From 73ca818463e2a7949b3265590cc07c6c322788ec Mon Sep 17 00:00:00 2001
From: Andrea Vos <andrea@avris.it>
Date: Sun, 13 Nov 2022 11:03:19 +0100
Subject: [PATCH] deprecate twitter login

---
 locale/en/blog/twitter-login-deprecated.md | 20 ++++++++++++++++++++
 src/socialProviders.js                     |  1 +
 2 files changed, 21 insertions(+)
 create mode 100644 locale/en/blog/twitter-login-deprecated.md

diff --git a/locale/en/blog/twitter-login-deprecated.md b/locale/en/blog/twitter-login-deprecated.md
new file mode 100644
index 000000000..8702f5ed5
--- /dev/null
+++ b/locale/en/blog/twitter-login-deprecated.md
@@ -0,0 +1,20 @@
+# We don't recommend using Twitter login
+
+<small>2022-11-13 | [@andrea](/@andrea)</small>
+
+We've always been [delegating user authentication](https://avris.it/blog/passwords-are-passé)
+to companies and open-source communities that have better resources than us to handle security concerns,
+like email providers (login via email confirmation code) and social media websites (login with OAuth).
+
+Unfortunately, it seems that Twitter might not be a company whose level of security should be trusted anymore.
+Their recent layoffs and resignations have left them with vastly reduced staff, including security stuff.
+Twitter's political significance makes it particularly vulnerable to hacker attacks, especially now
+when the company seems to be struggling with internal chaos.
+
+**We strongly recommend setting up a different login method
+and [disconnecting the PronounsPage app from Twitter](https://twitter.com/settings/connected_apps)**.
+
+[comment]: <> (https://twitter.com/ihearthestia/status/1590888585825521665)
+[comment]: <> (https://twitter.com/iteamon/status/1590736948540284928)
+[comment]: <> (https://twitter.com/TCBullfrog/status/1590866499862147073)
+[comment]: <> (https://twitter.com/zsoltsandor/status/1590836099798413312)
diff --git a/src/socialProviders.js b/src/socialProviders.js
index 22fa3e09d..f3e82a5b2 100644
--- a/src/socialProviders.js
+++ b/src/socialProviders.js
@@ -19,6 +19,7 @@ export const socialProviders = {
         linkRegex: (p) => `^https?://(?:www.)?twitter.com/${p.name}/?$`,
         redirectViaHome: true,
         avatars: true,
+        deprecated: 'https://en.pronouns.page/blog/twitter-login-deprecated',
     },
     discord: {
         name: 'Discord',