"npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks"
TheHackerNews뉴스
GitHub has rolled out new controls for npm to improve the security of the software supply chain, giving maintainers the ability to explicitly approve a release prior to the packages becoming publicly available for installation.
출처: [The Hacker News](https://thehackernews.com/2026/05/npm-adds-2fa-gated-publishing-and.html)