So is it just a “long password” that can be stored in e.g. Firefox password mgr? Or if it is stored in Windows credential mgr, how to transport to Linux?

So for clarification can I multiple active PATs for the same Github user?

PS when does password access go away?

David

So is it just a “long password” that can be stored in e.g. Firefox password mgr?

Pretty much, yes.

So for clarification can I multiple active PATs for the same Github user?

Yes. And if you use them for separate purposes you should, to minimize access rights for each application.

PS when does password access go away?

It already has: Git password authentication is shutting down | GitHub Changelog You still need your password for the website.

Fwiw, while a PAT appears as a “long password”, it’s a token that’s a proxy for some portion of your credentials and this allows you to add restrictions regarding how it can be used.

At a basic restriction, it shouldn’t be possible to log into the web site github.com with this password.

But, you could also restrict it to only perform some even more limited set of tasks.

You could create a PAT that can’t access your private github repositories – it wouldn’t be terribly useful for git, but you could use it with gh.