Exposure of Sensitive Information to an Unauthorized Actor in NPM follow-redirects prior to 1.14.8.
The MITRE CVE dictionary describes this issue as:
Exposure of Sensitive Information to an Unauthorized Actor in NPM follow-redirects prior to 1.14.8.