Hello! I have a custom package that I'd like to store on a private GitHub repo. Our employees would add this package to their projects, using the "Add package from git url" option in the Package Manager. However, I'm confused. It looks like anyone with the github url can install your package into their unity project - whether they have your github password or not. For legal reasons, we need to be able to control who can access our code. Is there a way to force users to enter your github password to download a package from a private repo? If not, isn't this a pretty big security loophole? Thank you for any help or advice!