-
Task
-
Resolution: Unresolved
-
Medium
-
None
-
None
-
None
The project MUST require two-factor authentication (2FA) for developers for changing a central repository or accessing sensitive data (such as private vulnerability reports). This 2FA mechanism MAY use mechanisms without cryptographic mechanisms such as SMS, though that is not recommended. [require_2FA]
Require 2fa justification