Incident Report: June 8, 2022 - npm Security Update

Updated over a week ago


At 9am on Monday 6th June 2022, Trint was notified by our third-party provider that some of our data may have been leaked in a recent hack that occurred on their side.

The hack involved gaining access to user tokens, which allowed the hacker to access a specific set files on their server.

Details of the investigation of the issue can be found here:

After conducting a thorough investigation, Trint can confirm that none of our repositories were accessed and no user data was leaked.

As a precaution, we have completed a rotation of our security keys to ensure our security going forward.

We continue to be committed to ensuring the privacy and security of all data storage for our users.