Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File. The CLI supports URLs like
<protocol>://[<user>[:<password>]@]<hostname>[:<port>][:][/]<path>. The password value is not redacted and is printed to stdout and also to any generated log files.
npm to version 6.14.6 or higher.