|
|
|
|
|
|
by MeetingsBrowser
649 days ago
|
|
|
> They are my repos. GitHub is not forcing you to use 2FA to store your repos elsewhere. Just to interact with their website. > I should get to decide the appropriate level of security. People are really bad at deciding the appropriate level of security. GitHub hosts a lot of very important projects that have impact in the real world. Forcing people to use the bare minimum to keep that environment relatively secure is probably not a bad idea. That way when you set your password as "batman123" and are given commit access to some obscure project that is included as a dependency in 1000 other projects, your account is much less likely to be taken over as a means of pushing a malicious commit. |
|
|