Results 1 to 3 of 3

Thread: NPM registry insecure login!?!?!

  1. #1
    Sencha Premium User
    Join Date
    Sep 2008

    Default NPM registry insecure login!?!?!

    What in the world is going on here??? I pointed my browser over to, go to enter my credentials, to which Firefox alerts me that my credentials are about to be sent plain text.

    Thinking FF is just paranoid because it loaded some non-https scripts (shame on you btw), I opened Chrome and watched the dev tools while I logged in. Holy mess, it sent my credentials plain-text over HTTP!!

    Not that you would want to make your "open" tools available to a wide range of developers via mind you. That would make life too easy, but hey - keep pushing me away.

  2. #2
    Sencha Premium Member matei's Avatar
    Join Date
    Jun 2008


    bug registered here:
    but still not fixed

  3. #3


    Almost one year and this bug is not fixed

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts