1. Critical Hardcoded Secret Exposed in Widely Used 'registry-auth-token' NPM Dependency
A high-severity security vulnerability has been exposed within the `registry-auth-token` NPM package, a critical dependency for managing authentication tokens in the Node.js ecosystem. The flaw is a hardcoded, non-cryptographic secret embedded directly in the package's source code, posing a significant and immediate ri...