GitHub announced that it will require all active developers to use two-factor authentication (2FA). More than 85 million developers around the world must enable this option in their accounts by the end of 2023.
GitHub explained that this applies to all developers who do the following actions and services with the code on the platform: commit, Actions, Pull Requests (open, merge) and publish packages.
Developers can use one or more two-factor authentication options, including physical security keys, virtual security keys on smartphones and laptops, or applications that use the TOTP (Time-based one-time password) algorithm for one-time password-based authentication.