Server-to-server requests
GitHub Apps making server-to-server requests use the installation's minimum rate limit of 5,000 requests per hour. Organization installations with more than 20 users receive another 50 requests per hour for each user. Installations that have more than 20 repositories receive another 50 requests per hour for each repository. The maximum rate limit for an installation is 12,500 requests per hour.
User-to-server requests
非推奨の注意: GitHubは、APIのパスワード認証を廃止します。 You must now authenticate to the GitHub API with an API token, such as an OAuth access token, GitHub App installation access token, or personal access token, depending on what you need to do with the token. For more information, see the blog post.
Authenticating to the API using a password is currently available and not yet deprecated in GitHub Enterprise Server. GitHubは、この機能のサポートの削除に先立って、非推奨化を告知し、通知を行います。
GitHub Apps can also act on behalf of a user, making user-to-server requests.
User-to-server requests are rate limited at 5,000 requests per hour and per authenticated user. All OAuth applications authorized by that user, personal access tokens owned by that user, and requests authenticated with that user's username and password share the same quota of 5,000 requests per hour for that user.
For more detailed information about rate limits, see "Rate limiting" for REST API and "Resource limitations" for GraphQL API.