[Brett]
... Please make sure you have a unique password for your GitHub account and that you have 2FA/MFA turned on (I honestly think we should start requiring this ...
I use 2FA on sites that cater to my reality ;-) That is, I don't have a smartphone, or a cell phone of any kind, or any device capable of scanning QR codes, or, as far as I know, capable of receiving SMS msgs (unless there's some way of tricking a desktop PC into doing so).
In its infinite wisdom, the US Social Security system started requiring stuff like the above for recipients to log in to their SS web accounts. Which was a disaster. While they should have known this in advance, I'm not the only US senior content to live with a desktop PC and a landline ;-)
SS soon changed to send a "security code" to your account's registered email address instead. That works fine. Several other sites do the same. My bank has an automated system that calls my (landline) phone number, and a computer-generated voice tells me a one-time security code for me to type in. Also fine.
But reading the Github 2FA docs, they don't _appear_ to offer any method I could use. Things "I have" are a desktop PC, an email address, and a landline phone number. That's it.