Passkeys are generally available

Passkeys have been introduced as a new, phishing-resistant sign-in method on GitHub, aimed at enhancing account protection by reducing reliance on traditional passwords and other easily phishable authentication methods. Since their beta launch, passkeys have been adopted by numerous developers, and are now available to all GitHub users as part of the platform's ongoing commitment to securing all contributors with two-factor authentication (2FA) by the end of 2023. The implementation of passkeys, however, faced challenges due to varying support across different operating systems and browsers, notably impacting Linux and Firefox users. To address this, GitHub enabled cross-device registration, allowing users to register a passkey on a mobile device while using a desktop. Additionally, GitHub has made it easier for users to upgrade compatible security keys to passkeys, despite some technical hurdles involving browser, OS, and hardware key combinations. As the industry adopts broader support for passkeys, with companies like Apple, Google, and Microsoft enhancing their systems to facilitate cross-device and cross-ecosystem usage, GitHub continues to refine its approach by incrementally prompting users to register passkeys and seeking user feedback for ongoing improvements.