GitHub Finally Puts a Human in the Loop: npm Staged Publishing Explained
npm packages no longer publish instantly. GitHub's staged publishing forces a 2FA-gated human approval before any version hits the registry — here's what it means and how to enable it.