← Help

What GitHub permissions does AccessLint require?

AccessLint requires the following GitHub permissions for installation:

Repository Contents (read only)

AccessLint reads files in your repository to identify accessibility issues: the files you change in a Pull Request, in context of the surrounding code, and — during initial setup — markup files on your default branch, to surface existing issues. We never write to your repository contents.

Metadata (read only)

All GitHub Apps require the Metadata permission. It covers read-only endpoints for basic resource information that doesn’t leak sensitive private repository data.

Pull Requests (read & write)

We use the Pull Requests permission to listen for new Pull Requests, read the changed files, and post reviews with inline comments on any accessibility issues we find.

Commit Statuses (read & write)

We use the Commit Status permission to set and update the AccessLint status check on your Pull Requests.

Organization Members (read only)

For organization installations, we read the member list to determine who on your team can access the organization’s AccessLint dashboard.

Email Addresses (read only)

We use your email address to send account notifications, like a welcome message and trial or billing reminders.

Visit GitHub’s documentation on using GitHub Apps for more details on how app permissions work.