Enforce MFA in GitHub Organization(s)
Use Case
- Incubating: expected
- Active: expected
- Retiring: expected
Description
Multi Factor Authentication (MFA) Enforced Across the Github Organization
Dashboard Inclusion
We use the field two_factor_requirement_enabled
from the GitHub Organization API to check if the project has enforced this policy. More information
Details
- Implementation Details: It is computed (details).
- C-SCRM: true
- Priority Group: P1
- Mitre: CWE-308
- Sources: OpenSSF SCM Best PracticesOpenSSF Best Practices Badge Gold Level [require_2FA]
- How To: Github Docs