Secure your GitHub account with GitHub Mobile 2FA

GitHub is enhancing its platform security by promoting the adoption of two-factor authentication (2FA) among developers, introducing GitHub Mobile for iOS and Android as a new 2FA method. This new feature complements existing authentication options like security keys, WebAuthn, one-time passcodes, and SMS, providing a seamless experience integrated into GitHub services. GitHub Mobile 2FA, available in the App Store and Play Store, requires users to have 2FA configured with SMS or a time-based one-time password app. Upon setup, users receive push notifications for login approvals on GitHub.com, enabling immediate access upon approval. While security keys remain the strongest form of account protection, GitHub's new mobile feature aims to simplify 2FA adoption, contributing to securing the broader supply chain. The company is committed to further investments in security, enhancing capabilities for both npm and GitHub users.