GitHub Repository Management

GitHub仓库管理

Create, clone, fork, configure, and manage GitHub repositories. Each section shows

gh

first, then the

git

+

curl

fallback.

创建、克隆、复刻、配置和管理GitHub仓库。每个章节先展示

gh

命令，再给出

git

+

curl

的替代方案。

Prerequisites

前置条件

Authenticated with GitHub (see
```
github-auth
```
skill)

已通过GitHub身份验证（参考
```
github-auth
```
技能）

Setup

环境配置

bash

if command -v gh &>/dev/null && gh auth status &>/dev/null; then
  AUTH="gh"
else
  AUTH="git"
  if [ -z "$GITHUB_TOKEN" ]; then
    if [ -f ~/.hermes/.env ] && grep -q "^GITHUB_TOKEN=" ~/.hermes/.env; then
      GITHUB_TOKEN=$(grep "^GITHUB_TOKEN=" ~/.hermes/.env | head -1 | cut -d= -f2 | tr -d '\n\r')
    elif grep -q "github.com" ~/.git-credentials 2>/dev/null; then
      GITHUB_TOKEN=$(grep "github.com" ~/.git-credentials 2>/dev/null | head -1 | sed 's|https://[^:]*:\([^@]*\)@.*|\1|')
    fi
  fi
fi

bash

if command -v gh &>/dev/null && gh auth status &>/dev/null; then
  AUTH="gh"
else
  AUTH="git"
  if [ -z "$GITHUB_TOKEN" ]; then
    if [ -f ~/.hermes/.env ] && grep -q "^GITHUB_TOKEN=" ~/.hermes/.env; then
      GITHUB_TOKEN=$(grep "^GITHUB_TOKEN=" ~/.hermes/.env | head -1 | cut -d= -f2 | tr -d '\n\r')
    elif grep -q "github.com" ~/.git-credentials 2>/dev/null; then
      GITHUB_TOKEN=$(grep "github.com" ~/.git-credentials 2>/dev/null | head -1 | sed 's|https://[^:]*:\([^@]*\)@.*|\1|')
    fi
  fi
fi

Get your GitHub username (needed for several operations)

if [ "$AUTH" = "gh" ]; then GH_USER=$(gh api user --jq '.login') else GH_USER=$(curl -s -H "Authorization: token $GITHUB_TOKEN" https://api.github.com/user | python3 -c "import sys,json; print(json.load(sys.stdin)['login'])") fi


If you're inside a repo already:

```bash
REMOTE_URL=$(git remote get-url origin)
OWNER_REPO=$(echo "$REMOTE_URL" | sed -E 's|.*github\.com[:/]||; s|\.git$||')
OWNER=$(echo "$OWNER_REPO" | cut -d/ -f1)
REPO=$(echo "$OWNER_REPO" | cut -d/ -f2)

if [ "$AUTH" = "gh" ]; then GH_USER=$(gh api user --jq '.login') else GH_USER=$(curl -s -H "Authorization: token $GITHUB_TOKEN" https://api.github.com/user | python3 -c "import sys,json; print(json.load(sys.stdin)['login'])") fi


如果你已经在某个仓库目录下：

```bash
REMOTE_URL=$(git remote get-url origin)
OWNER_REPO=$(echo "$REMOTE_URL" | sed -E 's|.*github\.com[:/]||; s|\.git$||')
OWNER=$(echo "$OWNER_REPO" | cut -d/ -f1)
REPO=$(echo "$OWNER_REPO" | cut -d/ -f2)

1. Cloning Repositories

1. 克隆仓库

Cloning is pure

git

— works identically either way:

bash

undefined

克隆操作完全使用

git

命令——两种方式效果一致：

bash

undefined

Clone via HTTPS (works with credential helper or token-embedded URL)

git clone https://github.com/owner/repo-name.git

Clone into a specific directory

git clone https://github.com/owner/repo-name.git ./my-local-dir

Shallow clone (faster for large repos)

git clone --depth 1 https://github.com/owner/repo-name.git

Clone a specific branch

git clone --branch develop https://github.com/owner/repo-name.git

Clone via SSH (if SSH is configured)

git clone git@github.com:owner/repo-name.git


**With gh (shorthand):**

```bash
gh repo clone owner/repo-name
gh repo clone owner/repo-name -- --depth 1

git clone git@github.com:owner/repo-name.git


**使用gh（简写方式）：**

```bash
gh repo clone owner/repo-name
gh repo clone owner/repo-name -- --depth 1

2. Creating Repositories

2. 创建仓库

With gh:

bash

undefined

使用gh：

bash

undefined

Create a public repo and clone it

gh repo create my-new-project --public --clone

Private, with description and license

gh repo create my-new-project --private --description "A useful tool" --license MIT --clone

