing about the contents.

Anything not listed above, agentlint can't do. We can't push, can't merge, can't trigger workflows, can't read your other repos. You can revoke access at any time from your GitHub Settings.

Continue to GitHub → See a sample audit first

5 free audits on every private repo. Unlimited on OSS, forever.