+1, but I already have it enabled. On Thu, Jul 26, 2018 at 3:53 PM, David Davis <[email protected]> wrote:
> I got a notification from another organization I am a member of on > Github[0] that they are going to require Two Factor Authentication[1] in > response to recent news about some malicious code being shipped in a > compromised npm package[2]. > > We are vulnerable to having malicious code deployed to PyPI if one of our > Github accounts is compromised. Thus, I wonder if we should also require > that people with a commit bit have Two Factor Authentication enabled. > > Thoughts? > > [0] https://community.theforeman.org/t/require-2fa- > for-github-organization-members/10404 > [1] https://help.github.com/articles/requiring-two-factor- > authentication-in-your-organization/ > [2] https://www.theregister.co.uk/2018/07/12/npm_eslint/ > > David > > _______________________________________________ > Pulp-dev mailing list > [email protected] > https://www.redhat.com/mailman/listinfo/pulp-dev > >
_______________________________________________ Pulp-dev mailing list [email protected] https://www.redhat.com/mailman/listinfo/pulp-dev