Under an organization

gh repo create my-org/my-new-project --public --clone

From existing local directory

cd /path/to/existing/project gh repo create my-project --source . --public --push


**With git + curl:**

```bash

cd /path/to/existing/project gh repo create my-project --source . --public --push


**使用git + curl：**

```bash

Create the remote repo via API

curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/user/repos
-d '{ "name": "my-new-project", "description": "A useful tool", "private": false, "auto_init": true, "license_template": "mit" }'

Clone it

git clone https://github.com/$GH_USER/my-new-project.git cd my-new-project

-- OR -- push an existing local directory to the new repo

cd /path/to/existing/project git init git add . git commit -m "Initial commit" git remote add origin https://github.com/$GH_USER/my-new-project.git git push -u origin main


To create under an organization:

```bash
curl -s -X POST \
  -H "Authorization: token $GITHUB_TOKEN" \
  https://api.github.com/orgs/my-org/repos \
  -d '{"name": "my-new-project", "private": false}'

cd /path/to/existing/project git init git add . git commit -m "Initial commit" git remote add origin https://github.com/$GH_USER/my-new-project.git git push -u origin main


在组织下创建仓库：

```bash
curl -s -X POST \
  -H "Authorization: token $GITHUB_TOKEN" \
  https://api.github.com/orgs/my-org/repos \
  -d '{"name": "my-new-project", "private": false}'

From a Template

从模板创建

With gh:

bash

gh repo create my-new-app --template owner/template-repo --public --clone

With curl:

bash

curl -s -X POST \
  -H "Authorization: token $GITHUB_TOKEN" \
  https://api.github.com/repos/owner/template-repo/generate \
  -d '{"owner": "'"$GH_USER"'", "name": "my-new-app", "private": false}'

使用gh：

bash

gh repo create my-new-app --template owner/template-repo --public --clone

使用curl：

bash

curl -s -X POST \
  -H "Authorization: token $GITHUB_TOKEN" \
  https://api.github.com/repos/owner/template-repo/generate \
  -d '{"owner": "'"$GH_USER"'", "name": "my-new-app", "private": false}'

3. Forking Repositories

3. 复刻仓库

With gh:

bash

gh repo fork owner/repo-name --clone

With git + curl:

bash

undefined

使用gh：

bash

gh repo fork owner/repo-name --clone

使用git + curl：

bash

undefined

Create the fork via API

curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/owner/repo-name/forks

Wait a moment for GitHub to create it, then clone

sleep 3 git clone https://github.com/$GH_USER/repo-name.git cd repo-name

Add the original repo as "upstream" remote

git remote add upstream https://github.com/owner/repo-name.git

undefined

git remote add upstream https://github.com/owner/repo-name.git

undefined

Keeping a Fork in Sync

保持复刻仓库同步

bash

undefined

bash

undefined

Pure git — works everywhere

git fetch upstream git checkout main git merge upstream/main git push origin main


**With gh (shortcut):**

```bash
gh repo sync $GH_USER/repo-name

git fetch upstream git checkout main git merge upstream/main git push origin main


**使用gh（快捷方式）：**

```bash
gh repo sync $GH_USER/repo-name

4. Repository Information

4. 仓库信息查询

With gh:

bash

gh repo view owner/repo-name
gh repo list --limit 20
gh search repos "machine learning" --language python --sort stars

With curl:

bash

undefined

使用gh：

bash

gh repo view owner/repo-name
gh repo list --limit 20
gh search repos "machine learning" --language python --sort stars

使用curl：

bash

undefined

View repo details

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO
| python3 -c " import sys, json r = json.load(sys.stdin) print(f"Name: {r['full_name']}") print(f"Description: {r['description']}") print(f"Stars: {r['stargazers_count']} Forks: {r['forks_count']}") print(f"Default branch: {r['default_branch']}") print(f"Language: {r['language']}")"

List your repos

curl -s
-H "Authorization: token $GITHUB_TOKEN"
"https://api.github.com/user/repos?per_page=20&sort=updated"
| python3 -c " import sys, json for r in json.load(sys.stdin): vis = 'private' if r['private'] else 'public' print(f" {r['full_name']:40} {vis:8} {r.get('language', ''):10} ★{r['stargazers_count']}")"

