All GitHub users can now log in without a password but with a passkey.

In July, GitHub released a beta version of login passkeys. According to the platform, tens of thousands of developers have now taken advantage of the opportunity. Due to this success, all users can now log in through the system and secure their account.

Better security

This is the next step in GitHub’s plan for better overall and individual security. By the end of this year, everyone on the platform should have at least 2FA to secure an account.

Users can add one or more passkeys to their account security settings. GitHub provides an online document that explains everything step by step.

Tinker with the system

Since not every system or platform supports passkeys equally well (e.g. Linux or Firefox), GitHub allows registering passkeys on different devices. So you can do this for your phone from your desktop computer.

Accounts that already have a hardware security key on GitHub can now easily upgrade it to a master key. Anyone who wants to can Update Click if it is available (not every security key is compatible yet).

Thanks to 2FA, you should still be able to log in even if a system is (temporarily) unavailable. Therefore, GitHub recommends that users register a passkey when working with a compatible device that has not yet used a passkey.

GitHub recognizes that they couldn’t implement the concept of passkeys on their own. The platform therefore not only recognizes the steps that the parent company Microsoft has already taken in this area, but also those of Apple and Google.