npm Use for npm registry/account tasks: , package availability, package reservation, publish, org checks, and auth debugging. Auth - Use first for secret rules. - Never run directly in the shell tool. - Known npm 1Password item: on . - The item may contain username/password/TOTP, not a stored npm token. That is fine. - Explicit user requests to , , or are consent to complete npm auth, including a desktop 1Password sign-in/unlock prompt for the known item when service-account access cannot read it. Do not stop to ask for separate permission just because the npm auth prompt is expected. - Still…