Search repos

curl -s
"https://api.github.com/search/repositories?q=machine+learning+language:python&sort=stars&per_page=10"
| python3 -c " import sys, json for r in json.load(sys.stdin)['items']: print(f" {r['full_name']:40} ★{r['stargazers_count']:6} {r['description'][:60] if r['description'] else ''}")"

undefined

curl -s
"https://api.github.com/search/repositories?q=machine+learning+language:python&sort=stars&per_page=10"
| python3 -c " import sys, json for r in json.load(sys.stdin)['items']: print(f" {r['full_name']:40} ★{r['stargazers_count']:6} {r['description'][:60] if r['description'] else ''}")"

undefined

5. Repository Settings

5. 仓库设置

With gh:

bash

gh repo edit --description "Updated description" --visibility public
gh repo edit --enable-wiki=false --enable-issues=true
gh repo edit --default-branch main
gh repo edit --add-topic "machine-learning,python"
gh repo edit --enable-auto-merge

With curl:

bash

curl -s -X PATCH \
  -H "Authorization: token $GITHUB_TOKEN" \
  https://api.github.com/repos/$OWNER/$REPO \
  -d '{
    "description": "Updated description",
    "has_wiki": false,
    "has_issues": true,
    "allow_auto_merge": true
  }'

使用gh：

bash

gh repo edit --description "Updated description" --visibility public
gh repo edit --enable-wiki=false --enable-issues=true
gh repo edit --default-branch main
gh repo edit --add-topic "machine-learning,python"
gh repo edit --enable-auto-merge

使用curl：

bash

curl -s -X PATCH \
  -H "Authorization: token $GITHUB_TOKEN" \
  https://api.github.com/repos/$OWNER/$REPO \
  -d '{
    "description": "Updated description",
    "has_wiki": false,
    "has_issues": true,
    "allow_auto_merge": true
  }'

Update topics

curl -s -X PUT
-H "Authorization: token $GITHUB_TOKEN"
-H "Accept: application/vnd.github.mercy-preview+json"
https://api.github.com/repos/$OWNER/$REPO/topics
-d '{"names": ["machine-learning", "python", "automation"]}'

undefined

curl -s -X PUT
-H "Authorization: token $GITHUB_TOKEN"
-H "Accept: application/vnd.github.mercy-preview+json"
https://api.github.com/repos/$OWNER/$REPO/topics
-d '{"names": ["machine-learning", "python", "automation"]}'

undefined

6. Branch Protection

6. 分支保护

bash

undefined

bash

undefined

View current protection

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/branches/main/protection

Set up branch protection

curl -s -X PUT
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/branches/main/protection
-d '{ "required_status_checks": { "strict": true, "contexts": ["ci/test", "ci/lint"] }, "enforce_admins": false, "required_pull_request_reviews": { "required_approving_review_count": 1 }, "restrictions": null }'

undefined

curl -s -X PUT
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/branches/main/protection
-d '{ "required_status_checks": { "strict": true, "contexts": ["ci/test", "ci/lint"] }, "enforce_admins": false, "required_pull_request_reviews": { "required_approving_review_count": 1 }, "restrictions": null }'

undefined

7. Secrets Management (GitHub Actions)

7. Secrets管理（GitHub Actions）

With gh:

bash

gh secret set API_KEY --body "your-secret-value"
gh secret set SSH_KEY < ~/.ssh/id_rsa
gh secret list
gh secret delete API_KEY

With curl:

Secrets require encryption with the repo's public key — more involved via API:

bash

undefined

使用gh：

bash

gh secret set API_KEY --body "your-secret-value"
gh secret set SSH_KEY < ~/.ssh/id_rsa
gh secret list
gh secret delete API_KEY

使用curl：

Secrets需要使用仓库的公钥加密——通过API操作较为复杂：

bash

undefined

Get the repo's public key for encrypting secrets

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/secrets/public-key

Encrypt and set (requires Python with PyNaCl)

python3 -c " from base64 import b64encode from nacl import encoding, public import json, sys

Get the public key

key_id = '<key_id_from_above>' public_key = '<base64_key_from_above>'

Encrypt

sealed = public.SealedBox( public.PublicKey(public_key.encode('utf-8'), encoding.Base64Encoder) ).encrypt('your-secret-value'.encode('utf-8')) print(json.dumps({ 'encrypted_value': b64encode(sealed).decode('utf-8'), 'key_id': key_id }))"

Then PUT the encrypted secret

curl -s -X PUT
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/secrets/API_KEY
-d '<output from python script above>'

List secrets (names only, values hidden)

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/secrets
| python3 -c " import sys, json for s in json.load(sys.stdin)['secrets']: print(f" {s['name']:30} updated: {s['updated_at']}")"


Note: For secrets, `gh secret set` is dramatically simpler. If setting secrets is needed and `gh` isn't available, recommend installing it for just that operation.

