> ## Documentation Index > Fetch the complete documentation index at: https://docs.backline.ai/llms.txt > Use this file to discover all available pages before exploring further. # npm Integration > Monitor npm packages for vulnerabilities ## Overview Use this integration to grant Backline read-only access to your private NPM registry. This allows Backline to work with repositories that depend on packages hosted there. ## What You Can Do With the npm integration, Backline can: * Access private npm packages required by your repositories * Analyze dependencies from your private registry * Work with repositories that depend on packages hosted in your private registry ## Prerequisites Before connecting npm, ensure you have: * A private npm registry * Ability to generate read-only access tokens for your registry * The registry URL for your npm instance ## Connecting npm In your npm registry, create a read-only access token. This token will allow Backline to access your private packages without modification permissions. Get the URL for your private npm registry (e.g., [https://registry.npmjs.org/](https://registry.npmjs.org/)). In Backline, go to the Integration Hub from the main menu. Find and click on the npm integration card. Provide your registry details: * **Registry Token**: Your read-only access token * **Registry URL**: The URL of your private npm registry Click **Connect** to complete the integration setup. ## After Connection Once npm is connected, Backline will: 1. Use the provided credentials to access your private registry 2. Retrieve packages needed for dependency analysis in your repositories 3. Analyze dependencies from both public and private npm packages The read-only token ensures Backline can only access packages without making any modifications to your registry. ## Managing the Integration ### Updating Settings To modify npm registry credentials: 1. Open the Integration Hub 2. Click **Configure** on the npm integration card 3. Update the Registry Token or Registry URL as needed 4. Save your changes