@amplitude/analytics-browser

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

curtisbliukelson.warnersdk.devdaniel-graham-amplitudejjwang123

Keywords

analyticsamplitude

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Transition to GitHub Actions CI/CD publishing with SLSA provenance; legitimate for @amplitude org.	ai	2026/05/19
provenance	missing-githead	AI (provenance): SLSA provenance present; gitHead absence is a metadata quirk, not a security concern for this package.	ai	2026/05/19
dependencies	unvetted-dep:@amplitude/plugin-web-vitals-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
dependencies	unvetted-dep:@amplitude/plugin-autocapture-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
dependencies	unvetted-dep:@amplitude/plugin-network-capture-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
semgrep	semgrep:api-obfuscation-reflect	AI (semgrep): Fires in minified GTM bundle; expected pattern for browser analytics SDK, not obfuscation for evasion.	ai	2026/04/29
dependencies	unvetted-dep:@amplitude/plugin-page-view-tracking-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
dependencies	unvetted-dep:@amplitude/plugin-page-url-enrichment-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
dependencies	unvetted-dep:@amplitude/plugin-event-property-attribution-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
dependencies	unvetted-dep:@amplitude/plugin-custom-enrichment-browser	AI (dependencies): First-party @amplitude org plugin from same monorepo.	ai	2026/04/29
semgrep	semgrep:new-function-constructor	AI (semgrep): In minified GTM bundle; standard minifier/bundler output for this SDK.	ai	2026/04/29

Versions (showing 51 of 98)

View all versions

Version	Deps	Published
2.43.0	9 / 12	2026-06-05
2.42.5	9 / 12	2026-05-28
2.42.4	9 / 12	2026-05-21
2.42.3	9 / 12	2026-05-13
2.42.2	9 / 12	2026-05-11
2.42.1	9 / 12	2026-05-05
2.42.0	9 / 12	2026-04-28
2.41.1	9 / 12	2026-04-22
2.41.0	9 / 12	2026-04-21
2.40.0	9 / 12	2026-04-15
2.39.2	8 / 12	2026-05-06
2.39.1	8 / 12	2026-05-05
2.39.0	8 / 12	2026-04-09
2.38.1	8 / 12	2026-04-01
2.38.0	8 / 12	2026-03-26
2.37.2	8 / 12	2026-03-24
2.37.1	8 / 12	2026-03-23
2.37.0	8 / 12	2026-03-20
2.36.9	7 / 12	2026-04-02
2.36.8	7 / 12	2026-03-19
2.36.7	7 / 12	2026-03-17
2.36.6	7 / 12	2026-03-16
2.36.5	7 / 12	2026-03-13
2.36.4	7 / 12	2026-03-12
2.36.3	7 / 12	2026-03-09
2.36.2	7 / 12	2026-03-05
2.36.1	7 / 12	2026-03-03
2.36.0	7 / 12	2026-03-03
2.35.4	7 / 12	2026-02-26
2.35.3	7 / 12	2026-02-24
2.35.2	7 / 12	2026-02-20
2.35.1	7 / 12	2026-02-19
2.35.0	7 / 12	2026-02-17
2.34.1	7 / 12	2026-02-10
2.34.0	7 / 12	2026-01-26
2.33.5	7 / 11	2026-01-21
2.33.4	7 / 11	2026-01-15
2.33.3	7 / 11	2026-01-14
2.33.2	7 / 11	2026-01-14
2.33.1	7 / 11	2025-12-30
2.33.0	7 / 11	2025-12-24
2.32.2	7 / 11	2025-12-16
2.32.1	7 / 11	2025-12-12
2.32.0	7 / 11	2025-12-09
2.31.4	7 / 11	2025-12-08
2.31.3	7 / 11	2025-11-21
2.31.2	7 / 11	2025-11-20
2.31.1	7 / 11	2025-11-17
2.31.0	7 / 11	2025-11-17
2.30.1	7 / 11	2025-11-05
2.30.0	7 / 11	2025-10-29