Version: 0.5.0


To use driftctl, we need credentials to make authenticated requests to GitHub. Just like the terraform provider, we retrieve config from environment variables.

$ GITHUB_TOKEN=14758f1afd44c09b7992073ccf00b43d GITHUB_ORGANIZATION=my-org driftctl scan --to github+tf

Least privileged policy#

Below you can find the minimal scope required for driftctl to be able to scan every GitHub supported resources.

repo # Required to enumerate public and private repos

Beware that if you don't set correct permissions for your token, you won't see any errors and all resources will appear as deleted from remote.