Add initial README and tidy go.mod

cbruno10 · cbruno10 · commit 2816be97bf3b · 2025-01-31T14:03:22.000-05:00
diff --git a/README.md b/README.md
@@ -1 +1,152 @@
-# tailpipe-plugin-github
+# GitHub Plugin for Tailpipe
+
+[Tailpipe](https://tailpipe.io) is an open-source CLI tool that allows you to collect logs and query them with SQL.
+
+[GitHub](https://www.github.com/) is a provider of Internet hosting for software development and version control using Git. It offers the distributed version control and source code management (SCM) functionality of Git, plus its own features.
+
+The [GitHub Plugin for Tailpipe](https://hub.tailpipe.io/plugins/turbot/github) allows you to collect and query GitHub logs using SQL to track activity, monitor trends, detect anomalies, and more!
+
+- **[Get started →](https://hub.tailpipe.io/plugins/turbot/github)**
+- Documentation: [Table definitions & examples](https://hub.tailpipe.io/plugins/turbot/github/tables)
+- Community: [Join #tailpipe on Slack →](https://turbot.com/community/join)
+- Get involved: [Issues](https://github.com/turbot/tailpipe-plugin-github/issues)
+
+Collect and query logs:
+![image](docs/images/github_audit_log_terminal.png)
+
+## Getting Started
+
+Install Tailpipe from the [downloads](https://tailpipe.io/downloads) page:
+
+```sh
+# MacOS
+brew install turbot/tap/tailpipe
+```
+
+```sh
+# Linux or Windows (WSL)
+sudo /bin/sh -c "$(curl -fsSL https://tailpipe.io/install/tailpipe.sh)"
+```
+
+Install the plugin:
+
+```sh
+tailpipe plugin install github
+```
+
+Configure your [connection credentials](https://hub.tailpipe.io/plugins/turbot/github#connection-credentials), table partition, and data source ([examples](https://hub.tailpipe.io/plugins/turbot/github/tables/github_audit_log#example-configurations)):
+
+```sh
+vi ~/.tailpipe/config/github.tpc
+```
+
+```hcl
+partition "github_audit_log" "my_logs" {
+  source "file"  {
+    paths = ["/Users/myuser/github_logs"]
+  }
+}
+```
+
+Download, enrich, and save logs from your source ([examples](https://tailpipe.io/docs/reference/cli/collect)):
+
+```sh
+tailpipe collect github_audit_log
+```
+
+Enter interactive query mode:
+
+```sh
+tailpipe query
+```
+
+Run a query:
+
+```sql
+select
+  action,
+  count(*) as event_count
+from
+  github_audit_log
+group by
+  action
+order by
+  event_count desc;
+```
+
+```sh
++---------------------------------------+-------------+
+| action                                | event_count |
++---------------------------------------+-------------+
+| pull_request.create                   | 7913        |
+| pull_request.merge                    | 5754        |
+| issue_comment.update                  | 4292        |
+| protected_branch.policy_override      | 3304        |
+| packages.package_version_published    | 2983        |
+| pull_request_review.submit            | 2674        |
+| pull_request.close                    | 2200        |
+| pull_request_review_comment.create    | 1875        |
+| pull_request.create_review_request    | 1793        |
+| repository_vulnerability_alert.create | 1644        |
++---------------------------------------+-------------+
+```
+
+## Detections as Code with Powerpipe
+
+Pre-built dashboards and detections for the GitHub plugin are available in [Powerpipe](https://powerpipe.io) mods, helping you monitor and analyze activity across your GitHub accounts.
+
+For example, the [GitHub Audit Logs Detections mod](https://hub.powerpipe.io/mods/turbot/tailpipe-mod-github-cloudtrail-log-detections) scans your CloudTrail logs for anomalies, such as an S3 bucket being made public or a change in your VPC network infrastructure.
+
+Dashboards and detections are [open source](https://github.com/topics/tailpipe-mod), allowing easy customization and collaboration.
