You are receiving this because a known security researcher submitted proof of finding credentials for your npm user account on the internet.

In order to prevent unauthorized access, we've changed the password to your account and invalidated all of your active npm tokens.

Please click on the following link, or paste this into your browser to reset your password:

• https://www.npmjs.com/forgot

When you reset your password please do not set it back to the old value.

We have no reason to believe that your account was compromised, but cannot be certain of this. This reset is preemptive, to prevent future compromise.

If you have questions:

1. You can reply to this message or email support@npmjs.com.
2. You can also read more about this undertaking in our blog post.

Npm loves you.