Skip to content

Commit 02f41ed

Browse files
nellshamrellehuss
nellshamrell
authored and
ehuss
committed
updates with text around GitHub apps and OAuth
Signed-off-by: Nell Shamrell <nellshamrell@gmail.com>
1 parent 43a015d commit 02f41ed

File tree

1 file changed

+6
-1
lines changed

1 file changed

+6
-1
lines changed

text/0000-github-access-policy.md

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,13 +20,18 @@ Access control for the [Rust-Lang GitHub Organization](https://www.github.com/ru
2020
This policy applies to both the [Rust-Lang GitHub Organization](https://github.com/rust-lang/) and all repositories within that organization.
2121

2222
### Rust-Lang Organization
23+
2324
Membership in the Rust-Lang GitHub organization is managed by the organization owners.
2425

2526
All members of the [Core Team](https://github.com/rust-lang/team/blob/master/teams/core.toml) have the right to be organization owners.
2627

2728
Selected members of the [Infrastructure Team](https://github.com/rust-lang/team/blob/master/teams/infra.toml) can also be organization owners if their work requires it.
2829

29-
Owners should use a separate account from their main GitHub account dedicated to managing the organization. This account may not be used to commit code and must have 2FA enabled.
30+
Owners should use a separate account from their main GitHub account dedicated to managing the organization. The reason for this is many GitHub users use their account with other [GitHub apps](https://developer.github.com/apps/about-apps/#about-github-apps) (the risk is even greater with [OAuth apps](https://developer.github.com/apps/about-apps/#about-oauth-apps)). It is extremely difficult for a user to ensure their GitHub account has not been compromised - as shown in this [threat model](https://github.com/mozilla-services/GitHub-Audit/blob/master/docs/threat.md). As a result of this, the separate owner account may not be used with any OAuth or GitHub applications and it may not be used to commit code. The intent is to reduce the risk of a compromise of an account with full owner permissions to all repositories in the Rust-Lang org.
31+
32+
If a non-owner account has extensive permissions in the Rust-Lang org, we recommend using GitHub apps and OAuth apps with caution.
33+
34+
All GitHub accounts used to interact with the Rust-Lang GitHub organization (owner or non-owner) must have 2FA enabled.
3035

3136
### Rust-Lang Repositories
3237

0 commit comments

Comments
 (0)