GitHub Adapter
The GitHub adapter connects Sortie to GitHub Issues via the GitHub REST API (version 2026-03-10). It fetches candidate issues from the issues list endpoint (or the search endpoint when query_filter is configured), derives Sortie states from issue labels, normalizes responses to the domain issue model, paginates using Link header navigation, and maps HTTP errors to Sortie’s normalized error categories. Registered under kind "github".
GitHub Enterprise Server is supported. Set endpoint to your GHES base URL. The sub-issue (parent) and dependency (blocked_by) endpoints are available on all GitHub plans; the adapter degrades gracefully to nil and [] respectively when the endpoints return 404.
See also: WORKFLOW.md configuration for the full tracker schema, error reference for all tracker error kinds, environment variables for $VAR expansion behavior.
Configuration
The adapter reads its configuration from the tracker section of the WORKFLOW.md front matter. Two fields are required; the rest have defaults.
| Field | Type | Required | Default | Description |
|---|---|---|---|---|
kind | string | Yes | - | Must be "github". |
api_key | string | Yes | - | GitHub personal access token. Plain token string - not email:token format. |
project | string | Yes | - | Repository in owner/repo format. |
endpoint | string | No | https://api.github.com | GitHub API base URL. Override for GitHub Enterprise Server. |
active_states | list of strings | No | ["backlog", "in-progress", "review"] | Issue label names that map to active Sortie states. Compared case-insensitively; stored lowercased. |
terminal_states | list of strings | No | ["done", "wontfix"] | Issue label names that map to terminal Sortie states. Stored lowercased. |
query_filter | string | No | "" | Raw GitHub search qualifier appended to the search query. When set, FetchCandidateIssues uses the search endpoint instead of the issues list endpoint. |
handoff_state | string | No | (absent) | Target label name after a successful agent run. Must exist as a label in the repository. |
in_progress_state | string | No | (absent) | Target label name for dispatch-time transitions. Must appear in active_states. |
user_agent | string | No | "sortie/dev" | User-Agent header sent on all requests. |
endpoint
The GitHub API base URL. The default value is https://api.github.com. For GitHub Enterprise Server, set this to your instance’s API root (for example, https://github.mycompany.com). Trailing slashes are stripped.
Accepts $VAR indirection when the entire value is a variable reference.
api_key
A GitHub personal access token (classic or fine-grained). This field is not in email:token format - the value is the token string alone.
Minimum required scopes for classic tokens: repo (reads issues, posts comments, manages labels).
Minimum required permissions for fine-grained tokens: Issues (read and write), Metadata (read).
Accepts $VAR indirection anywhere in the string via full os.ExpandEnv expansion.
api_key: $SORTIE_GITHUB_TOKEN
api_key: $GITHUB_TOKENproject
Repository in owner/repo format - for example, myorg/myrepo. The adapter splits on the / to extract the owner and repository name. A value with zero or more than one /, or with empty parts, produces a tracker_payload_error at construction time.
project: myorg/myrepo
project: $SORTIE_GITHUB_PROJECTactive_states
Label names that map to active Sortie states. Issues with one of these labels are eligible for dispatch. Values are compared case-insensitively and stored lowercased at construction time.
When omitted, defaults to ["backlog", "in-progress", "review"]. These label names must exist in the repository - GitHub has no built-in equivalents.
terminal_states
Label names that map to terminal Sortie states. Issues with one of these labels trigger workspace cleanup. Stored lowercased.
When omitted, defaults to ["done", "wontfix"].
query_filter
A raw GitHub search qualifier string. When this field is non-empty, FetchCandidateIssues switches from the issues list endpoint to the search endpoint and appends this value to the base query repo:{owner}/{repo} type:issue state:open.
query_filter: "label:agent-ready"
query_filter: "label:agent-ready milestone:v2"Do not include repo: or type:issue in the value - they are added automatically.
Pre-creating labels
The adapter does not create issue labels automatically. All label names referenced in active_states, terminal_states, handoff_state, and in_progress_state must exist in the repository before Sortie starts. A TransitionIssue call that references a non-existent label produces a tracker_payload_error (HTTP 422 from GitHub).
Validate-time checks
When tracker.kind is github, the sortie validate pipeline runs GitHub-specific config checks in addition to the generic preflight validation. These checks run without constructing an adapter instance or making network calls.
Errors
| Check | Condition | Message |
|---|---|---|
tracker.project.format | tracker.project is non-empty but does not contain exactly one /, or either segment is empty after trimming | tracker.project must be in owner/repo format (e.g. "sortie-ai/sortie") |
tracker.project.format | owner or repo segment contains whitespace | tracker.project owner and repo must not contain whitespace |
Empty tracker.project is caught by the generic preflight check (tracker.project is required) before adapter validation runs.
Warnings
| Check | Condition | Message |
|---|---|---|
tracker.api_key.github_token_hint | tracker.api_key is empty after env expansion, but GITHUB_TOKEN env var is set | tracker.api_key is empty but GITHUB_TOKEN environment variable is set; consider using api_key: $GITHUB_TOKEN |
tracker.api_key.github_token_missing | tracker.api_key is empty and GITHUB_TOKEN is not set | tracker.api_key is empty and GITHUB_TOKEN environment variable is not set |
tracker.active_states.empty_element | An element in active_states is empty or whitespace-only | tracker.active_states[{i}]: empty state label will never match any issue |
tracker.terminal_states.empty_element | An element in terminal_states is empty or whitespace-only | tracker.terminal_states[{i}]: empty state label will never match any issue |
tracker.states.overlap | A label appears in both active_states and terminal_states (case-insensitive) | tracker.active_states and tracker.terminal_states overlap on "{label}"; an issue in state "{label}" would match both sets |
tracker.handoff_state.collision | handoff_state appears in active_states | tracker.handoff_state "{state}" must not appear in active_states (would cause immediate re-dispatch after handoff) |
tracker.handoff_state.collision | handoff_state appears in terminal_states | tracker.handoff_state "{state}" must not appear in terminal_states (handoff is not terminal) |
tracker.in_progress_state.collision | in_progress_state appears in terminal_states | tracker.in_progress_state "{state}" must not appear in terminal_states |
tracker.in_progress_state.collision | in_progress_state collides with handoff_state | tracker.in_progress_state must not collide with tracker.handoff_state ("{state}") |
The api_key warnings are supplementary hints. The generic preflight check already reports an error when tracker.api_key is empty - the adapter-specific warnings provide actionable remediation guidance alongside that error.
Authentication
Every request sets a Bearer authorization header:
Authorization: Bearer <token>Additional fixed headers on all requests:
| Header | Value |
|---|---|
Accept | application/vnd.github+json |
X-GitHub-Api-Version | 2026-03-10 |
User-Agent | Configured user_agent value |
The HTTP client has a 30-second per-request timeout. Context cancellation is propagated - a cancelled context causes the in-flight request to return immediately with context.Canceled.
State derivation
GitHub issues have two native states: open and closed. Sortie states are derived from issue labels using a four-priority algorithm.
Priority order
- Active states, config order. Issue labels are scanned against
active_statesin configuration order. The first match is returned. - Terminal states, config order. If no active state matched, labels are scanned against
terminal_statesin configuration order. The first match is returned. - Native-state fallback. If no label matched either list:
openissue →active_states[0](first configured active state, e.g.,"backlog").closedissue →terminal_states[0](first configured terminal state, e.g.,"done").
- Native state passthrough. When both
active_statesandterminal_statesare empty (not recommended), returns"open"or"closed"directly.
Multi-label conflicts
When an issue carries multiple state labels, the first configured active state wins (priority 1). Configuration order is deterministic; label display order on the issue is irrelevant.
Unlabeled issues
An open issue with no state label resolves to active_states[0]. A closed issue resolves to terminal_states[0]. This prevents unlabeled issues from appearing as an unknown state in the orchestrator.
Case handling
All comparisons are case-insensitive. A label named "In-Progress" matches the configured value "in-progress". All stored and compared values are lowercased at construction time.
API operations
The adapter implements all eight methods of the TrackerAdapter interface.
FetchCandidateIssues
Returns issues in configured active states.
When query_filter is empty (default - issues endpoint):
- Endpoint:
GET /repos/{owner}/{repo}/issues - Parameters:
state=open,sort=created,direction=asc,per_page=50 - All open issues are fetched and filtered client-side by state label. Pull requests are filtered out via the
pull_requestfield marker.
