Source Sign in
Wikimedia Toolforge · Open Source

Monitor and publish
your gadget scripts

GitHub / GitLab monitoring Wiki page monitoring Bot-based publishing

Track changes in GitHub and GitLab repositories, monitor any Wikimedia wiki page for revisions, and publish your scripts directly to the wiki using your own BotPassword credentials — with a full preview before every edit.

Sign in with Wikimedia Documentation

How it works

1
Connect a repository

Add any public GitHub or GitLab repository containing your gadget .js or .css files. Or paste a wiki page URL directly.

2
Detect changes automatically

SHA-based checks run hourly for repos. Wiki page revision IDs are checked every 30 minutes. No file content is stored.

3
Get notified

WikiScriptSyncBot posts a message on your Wikimedia talk page with a diff link when something changes.

4
Publish with one click

Add your BotPassword credentials once. Then preview the diff and publish from GitHub directly to the wiki — no copy-paste, no manual editing.

SHA-based detection

Git blob SHA comparison for repos. Revision ID comparison for wiki pages. Efficient, lightweight, nothing stored.

Talk-page notifications

WikiScriptSyncBot posts on your Wikimedia talk page with changed files and diff links. Configurable cooldown.

Preview before publish

Side-by-side diff of new content vs current wiki page. You see exactly what will change before clicking Confirm.

Your credentials, your control

BotPassword scope is set by you on Special:BotPasswords. The tool only edits what your bot is allowed to edit.

Multi-wiki support

Map one GitHub file to multiple Wikimedia wikis. Works with Wikipedia, Meta-Wiki, Commons, Wikitech, and more.

Full publish audit log

Every publish attempt is recorded: date, file, commit SHA, wiki diff link, and status. Permanent, user-visible history.

Security & Transparency
AES-256 encrypted credentialsBotPasswords are encrypted with Fernet (AES-256) before storage. The encryption key lives only in the Toolforge environment, never in the source code or database.
Plaintext never persistedYour bot password is decrypted only at the moment of publishing, used once in memory, then discarded. It is never logged, never returned to the browser.
Isolated per-user sessionsEach publish uses a fresh HTTP session. One publish at a time per account. No session state is shared between users.
Minimum permissions modelYou create the BotPassword yourself with only the permissions you choose. The tool never requests sitewide JS/CSS editing rights.
Manual publish onlyNothing is ever published automatically. Every publish requires explicit preview and confirmation from the authenticated user.
Open sourceAll source code is publicly auditable at GitLab under the Wikimedia Toolforge namespace.
Ready to stop doing this manually?

Free. Runs on Wikimedia Toolforge. Open source under MIT license.

Sign in with Wikimedia