Following our recent post on “Safeguards and Backups for GitHub Organizations”, nearly one month ago we went one step further and made two-factor authentication (2FA) required for all members and outside collaborators of our main organization, ropensci.
It was a timely decision as GitHub since then announced it will require all users who contribute code on GitHub.com to enable one or more forms of two-factor authentication (2FA) by the end of 2023.
Here is how (and why) we went about it.
This is a companion discussion topic for the original entry at https://ropensci.org/blog/2022/05/16/requiring-2fa-for-the-ropensci-github-organization/