guthub expanded application in the NPM repository Mandatory two-factor authentication , which will now be applied to the accounts of developers that accompany more than 1 million downloads in A week or used as a dependence in more than 500 packages. Previously, two-factor authentication was mandatory only for the accompanying 500 most popular NPM packages (by the number of dependent packages).
accompanying significant packages will now be able to perform related to changes in the operation with the repository only after inclusion of two -factor authentication, requiring confirming the entrance using disposable passwords (TOTP) generated by such applications as Authy, Google Authenticator, or hardware keys and biometric scanners supporting the Webauth protocol.