upvote

points

by koolba18 hours ago |
comments
upvoteby bakugo18 hours ago|
[-]
Apparently it's possible to create access tokens that bypass 2FA. Might've been this.

https://docs.npmjs.com/creating-and-viewing-access-tokens

reply
upvoteby stingraycharles18 hours ago|
parent|
[-]
Correct, for CI/CD systems that want to push releases.
reply
upvoteby masklinn17 hours ago|
parent|
[-]
If GitHub, gitlab, or circleci, trusted publishing is available. No access token whatsoever.
reply