+
+To get started, choose a mod from the [Powerpipe Hub](https://hub.powerpipe.io/?engines=tailpipe&q=github).
+
+![image](docs/images/github_audit_log_mitre_dashboard.png)
+
+## Developing
+
+Prerequisites:
+
+- [Tailpipe](https://tailpipe.io/downloads)
+- [Golang](https://golang.org/doc/install)
+
+Clone:
+
+```sh
+git clone https://github.com/turbot/tailpipe-plugin-github.git
+cd tailpipe-plugin-github
+```
+
+After making your local changes, build the plugin, which automatically installs the new version to your `~/.tailpipe/plugins` directory:
+
+```sh
+make
+```
+
+Re-collect your data:
+
+```sh
+tailpipe collect github_audit_log
+```
+
+Try it!
+
+```sh
+tailpipe query
+> .inspect github_audit_log
+```
+
+## Open Source & Contributing
+
+This repository is published under the [Apache 2.0](https://www.apache.org/licenses/LICENSE-2.0) (source code) and [CC BY-NC-ND](https://creativecommons.org/licenses/by-nc-nd/2.0/) (docs) licenses. Please see our [code of conduct](https://github.com/turbot/.github/blob/main/CODE_OF_CONDUCT.md). We look forward to collaborating with you!
+
+[Tailpipe](https://tailpipe.io) is a product produced from this open source software, exclusively by [Turbot HQ, Inc](https://turbot.com). It is distributed under our commercial terms. Others are allowed to make their own distribution of the software, but cannot use any of the Turbot trademarks, cloud services, etc. You can learn more in our [Open Source FAQ](https://turbot.com/open-source).
+
+## Get Involved
+
+**[Join #tailpipe on Slack →](https://turbot.com/community/join)**
+
+Want to help but don't know where to start? Pick up one of the `help wanted` issues:
+
+- [Tailpipe](https://github.com/turbot/tailpipe/labels/help%20wanted)
+- [GitHub Plugin](https://github.com/turbot/tailpipe-plugin-github/labels/help%20wanted)
diff --git a/go.sum b/go.sum
@@ -663,6 +663,8 @@ github.com/turbot/steampipe-plugin-code v0.7.0 h1:SROYIo/TI/Q/YNfXK+sAIS71umypUF
 github.com/turbot/steampipe-plugin-code v0.7.0/go.mod h1:GvdjncWum4sZNmR0iM03SKkIzl7aZKAFtIsyAR+z4YI=
 github.com/turbot/steampipe-plugin-sdk/v5 v5.8.0 h1:e/5EYO7B7UZW6joxO/wqtJGYFu+7NMCqMk/tPVbquFY=
 github.com/turbot/steampipe-plugin-sdk/v5 v5.8.0/go.mod h1:tYRC7FDKPTZ3MSty/tGLtH6UnVpU3zs1osF5DuktB5Q=
+github.com/turbot/tailpipe-plugin-sdk v0.1.0 h1:uZwyTIogO2176TV69iNjHdo6LAqZuuUySw1kTH1tkLs=
+github.com/turbot/tailpipe-plugin-sdk v0.1.0/go.mod h1:ISLG0B02WcUMFGcwOWOgioFkh4o/vOQSV/XWjTDZWnA=
 github.com/turbot/terraform-components v0.0.0-20231213122222-1f3526cab7a7 h1:qDMxFVd8Zo0rIhnEBdCIbR+T6WgjwkxpFZMN8zZmmjg=
 github.com/turbot/terraform-components v0.0.0-20231213122222-1f3526cab7a7/go.mod h1:5hzpfalEjfcJWp9yq75/EZoEu2Mzm34eJAPm3HOW2tw=
 github.com/ulikunitz/xz v0.5.10 h1:t92gobL9l3HE202wg3rlk19F6X+JOxl9BBrCCMYEYd8=
