Security News npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks TheHackerNews Daniel Bender 23 May 2026 Share GitHub added npm staged publishing with mandatory 2FA approval to reduce software supply chain attack risks.
