If we reference a pvt git repository in npm package.json
"fa_nodejs_dms_core": "git+https://{token}-oauth-basic@github.com/{org}/{repo}.git"
and run npm install what git does is to make a entry in my ~/.git-credentials with the new token and overrides my previous token whenever we now do push/pull.
This causes me to delete all credentials and re save them after npm install
We know git persist credentials whenever we clone a git repo by token, is there a way to prevent that? This causes a lot issues with other team members because of above token (from npm dependency) set as default.
