The npm blog has been discontinued. Updates from the npm team are now published on the GitHub Blog and the GitHub Changelog. In the next few blog posts Ill be sharing previews of an API that the npm security team has been developing. Its working title has been the npm Insights API and were going to use it to get the information that we have available to us into your hands. The first part of the API is the PublicationInfo schema. This GraphQL allows us to see some important pieces of information about the publication context of a particular package: whether the package was published with 2FA enabled.”]
Source: https://blog.npmjs.org/post/188234999089/new-security-insights-api-sneak-peek