We recommend creating a dedicated user service account for Garden Cloud, enabling 2FA authentication for that user and granting it access to only the repositories that Garden Cloud should have access to. This includes repositories that are referenced as remote sources in your Garden projects. Please make sure to add the user in the role of maintainer to the repositories and/or groups you want to use with Garden Cloud. The maintainer role is necessary, because Garden Cloud needs to create a webhook on each repository added in Garden Cloud.