GitHub Issues Integration

NirmIQ can automatically create GitHub Issues from user bug reports and feature requests. This provides better tracking than email without requiring SMTP or Resend configuration.

Benefits Over Email

Feature	GitHub Issues	Email
Trackable	Issue numbers, labels, milestones	Subject lines only
Searchable	Full-text search, filters	Limited
Workflow	Link to PRs, auto-close on merge	Manual
No spam filters	Always delivered	May be filtered
Public accountability	Users can see status	No visibility
Configuration	Just a token	SMTP/Resend setup

Setup Instructions

Step 1: Create a Dedicated Issues Repository (Recommended)

For security, create a separate public repository for user-reported issues:

Go to GitHub and create a new repository: nirmiq-issues
Make it public (so users can view their submitted issues)
Add labels: bug, enhancement, feedback, user-reported, triage-needed

Why a Separate Repository?

Using a dedicated issues repo keeps user reports separate from your development workflow. This prevents:

Cluttering your main repo with user reports
Accidentally exposing internal development issues
Users seeing unreleased features in issue discussions

Step 2: Create a GitHub Personal Access Token (PAT)

Go to GitHub Settings → Developer settings → Personal access tokens → Fine-grained tokens
Click Generate new token
Configure:
- Token name: NirmIQ Feedback Bot
- Expiration: 1 year (set a reminder to rotate)
- Repository access: Select Only select repositories → choose nirmiq-issues
- Permissions:
  - Issues: Read and write
  - (No other permissions needed)
Generate and copy the token

Step 3: Configure Environment Variables

Add these to your Railway/Vercel environment:

# Required
GITHUB_ISSUES_ENABLED=true
GITHUB_ISSUES_TOKEN=ghp_xxxxxxxxxxxxxxxxxxxx
GITHUB_REPO_OWNER=your-org-name
GITHUB_REPO_NAME=nirmiq-issues

# Optional: Also send email notifications
RESEND_API_KEY=re_xxxx  # If you want email backup

Step 4: Verify Integration

Go to Admin → Feedback → Integration Status
Confirm GitHub Issues shows as enabled
Submit a test bug report
Check your issues repo for the new issue

How It Works

When a user submits feedback:

User → Feedback Button → API → GitHub Issues → Issue Created
                            ↓
                     Also saved to DB
                            ↓
              (Optional) Email notification

Issue Format

Created issues include:

## Bug Report

**Submitted by:** j***@c*****.com
**Feedback ID:** #42
**Date:** 2026-01-02 15:30 UTC

---

### Description

[User's description here]

---

### Context

| Property | Value |
|----------|-------|
| URL | `/dashboard/project/123` |
| Browser | `Chrome 120 on Windows` |
| Screenshot | Available (internal) |

---

Automatically created by NirmIQ Feedback System

Privacy Protection

Email anonymization: User emails are masked (e.g., j***@c*****.com)
No screenshots uploaded: Screenshots stay on your server, not GitHub
Feedback ID reference: Internal tracking ID for cross-referencing

Labels

Issues are automatically labeled:

Label	When Applied
`bug`	Bug reports
`enhancement`	Feature requests
`feedback`	General feedback
`user-reported`	All user submissions
`triage-needed`	All new issues

Admin Dashboard

Check Integration Status

GET /api/feedback/integration-status

Returns:

{
  "github_issues": {
    "enabled": true,
    "token_configured": true,
    "repo_owner": "your-org",
    "repo_name": "nirmiq-issues"
  },
  "resend_email": {
    "enabled": false
  },
  "smtp_email": {
    "enabled": false
  },
  "recommended": "github_issues"
}

Troubleshooting

Issues Not Being Created

Check token permissions: Must have issues:write on the target repo
Verify repo exists: Token must have access to the specified repository
Check environment variables: All 4 variables must be set correctly

Token Expired

Generate a new PAT following Step 2
Update GITHUB_ISSUES_TOKEN in your environment
Restart the API server

Wrong Repository

If issues appear in the wrong repo, verify:

GITHUB_REPO_OWNER matches your organization/username exactly
GITHUB_REPO_NAME matches the repository name exactly

Security Best Practices

Use fine-grained tokens: Only grant issues:write permission
Limit repository access: Token should only access the issues repo
Rotate tokens annually: Set calendar reminders
Separate repos: Never use your main development repo for user issues
Audit regularly: Review created issues monthly for abuse

Benefits Over Email​

Setup Instructions​

Step 1: Create a Dedicated Issues Repository (Recommended)​

Step 2: Create a GitHub Personal Access Token (PAT)​

Step 3: Configure Environment Variables​

Step 4: Verify Integration​

How It Works​

Issue Format​

Privacy Protection​

Labels​

Admin Dashboard​

Check Integration Status​

Troubleshooting​

Issues Not Being Created​

Token Expired​

Wrong Repository​

Security Best Practices​

Related Documentation​