npm has a new access token format
npm access tokens will now follow the established format of GitHub authentication tokens as part of our work to create a more secure supply chain. Previously, the npm access tokens were created as a...
View Articlenpm CLI upgraded to version 8
Today, we are releasing version 8 of the npm CLI. A Semver-Major release of the CLI allows us to drop support for Node.js 10, making it easier for us to maintain npm through the LTS life cycle of...
View ArticleDeprecating non-audit-related advisory fetch endpoints for the npmjs.com...
On February 16, 2022, all non-audit-related npm Advisory APIs will be deprecated. Historically these undocumented APIs have been used to programmatically access advisory data. If you don’t use these...
View ArticleSecurity-focused improvements for npm
As part of our ongoing commitment to npm ecosystem security, and in advance of enforcing two-factor authentication for top packages maintainers, the npm team has been hard at work improving the...
View ArticleAll npm accounts are now enrolled in login verification
All npm accounts that do not have two-factor authentication (2FA) enabled will now receive an email with a one-time password (OTP) when authenticating through either the npmjs.com website or the npm...
View Articledeprecating the npm public roadmap
The npm Public Roadmap is being deprecated in favor of using the GitHub Public Roadmap to track feature launches for the npm Registry, CLI, and website. Launched in October of 2020, the original npm...
View Articlenpm recovery code user experience improvement
After setting up 2FA on npmjs.com recovery codes can now more easily be copied, printed, or saved by customers. The post npm recovery code user experience improvement appeared first on The GitHub Blog.
View ArticleStreamlined Organization and Package invitations
The invitation process for inviting collaborators on the npm registry has been streamlined and improved. Adding users to a package will now trigger an invitation email, and users will only be granted...
View ArticleSupport for CORS response headers
The following registry.npmjs.com endpoints will now serve CORS response headers. GET /package-name GET /package-name/-/package-name.tgz GET /package-name/version The post Support for CORS response...
View ArticleDownload data stored in your npm account by placing an export request
You can now place a support request for an export of your npm data. Navigate to npm support page. Select "I have an account and billing issue". Select "Data export" as the subtype Provide the...
View Article