Yeah that makes sense. We've started to switch more towards things like Rescuetime for that information, since the github auth options are very all or nothing.
I wish there were more granular scopes so we could use just the metadata or timestamps, which is all we care about and not nearly as sensitive.
I had only thought about this for Twitter before, but it would be nice if a trustworthy third party could act as a mediator between some of these APIs to give developers the ability to request less information or for users to restrict/filter what personal data is given away. That would help with this github all-or-nothing problem.
I wish there were more granular scopes so we could use just the metadata or timestamps, which is all we care about and not nearly as sensitive.