Ensure an organization's identity is confirmed with a "Verified" badge

Verifying the organization's domains assures developers that a given domain is truly the official home of a public organization. Attackers can pretend to be an organization and steal information via a faked/spoofed domain; therefore, using a "Verified" badge instills more confidence and trust between developers and the open-source community.

Risk Level: medium
Platform: Github
Spectral Rule ID: GH-HRD036

REMEDIATION

Add a domain.

SaaS:

  1. Go to https://github.com/organizations/<YOUR_ORGANIZATION_NAME>/settings/domains`.
  2. Add a domain.

Read more: