npm security updates v2.15.1 and v3.8.3 - "Due to a design flaw in the CLI, these bearer tokens were sent with every request made by the CLI for logged-in users, regardless of the destination of the request."

submitted by /u/grauenwolf to /r/programming
[link] [comments]