As of yesterday, the next time you login to Tidelift via GitHub, you’ll be prompted for a new OAuth permission, “Profile information (read-only)”. This gives us a little more information than the existing “Email addresses (read-only)” permission :
In the near-future, we’d like to start detecting GitHub 2FA status for lifters, and this is the only way we can know through their API.
Other profile information we’ll be able to access includes: counts of private gists, private repositories, owned private repositories, and collaborators; GitHub disk usage; and your GitHub plan.
More info on GitHub’s OAuth scopes can be found here.