git-ha-ppens

Git version control for Home Assistant — right from your UI.

One wrong YAML edit can break your entire Home Assistant setup — and without version control there's no way to see what changed or roll back.
git-ha-ppens brings native git directly into Home Assistant. Commit, push, pull, and monitor your configuration history without leaving the UI or touching the command line.

---

📑 Table of Contents

• ✨ Features
• 📥 Installation
• ⚙️ Configuration
• 🤖 AI Commit-Messages
• 🚀 Services
• 📊 Sensors & Entities
• ⚡ Events
• 💡 Example Automations
• 🛡️ Auto-Generated .gitignore
• 🔧 Troubleshooting
• 🤝 Contributing
• 📄 License

---

✨ Features

🤖 Automatic Version Control

• 👁️ File watcher detects config changes in real time (powered by watchdog)
• ⏱️ Configurable debounce interval (default 5 min) to batch changes and avoid excessive commits
• 📝 Auto-generated commit messages listing the changed files

🔧 Manual Control

• 5 services callable from automations, scripts, or Developer Tools:
  • git_ha_ppens.commit — create a commit with an optional custom message
  • git_ha_ppens.push — push commits to the configured remote
  • git_ha_ppens.pull — pull from remote (auto-backs up uncommitted changes first)
  • git_ha_ppens.sync — commit + push in one step
  • git_ha_ppens.diff — get the current diff of uncommitted changes

🛡️ Security & Secrets

• 🚫 Automatic .gitignore for secrets.yaml, .storage/, databases, logs, and more
• 🔍 Secret detection scans tracked files for API keys, tokens, and passwords
• 🔔 Fires a git_ha_ppens_secret_detected event when potential secrets are found

☁️ Remote Support

• Push to GitHub, GitLab, Bitbucket, or any git remote
• HTTPS with personal access token or SSH key authentication
• Optional auto-push after every commit and auto-pull when remote has new commits

📊 Visibility & Monitoring

• 5 sensors + 1 binary sensor for real-time git status
• Events for commit, push, pull, errors, and secret detection
• Build dashboards, notifications, and automations around your config history

🩺 Diagnostics

• Full diagnostics support via Settings → Devices & Services → git-ha-ppens → Diagnostics
• Sensitive values are automatically redacted

---

📥 Installation

Prerequisites

Requirements:

• 🏠 Home Assistant 2024.1 or later
• 🔧 Git installed on the host system

HA OS users: Git may not be available by default. You may need a dedicated add-on or container with git pre-installed.

HACS (Recommended)

1. Make sure HACS is installed
2. Click the badge above — or go to HACS → Integrations → ⋮ → Custom repositories and add:

   https://github.com/manuveli/git-ha-ppens
   

   with category Integration
3. Search for git-ha-ppens and click Install
4. Restart Home Assistant
5. Go to Settings → Devices & Services → Add Integration and search for git-ha-ppens

Manual Installation

1. Download the latest release from the Releases page
2. Copy the custom_components/git_ha_ppens folder into your config/custom_components/ directory
3. Restart Home Assistant
4. Go to Settings → Devices & Services → Add Integration and search for git-ha-ppens

---

⚙️ Configuration

The integration is configured entirely through the UI. The setup flow has 3 steps:

Step 1: 📁 Repository Settings

Option	Description	Default
repo_path	Path to the HA configuration directory	/config
git_user	Git author name for commits	(required)
git_email	Git author email for commits	(required)

Step 2: 🔄 Auto-Commit Settings

Option	Description	Default
auto_commit	Automatically commit when files change	true
auto_push	Push to remote after each auto-commit	true
auto_pull	Pull new commits from remote automatically	false
commit_interval	Debounce interval in seconds (30–86400)	300
scan_interval	Status polling interval in seconds (10–3600)	30

Step 3: ☁️ Remote Repository (optional)

Option	Description	Default
remote_url	Git remote URL (HTTPS or SSH)	(empty)
auth_method	none / token / ssh	none
auth_token	Personal access token (for HTTPS)	(empty)
ssh_key_path	Path to SSH private key file	(empty)

💡 Tip: All settings can be changed later via Settings → Devices & Services → git-ha-ppens → Configure. The options menu provides two sections: General Settings (all configuration options above) and Edit .gitignore (a built-in editor for customizing ignored files).

---

🤖 AI Commit-Messages

By default, git-ha-ppens generates simple commit messages listing the changed files — for example Auto: config.yaml changed or Auto: 3 files changed. This works great out of the box and does not require any AI setup.

If you want more descriptive, context-aware commit messages, you can optionally enable AI-generated commit messages. The integration uses Home Assistant's built-in Conversation service to analyze the git diff and generate a meaningful commit message — powered by whichever AI agent you have configured in HA (OpenAI, Google Generative AI, Ollama, etc.).

✅ Enabling AI Commit-Messages

AI commit messages can be enabled during the initial setup (Step 2: Auto-Commit Settings) or at any time later via Settings → Devices & Services → git-ha-ppens → Configure.

Option	Description	Default
ai_commit_messages	Enable AI-generated commit messages	false
ai_agent_id	Entity ID of the conversation agent to use (e.g. conversation.chatgpt)	(empty)

💡 Tip: Leave ai_agent_id empty to use Home Assistant's default conversation agent. If you have multiple AI agents configured, you can specify exactly which one should generate your commit messages.

🛡️ Fallback Behavior

AI commit messages are designed to never interfere with normal operation:

• 🔒 If AI is disabled (default), the integration works exactly as before — no AI code is executed at all
• ⚠️ If AI is enabled but the conversation agent is unavailable or returns an error, the integration silently falls back to the standard auto-generated message
• ✅ Commits are never blocked by AI failures — your configuration changes are always saved regardless of AI availability

📌 No AI? No problem. The integration is fully functional without any AI agent configured. The AI feature is a purely optional enhancement.

---

🚀 Services

Service	Description	Parameters
git_ha_ppens.commit	Stage all changes and create a commit	message (optional) — custom commit message
git_ha_ppens.push	Push commits to the configured remote	—
git_ha_ppens.pull	Pull from remote (backs up uncommitted changes first)	—
git_ha_ppens.sync	Commit + push in one step	message (optional) — custom commit message
git_ha_ppens.diff	Get the current diff of uncommitted changes	— (returns response data)

Example: Call sync from an automation

action:
  - service: git_ha_ppens.sync
    data:
      message: "Manual sync from automation"

Example: Get the current diff

The diff service returns response data containing the diff content and a status summary. Use it in scripts or automations to inspect changes before committing.

action:
  - service: git_ha_ppens.diff
    response_variable: git_diff

---

📊 Sensors & Entities

Sensors

Entity	Description	Attributes
sensor.git_ha_ppens_last_commit	Last commit hash (short)	message, author, full_hash
sensor.git_ha_ppens_last_commit_time	Timestamp of last commit	—
sensor.git_ha_ppens_uncommitted_changes	Number of changed files	changed_files, untracked_files, staged_files
sensor.git_ha_ppens_branch	Current branch name	—
sensor.git_ha_ppens_remote_status	Sync status (e.g. "in sync", "ahead 3")	ahead, behind, remote_configured, has_upstream, total_commits

Binary Sensors

Entity	Description	Device Class
binary_sensor.git_ha_ppens_dirty	on when there are uncommitted changes	problem

---

⚡ Events

Use these events as automation triggers to build notifications, dashboards, or recovery workflows.

Event	Fired when	Data
git_ha_ppens_commit	A commit is created	hash, message, author
git_ha_ppens_push	Commits are pushed	commits_pushed
git_ha_ppens_pull	Commits are pulled	commits_pulled
git_ha_ppens_error	A git operation fails	operation, error
git_ha_ppens_secret_detected	Potential secrets found in tracked files	findings, count

---

💡 Example Automations

⬆️ Auto-push after every commit

automation:
  - alias: "Git: Push after commit"
    trigger:
      - platform: state
        entity_id: sensor.git_ha_ppens_last_commit
    action:
      - service: git_ha_ppens.push

🔔 Notify when changes are uncommitted for over an hour

automation:
  - alias: "Git: Remind to commit"
    trigger:
      - platform: state
        entity_id: binary_sensor.git_ha_ppens_dirty
        to: "on"
        for: "01:00:00"
    action:
      - service: notify.mobile_app
        data:
          title: "git-ha-ppens"
          message: "You have uncommitted configuration changes."

