Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[tycho-dev] Enforce 2FA for comiters on github?

See below the message from Mikaël Barbero regarding 2FA.

I think 2FA is a key concept in today security concepts and therefore like to suggest to enforce 2FA for m2e + tycho.

If no one has a strong reason to not do that (please raise concerns no later than 12. Feb 2023), I'll open tickets in the HelpDesk to enable this.


Am 01.02.23 um 18:30 schrieb Mikael Barbero via
Dear committers,

I wanted to share some positive news regarding security posture of our 1000+ Github repositories. During the course 2022Q4, the number of committers that have 2FA (two-factor authentication) activated on GitHub has increased by 8.8%.

This means that *63.8% of all Eclipse committers on GitHub are now using 2FA*. It helps protecting your codebase and prevent unauthorized access. Also, approximately 31% of the GitHub organizations managed by the Eclipse Foundation have 90% or more of their committers using two-factor authentication (2FA), which is an 18% increase from the previous quarter.

If you did not do it yet, we encourage you to activate 2FA today, on all platforms where it’s available. There are plenty of reasons to do so <>. See below links to documentation how to activate 2FA for code under the stewardship of the Eclipse Foundation:

For projects hosted at GitHub <> For projects hosted at <>

*Finally, if you are willing to make 2FA mandatory for all committers on your project, feel free to **open a ticket at our help desk* <>*, and we will work with you to make it happen.*
Thanks again!

*Mikaël Barbero *
*Head of Security | Eclipse Foundation*
🐦 @mikbarbero
📅 Book an appointment <>
Eclipse Foundation <>: The Platform for Open Innovation and Collaboration

_______________________________________________ mailing list
To unsubscribe from this list, visit

Back to the top