In an effort to enhance software supply chain security, GitHub introduced a mandatory two-factor authentication (2FA) requirement for its users in 2023, focusing on developers with the most critical impact on the ecosystem. This initiative led to a 95% opt-in rate among targeted users and a 54% increase in overall 2FA adoption on the platform. The rollout included extensive research and design to ensure a seamless user experience, resulting in a significant reduction in support tickets and improved account recovery processes. GitHub also witnessed a shift towards more secure authentication methods, such as passkeys, which rapidly gained popularity. The initiative inspired similar actions from other organizations like RubyGems, PyPI, and AWS, contributing to the broader goal of securing the software ecosystem. As GitHub continues to refine its security measures, it remains committed to balancing enhanced security with user accessibility, encouraging other platforms to implement similar 2FA requirements.