GitHub has added support for securing SSH Git operations using FIDO2 security keys for added protection from account takeover attempts.

GitHub, too, wants to move away from typical passwords and to more secure authentication standards. At present, users can now use a password, personal access token (PAT), or an SSH key to access ...

Here's a quick example of how to securely connect Git to GitHub with SSH KeyGen produced secure shell keys on both Windows and Linux.

In November 2020, GitHub disabled REST API password authentication and introduced FIDO2 security keys support to secure SSH Git operations in May 2021.

This change only impacts Git operations over SSH using RSA. Web traffic to GitHub.com and HTTPS Git operations are not affected.” Only GitHub.com’s RSA SSH key was replaced.

To connect Git operations securely to your GitLab repository, you will need to configure GitLab SSH keys both locally and remotely. Here's a quick example of how to do it.

If you need to work with GitHub, but don't have time to get up to speed with the git command line, Jack Wallen believes the GitHub Desktop app is the perfect tool for the job.