# Github

## Overview

Arnica operates as a [Github App](https://docs.github.com/en/apps/using-github-apps/about-using-github-apps), which provides increased security, granular permissions, scalability, webhook support, and a better user experience compared to GitHub OAuth apps or personal access tokens.

Arnica’s Github App accesses customers' selected organizations and repositories to extract the [necessary data](/arnica-documentation/security/data-handling.md) and take remediation actions. The permissions justification can be found in the [GitHub App Permissions](/arnica-documentation/getting-started/scm-integrations/github/github-app-permissions.md) page.

## Scope considerations

The higher the visibility Arnica's GitHub app gets the more beneficial results you will see. For example, a complete visibility across all repositories is necessary to determine which accounts are inactive.

{% hint style="info" %}
Upon a successful integration, Arnica operates in a read-only mode until it is configured to take actions. It means that the installation of the application across the organizations is safe and transparent to anyone on GitHub.
{% endhint %}

## Required app installation permissions <a href="#h_1b965ff4bb" id="h_1b965ff4bb"></a>

**Only organization owners are able to install GitHub Apps**. If you are not an organization owner, an authorization request will be sent automatically by GitHub to the organization owner.

To see the proper integration in your Arnica tenant, please [invite the organization owner to your Arnica tenant](https://docs.arnica.io/arnica-documentation/platform-operations/how-do-i-invite-members-to-my-tenant).

## Installation process <a href="#h_92e3c4bace" id="h_92e3c4bace"></a>

1. [Login](https://app.arnica.io/) to Arnica.
2. Navigate to the **Integration** page in the **Admin** menu section.
3. Under the GitHub.com widget, click on **Add**. If you need to integrate a GitHub Enterprise Server, please click on the Add button and we will reach out to you to with the installation instructions.
4. You will be redirected to GitHub's application installation page. Select the applicable organization.

{% hint style="warning" %}
Arnica supports an integration with organization accounts only. It means that integrations with personal accounts are prohibited.
{% endhint %}

5. Select the desired scope and click on **Install & Authorize**.
6. If you have the proper permission, the page will redirect to Arnica's app and show the kicked off jobs. Otherwise, please ensure you have an organization owner permission or the owner is invited to your tenant.

{% hint style="info" %}
The application installation process needs to be applied per GitHub organization. If you have multiple organizations, please follow steps 2 to 6 above for each organization.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.arnica.io/arnica-documentation/getting-started/scm-integrations/github.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.