When query_filter is set (search endpoint):
- Endpoint:
GET /search/issues - Query (
q):repo:{owner}/{repo} type:issue state:open {query_filter} - Parameters:
sort=created,order=asc,per_page=50 incomplete_results: truein the response body produces a WARN log but does not abort the request.
Pagination: Link header-based (rel="next"). Page size: 50. Maximum 200 pages (10,000 issues). When the page limit is reached, a WARN is logged and accumulated results are returned without error.
Comments: Set to nil on returned issues.
Pull request filtering: Applied to all responses. The pull_request field on a list entry is non-nil for pull requests; those entries are skipped.
FetchIssueByID
Returns a single fully-populated issue. The issueID parameter is the issue number as a string, equal to the Identifier field.
Four requests:
GET /repos/{owner}/{repo}/issues/{issueID}- issue body and labels.GET /repos/{owner}/{repo}/issues/{issueID}/dependencies/blocked_by- blocker list. Returns[]on 404.GET /repos/{owner}/{repo}/issues/{issueID}/parent- parent issue. Returnsnilon 404.GET /repos/{owner}/{repo}/issues/{issueID}/comments- comments, Link-header paginated.
Returns tracker_not_found when the issue does not exist (HTTP 404) or when the resolved entity is a pull request.
FetchIssuesByStates
Returns issues in specified Sortie states. Used for startup terminal cleanup.
Active states: Issues endpoint with state=open, client-side label filtering.
Terminal states: Search endpoint, one query per terminal-state label: repo:{owner}/{repo} type:issue state:closed label:{terminal_label}. Server-side filtering avoids scanning all closed issues in the repository.
Returns an empty slice when states is empty.
FetchIssueStatesByIDs
Returns the current state for each requested issue ID. Since ID == Identifier == issue number for this adapter, the IDs are used directly as issue numbers in individual API calls.
Endpoint (per issue): GET /repos/{owner}/{repo}/issues/{number}
Batching: None. Sequential individual requests. 404 responses are omitted from the result map without error.
FetchIssueStatesByIdentifiers
Structurally identical to FetchIssueStatesByIDs. Since ID == Identifier for this adapter, both methods share the same internal implementation.
FetchIssueComments
Returns all comments for an issue.
Endpoint: GET /repos/{owner}/{repo}/issues/{issueID}/comments
Pagination: Link header-based. Page size: 50. Maximum 200 pages.
Returns tracker_not_found when the issue does not exist.
TransitionIssue
Applies a state transition by manipulating issue labels and the open/closed native state.
Steps:
GET /repos/{owner}/{repo}/issues/{issueID}- read current labels and native state.DELETE /repos/{owner}/{repo}/issues/{issueID}/labels/{old_label}- remove the current state label, if present and different from the target. Label names are URL path-escaped. A 404 here is treated as a no-op (label already absent).POST /repos/{owner}/{repo}/issues/{issueID}/labels- add the target state label.- If the target is a terminal state and the issue is open:
PATCH /repos/{owner}/{repo}/issues/{issueID}with{"state": "closed", "state_reason": "completed"}. - If the target is an active state and the issue is closed:
PATCH /repos/{owner}/{repo}/issues/{issueID}with{"state": "open"}.
Atomicity: The steps are not atomic. A failure at any step causes the adapter to return an error; the orchestrator retries on the next tick. Label operations are idempotent - retries converge to the correct state without creating duplicates.
Label case: Target labels are sent as configured (lowercased). GitHub label matching is case-insensitive.
CommentIssue
Posts a plain-text comment on an issue.
Endpoint: POST /repos/{owner}/{repo}/issues/{issueID}/comments
Request body: {"body": "<text>"}. No ADF conversion - GitHub natively accepts Markdown.
Returns nil on success (HTTP 201).
