HomeNewsSecurityNPM fixes private package names leak, serious authorization bug The largest software registry of Node.js packages, npm, has disclosed multiple security flaws that were identified and remedied recently. The first flaw concerns leak of names of private npm packages on the npmjs.com's 'replica' serverâfeeds from which are consumed by third-party services. Whereas, the second flaw allo
{{#tags}}- {{label}}
{{/tags}}