📅 Weekly configuration snapshot

automation:
  - alias: "Git: Weekly snapshot"
    trigger:
      - platform: time
        at: "02:00:00"
    condition:
      - condition: time
        weekday:
          - sun
    action:
      - service: git_ha_ppens.commit
        data:
          message: "Weekly config snapshot"

🚨 Alert on secret detection

automation:
  - alias: "Git: Secret detected alert"
    trigger:
      - platform: event
        event_type: git_ha_ppens_secret_detected
    action:
      - service: notify.mobile_app
        data:
          title: "⚠️ git-ha-ppens Security Alert"
          message: "Found {{ trigger.event.data.count }} potential secret(s) in tracked files!"

---

🛡️ Auto-Generated .gitignore

The integration automatically creates or updates .gitignore with sensible defaults for Home Assistant.

You can customize the .gitignore entries at any time via Settings → Devices & Services → git-ha-ppens → Configure → Edit .gitignore. The built-in editor lets you add, remove, or modify entries directly from the UI.

Category	Entries
Sensitive files	secrets.yaml, .storage/, .cloud/, tls/, .ssh/, .jwt_secret, SERVICE_ACCOUNT.json
Databases & logs	*.db, *.db-shm, *.db-wal, *.log, home-assistant_v2.db, home-assistant.log*, zigbee.db, OZW_Log.txt
System files	.HA_VERSION, known_devices.yaml, ip_bans.yaml
Python cache	__pycache__/, *.pyc, *.pyo
Runtime & other	.git/, deps/, tts/, .venv/, .cache/, .claude/, custom_components/, www/snapshots/, .ha_run.lock, .exports, .timeline, .vacuum
Zigbee2MQTT	zigbee2mqtt/state.json, zigbee2mqtt/coordinator_backup.json
Editor swap files	*.swp, *.swo

📌 Existing .gitignore entries are preserved — only missing defaults are appended.

---

🔧 Troubleshooting

❌ "Git is not installed"

Home Assistant OS does not include git by default. Options:

• Use a container/add-on that includes git
• Install git via the SSH & Web Terminal add-on: apk add git

❌ Push fails with "permission denied" or "403"

• Verify your personal access token has the repo scope
• Check that the remote URL is correct and the repository exists
• For SSH: ensure the key path is valid and the key is added to your git provider

❌ "Remote origin is not configured"

Go to Settings → Devices & Services → git-ha-ppens → Configure and set a remote URL in the options flow.

❌ Auto-commit not triggering

• Verify auto_commit is enabled in the integration options
• Check that the changed files are not in .gitignore or the watcher's ignore patterns (.git, .storage, .ssh, __pycache__, *.db, *.log, etc.)
• Review HA logs for file watcher errors

❌ "Secrets detected" warning

• Review the flagged files and move sensitive values to secrets.yaml
• Ensure secrets.yaml is listed in .gitignore (it is by default)
• The detection uses regex patterns for common key formats (API keys, tokens, passwords)

---

🤝 Contributing

Contributions are welcome! Whether it's bug reports, feature requests, or pull requests — feel free to get involved.

• 🐛 Bug reports & feature requests: GitHub Issues
• 🔀 Pull requests: Fork, create a branch, and submit a PR

Development Setup

1. Clone this repository
2. Symlink or copy custom_components/git_ha_ppens into your HA dev instance's custom_components/ directory
3. Restart Home Assistant
4. Follow Home Assistant's coding conventions (ruff, mypy)

---

Star History

---

📄 License

This project is licensed under the MIT License.

---

Made with ❤️ for the Home Assistant community
github.com/manuveli/git-ha-ppens