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/secrets
| python3 -c " import sys, json for s in json.load(sys.stdin)['secrets']: print(f" {s['name']:30} updated: {s['updated_at']}")"


注意：对于Secrets，`gh secret set`命令要简单得多。如果需要设置Secrets且没有安装gh，建议专门安装gh来执行该操作。

8. Releases

8. 版本发布

With gh:

bash

gh release create v1.0.0 --title "v1.0.0" --generate-notes
gh release create v2.0.0-rc1 --draft --prerelease --generate-notes
gh release create v1.0.0 ./dist/binary --title "v1.0.0" --notes "Release notes"
gh release list
gh release download v1.0.0 --dir ./downloads

With curl:

bash

undefined

使用gh：

bash

gh release create v1.0.0 --title "v1.0.0" --generate-notes
gh release create v2.0.0-rc1 --draft --prerelease --generate-notes
gh release create v1.0.0 ./dist/binary --title "v1.0.0" --notes "Release notes"
gh release list
gh release download v1.0.0 --dir ./downloads

使用curl：

bash

undefined

Create a release

curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/releases
-d '{ "tag_name": "v1.0.0", "name": "v1.0.0", "body": "## Changelog\n- Feature A\n- Bug fix B", "draft": false, "prerelease": false, "generate_release_notes": true }'

List releases

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/releases
| python3 -c " import sys, json for r in json.load(sys.stdin): tag = r.get('tag_name', 'no tag') print(f" {tag:15} {r['name']:30} {'draft' if r['draft'] else 'published'}")"

Upload a release asset (binary file)

RELEASE_ID=<id_from_create_response> curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
-H "Content-Type: application/octet-stream"
"https://uploads.github.com/repos/$OWNER/$REPO/releases/$RELEASE_ID/assets?name=binary-amd64"
--data-binary @./dist/binary-amd64

undefined

RELEASE_ID=<id_from_create_response> curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
-H "Content-Type: application/octet-stream"
"https://uploads.github.com/repos/$OWNER/$REPO/releases/$RELEASE_ID/assets?name=binary-amd64"
--data-binary @./dist/binary-amd64

undefined

9. GitHub Actions Workflows

9. GitHub Actions工作流

With gh:

bash

gh workflow list
gh run list --limit 10
gh run view <RUN_ID>
gh run view <RUN_ID> --log-failed
gh run rerun <RUN_ID>
gh run rerun <RUN_ID> --failed
gh workflow run ci.yml --ref main
gh workflow run deploy.yml -f environment=staging

With curl:

bash

undefined

使用gh：

bash

gh workflow list
gh run list --limit 10
gh run view <RUN_ID>
gh run view <RUN_ID> --log-failed
gh run rerun <RUN_ID>
gh run rerun <RUN_ID> --failed
gh workflow run ci.yml --ref main
gh workflow run deploy.yml -f environment=staging

使用curl：

bash

undefined

List workflows

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/workflows
| python3 -c " import sys, json for w in json.load(sys.stdin)['workflows']: print(f" {w['id']:10} {w['name']:30} {w['state']}")"

List recent runs

curl -s
-H "Authorization: token $GITHUB_TOKEN"
"https://api.github.com/repos/$OWNER/$REPO/actions/runs?per_page=10"
| python3 -c " import sys, json for r in json.load(sys.stdin)['workflow_runs']: print(f" Run {r['id']} {r['name']:30} {r['conclusion'] or r['status']}")"

Download failed run logs

RUN_ID=<run_id> curl -s -L
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/runs/$RUN_ID/logs
-o /tmp/ci-logs.zip cd /tmp && unzip -o ci-logs.zip -d ci-logs

Re-run a failed workflow

curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/runs/$RUN_ID/rerun

Re-run only failed jobs

curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/runs/$RUN_ID/rerun-failed-jobs

Trigger a workflow manually (workflow_dispatch)

WORKFLOW_ID=<workflow_id_or_filename> curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/workflows/$WORKFLOW_ID/dispatches
-d '{"ref": "main", "inputs": {"environment": "staging"}}'

undefined

WORKFLOW_ID=<workflow_id_or_filename> curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/repos/$OWNER/$REPO/actions/workflows/$WORKFLOW_ID/dispatches
-d '{"ref": "main", "inputs": {"environment": "staging"}}'

undefined

10. Gists

10. Gists管理

With gh:

bash

gh gist create script.py --public --desc "Useful script"
gh gist list

With curl:

bash

undefined

使用gh：

bash

gh gist create script.py --public --desc "Useful script"
gh gist list

使用curl：

bash

undefined

Create a gist

curl -s -X POST
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/gists
-d '{ "description": "Useful script", "public": true, "files": { "script.py": {"content": "print("hello")"} } }'