Field mapping
| Domain field | GitHub source | Normalization |
|---|---|---|
ID | number | strconv.Itoa(number). Same value as Identifier. |
Identifier | number | strconv.Itoa(number). Human-readable issue number (e.g., "42"). |
Title | title | String, as-is. |
Description | body | Pointer dereferenced. nil → "". Markdown pass-through - no ADF conversion. |
Priority | (not available) | Always nil. GitHub issues have no native priority field. |
State | labels + state | Derived via state derivation algorithm. |
BranchName | (not available) | Always "". Issues API does not expose branch metadata. |
URL | html_url | String, as-is. |
Labels | labels[].name | Each label lowercased. Non-nil empty slice when no labels. |
Assignee | assignees[0].login | First assignee’s login. Empty string when no assignees. |
IssueType | type.name | String, as-is. Empty string when type is null (organization-level issue types not configured). |
Parent | /issues/{id}/parent | nil in list normalization; populated by FetchIssueByID. nil on 404. |
Comments | /issues/{id}/comments | nil in list normalization; populated by FetchIssueByID and FetchIssueComments. |
BlockedBy | /issues/{id}/dependencies/blocked_by | Empty []BlockerRef{} in list normalization; populated by FetchIssueByID. Empty on 404. |
CreatedAt | created_at | ISO-8601 string, as-is. |
UpdatedAt | updated_at | ISO-8601 string, as-is. |
ID and Identifier
Both ID and Identifier map to the GitHub issue number. The global integer id field returned by the API is not used as the adapter’s ID - it cannot be used to look up issues via the REST API. As a result, FetchIssueStatesByIDs and FetchIssueStatesByIdentifiers are structurally equivalent for this adapter.
Comment normalization
| Domain field | GitHub source | Normalization |
|---|---|---|
ID | id | strconv.FormatInt(id, 10). |
Author | user.login | String, as-is. |
Body | body | Markdown pass-through. |
CreatedAt | created_at | ISO-8601 string, as-is. |
Error mapping
| HTTP status | Condition | Error kind |
|---|---|---|
| 200–299 | Success | (none) |
| 400 | Bad request | tracker_payload_error |
| 401 | Invalid or expired token | tracker_auth_error |
| 403 | Rate limited (primary) - x-ratelimit-remaining: 0 | tracker_api_error |
| 403 | Rate limited (secondary) - body contains "rate limit" | tracker_api_error |
| 403 | Insufficient permissions | tracker_auth_error |
| 404 | Resource not found | tracker_not_found |
| 410 | Gone (for example, deleted repository) | tracker_api_error |
| 422 | Validation failed | tracker_payload_error |
| 429 | Rate limited | tracker_api_error |
| 5xx | GitHub server error | tracker_transport_error |
| - | Network or DNS failure | tracker_transport_error |
| - | JSON decode failure on success response | tracker_payload_error |
| other | Unexpected status code | tracker_api_error |
403 disambiguation
GitHub uses HTTP 403 for both permission errors and secondary rate limits. The adapter applies a three-step check in order:
- If the
x-ratelimit-remainingheader equals"0"→tracker_api_error(primary rate limit). - If the response body (up to 512 bytes) contains
"rate limit"(case-insensitive) →tracker_api_error(secondary rate limit). - Otherwise →
tracker_auth_error(insufficient permissions).
The Retry-After header value from 429 responses is included in the error message for diagnostics.
For the full error taxonomy and operator guidance, see the error reference.
Pagination
All list endpoints use Link header-based pagination.
| Parameter | Value |
|---|---|
per_page | 50 (fixed page size) |
| Next page URL | Extracted from the Link: <url>; rel="next" response header. Absent when on the last page. |
The adapter follows rel="next" links directly - it does not construct URLs manually. A maximum of 200 pages are fetched per operation. When the limit is reached, accumulated results are returned with a WARN log.
Rate limits
GitHub enforces two independent rate limit buckets.
| Bucket | Limit | Used by this adapter |
|---|---|---|
| Primary (REST) | 5,000 requests/hour per token | All operations except search |
| Search | 30 requests/minute per token | FetchCandidateIssues when query_filter is set; FetchIssuesByStates terminal-state queries (startup only) |
At the default 30-second poll interval with max_concurrent_agents: 10, typical usage is well within the primary rate limit. The search budget applies only when query_filter is configured or during the one-time startup terminal-state cleanup.
Rate limit violations return HTTP 429 or HTTP 403. Both are mapped to tracker_api_error. The orchestrator logs the error and waits for the next poll interval.
External references
- GitHub REST API documentation - entry point for all endpoints called by this adapter
- Issues REST API - fetch, list, and comment endpoints used by
FetchIssuesByStates,FetchCandidateIssues, andCommentIssue - Search issues and pull requests - the search API used when
query_filteris configured - Using pagination in the REST API - Link header semantics this adapter follows for
rel="next" - REST API rate limits - primary and search bucket limits referenced above
- Managing personal access tokens - generate the token used in
GITHUB_TOKEN
Was this page helpful?