| ▲ | cxr 4 hours ago | |
NPM does not require two-factor authentication. If two-factor authentication is enabled for your account and you wish to disable it, this explains how to do that if allowed by your organization: <https://docs.npmjs.com/configuring-two-factor-authentication...> | ||
| ▲ | bakkoting 42 minutes ago | parent [-] | |
It doesn't require 2FA in general, but it does for people with publish rights for popular packages, which covers most or all of the recent security incidents. https://github.blog/changelog/2022-11-01-high-impact-package... | ||