List your gists

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/gists
| python3 -c " import sys, json for g in json.load(sys.stdin): files = ', '.join(g['files'].keys()) print(f" {g['id']} {g['description'] or '(no desc)':40} {files}")"

undefined

curl -s
-H "Authorization: token $GITHUB_TOKEN"
https://api.github.com/gists
| python3 -c " import sys, json for g in json.load(sys.stdin): files = ', '.join(g['files'].keys()) print(f" {g['id']} {g['description'] or '(no desc)':40} {files}")"

undefined

Quick Reference Table

快速参考表

Action	gh	git + curl
Clone	`gh repo clone o/r`	`git clone https://github.com/o/r.git`
Create repo	`gh repo create name --public`	`curl POST /user/repos`
Fork	`gh repo fork o/r --clone`	`curl POST /repos/o/r/forks` + `git clone`
Repo info	`gh repo view o/r`	`curl GET /repos/o/r`
Edit settings	`gh repo edit --...`	`curl PATCH /repos/o/r`
Create release	`gh release create v1.0`	`curl POST /repos/o/r/releases`
List workflows	`gh workflow list`	`curl GET /repos/o/r/actions/workflows`
Rerun CI	`gh run rerun ID`	`curl POST /repos/o/r/actions/runs/ID/rerun`
Set secret	`gh secret set KEY`	`curl PUT /repos/o/r/actions/secrets/KEY` (+ encryption)

操作	gh	git + curl
克隆	`gh repo clone o/r`	`git clone https://github.com/o/r.git`
创建仓库	`gh repo create name --public`	`curl POST /user/repos`
复刻	`gh repo fork o/r --clone`	`curl POST /repos/o/r/forks` + `git clone`
仓库信息查询	`gh repo view o/r`	`curl GET /repos/o/r`
编辑设置	`gh repo edit --...`	`curl PATCH /repos/o/r`
创建版本发布	`gh release create v1.0`	`curl POST /repos/o/r/releases`
列出工作流	`gh workflow list`	`curl GET /repos/o/r/actions/workflows`
重新运行CI	`gh run rerun ID`	`curl POST /repos/o/r/actions/runs/ID/rerun`
设置Secret	`gh secret set KEY`	`curl PUT /repos/o/r/actions/secrets/KEY` (+ 加密)

github-repo-management

Original

Translation

GitHub Repository Management

GitHub仓库管理

Prerequisites

前置条件

Setup

环境配置

Get your GitHub username (needed for several operations)

Get your GitHub username (needed for several operations)

1. Cloning Repositories

1. 克隆仓库

Clone via HTTPS (works with credential helper or token-embedded URL)

Clone via HTTPS (works with credential helper or token-embedded URL)

Clone into a specific directory

Clone into a specific directory

Shallow clone (faster for large repos)

Shallow clone (faster for large repos)

Clone a specific branch

Clone a specific branch

Clone via SSH (if SSH is configured)

Clone via SSH (if SSH is configured)

2. Creating Repositories

2. 创建仓库

Create a public repo and clone it

Create a public repo and clone it

Private, with description and license

Private, with description and license

Under an organization

Under an organization

From existing local directory

From existing local directory

Create the remote repo via API

Create the remote repo via API

Clone it

Clone it

-- OR -- push an existing local directory to the new repo

-- OR -- push an existing local directory to the new repo

From a Template

从模板创建

3. Forking Repositories

3. 复刻仓库

Create the fork via API

Create the fork via API

Wait a moment for GitHub to create it, then clone

Wait a moment for GitHub to create it, then clone

Add the original repo as "upstream" remote

Add the original repo as "upstream" remote

Keeping a Fork in Sync

保持复刻仓库同步

Pure git — works everywhere

Pure git — works everywhere

4. Repository Information

4. 仓库信息查询

View repo details

View repo details

List your repos

List your repos

Search repos

Search repos

5. Repository Settings

5. 仓库设置

Update topics

Update topics

6. Branch Protection

6. 分支保护

View current protection

View current protection

Set up branch protection

Set up branch protection

7. Secrets Management (GitHub Actions)

7. Secrets管理（GitHub Actions）

Get the repo's public key for encrypting secrets

Get the repo's public key for encrypting secrets

Encrypt and set (requires Python with PyNaCl)

Encrypt and set (requires Python with PyNaCl)

Get the public key

Get the public key

Encrypt