Skip to main content
Glama

ci_create_binding

Create a GitHub Actions CI binding for deploying to a project, using a locally signed delegation to authorize OIDC-based deployments with optional route scopes.

Instructions

Create a GitHub Actions CI/OIDC deploy binding by sending a locally signed delegation to the SDK. This MCP wrapper does not sign or broaden authority; the signed delegation defines the repository/branch or environment, allowed events/actions, and optional route_scopes. Without route_scopes, CI cannot deploy route declarations.

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
nonceYesLowercase hex nonce included in the signed delegation.
providerNoCI provider. V1 supports only github-actions; omitted defaults to github-actions.
expires_atNoOptional ISO timestamp when this binding expires.
project_idYesProject ID the CI binding may deploy to.
route_scopesNoOptional route delegation scopes, normalized by the SDK. Use exact paths like /admin or final wildcard prefixes like /api/*. Omit or pass [] for no CI route authority.
subject_matchYesGitHub Actions OIDC subject match, e.g. repo:owner/repo:ref:refs/heads/main.
allowed_eventsYesAllowed GitHub event names, typically push and workflow_dispatch.
allowed_actionsYesAllowed CI actions. V1 supports only deploy.
signed_delegationYesBase64 SIGN-IN-WITH-X delegation signed locally by the allowance wallet. This MCP tool does not sign; it only sends the signed delegation to the SDK.
github_repository_idNoNumeric GitHub repository id to pin the binding to, or null if absent.
Behavior4/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations, the description carries the full burden. It transparently states that this tool does not sign or broaden authority, and that the signed delegation defines repository/branch, events, actions, and route_scopes. It also notes the consequence of missing route_scopes. However, it does not disclose required permissions, side effects, or error conditions.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is three sentences, each serving a purpose: first sentence states the action, second sentence clarifies the tool's limited role, third sentence explains the parameter effect. No fluff, front-loaded key information.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness3/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

The tool has 10 parameters, no output schema, and no annotations. The description covers the core behavior and caveats, but lacks details on return values, error states, prerequisites (e.g., wallet setup), and success/failure outcomes. It is adequate but not fully complete for a complex creation tool.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters3/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

Schema coverage is 100%, so the baseline is 3. The description adds context beyond the schema for route_scopes (explaining deployment effect if omitted) and signed_delegation (clarifying it's only sent, not signed). However, most parameters are not elaborated beyond schema descriptions, so only moderate added value.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose5/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states it creates a GitHub Actions CI/OIDC deploy binding by sending a signed delegation. It specifies the verb 'Create', the resource 'CI/OIDC deploy binding', and distinguishes from siblings like ci_get_binding, ci_list_bindings, and ci_revoke_binding by describing its role as a wrapper that sends the delegation without signing or broadening authority.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines4/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description gives guidance on when to use by explaining the process: the signed delegation must be prepared locally, and this tool only sends it. It implies that signing is done separately, but does not explicitly list alternatives or when not to use. However, the context of sibling tools makes it clear this is for creating new bindings.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Other Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/MajorTal/run402'

If you have feedback or need assistance with the MCP directory API, please join our Discord server