Mods

turbot/github_sherlock

GitHub
Overview
4Dashboards
34Controls
0Queries
0Variables
GitHub
Loading controls...
On This Page
Description
Usage
Plugins & Tables
SQL
Tags
Get Involved
Edit on GitHub
Discuss on Slack

Control: Two-factor authentication should be required for users in an organization

Description

Two-factor authentication makes it harder for unauthorized actors to access repositories and organizations.

Usage

Run the control in your terminal:

steampipe check github_sherlock.control.org_two_factor_required

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share github_sherlock.control.org_two_factor_required

Plugins & Tables

github_my_organization
GitHub plugin

SQL

select
  url as resource,
  case
    when two_factor_requirement_enabled is null then 'info'
    when two_factor_requirement_enabled then 'ok'
    else 'alarm'
  end as status,
  login || case
    when two_factor_requirement_enabled is null then ' 2FA requirement unverifiable'
    when (two_factor_requirement_enabled) :: bool then ' requires 2FA'
    else ' does not require 2FA'
  end || '.' as reason,
  login
from
  github_my_organization

Tags

category = Compliance
plugin = github
service = GitHub/Organization