🚀Launch Week 08, April 14th - 18th, 2025🚀
Powerpipe Hub 
Hub
Mods
turbot/tailpipe-mod-github-audit-log-detections
Overview
3Dashboards
17Benchmarks
24Queries
1Variables
GitHub

Query: organization_two_factor_authentication_disabled

Usage

powerpipe query github_audit_log_detections.query.organization_two_factor_authentication_disabled

Tailpipe Tables

github_audit_log
GitHub plugin

Tags

category = Detections
folder = Organization
plugin = github
service = GitHub/Organization

SQL

select
  tp_timestamp as timestamp,
action as operation,
concat('https://github.com/', org) as resource,
actor,
tp_source_ip as source_ip,
tp_index as organization,
split_part(repo, '/', 2) as repository,
tp_id as source_id,
*
exclude (actor, timestamp)


from
  github_audit_log
where
  action = 'org.disable_two_factor_requirement'
order by
  tp_timestamp desc;

Detections

The query is being used by the following detections: