@apify/docs-theme
Supply chain provenance
Status for the latest visible version.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| npm-metadata | no-description | AI (npm-metadata): Established package with 251 versions; missing description is metadata gap, not malware signal. | ai | |
| phantom-deps | phantom-dep:babel-loader | AI (phantom-deps): Config-file reference; stable pattern for build tools. | ai | |
| phantom-deps | phantom-dep:react-hotkeys-hook | AI (phantom-deps): Config-file reference; stable pattern for build tools. | ai | |
| phantom-deps | phantom-dep:prism-react-renderer | AI (phantom-deps): Config-file reference; stable pattern for build tools. | ai | |
| phantom-deps | phantom-dep:docusaurus-gtm-plugin | AI (phantom-deps): Config-file reference; stable pattern for build tools. | ai | |
| phantom-deps | phantom-dep:@stackql/docusaurus-plugin-hubspot | AI (phantom-deps): Config-file reference; stable pattern for build tools. | ai |
Versions (showing 15 of 15)
| Version | Deps | Published |
|---|---|---|
| 1.0.250 | 16 / 0 | |
| 1.0.245 | 17 / 0 | |
| 1.0.243 | 17 / 0 | |
| 1.0.239 | 17 / 0 | |
| 1.0.238 | 17 / 0 | |
| 1.0.237 | 17 / 0 | |
| 1.0.235 | 17 / 0 | |
| 1.0.234 | 17 / 0 | |
| 1.0.233 | 17 / 0 | |
| 1.0.232 | 17 / 0 | |
| 1.0.231 | 17 / 0 | |
| 1.0.228 | 17 / 0 | |
| 1.0.227 | 17 / 0 | |
| 1.0.225 | 17 / 0 | |
| 1.0.224 | 17 / 0 |
v1.0.250
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.245
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.243
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.239
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.238
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.237
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.235
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.234
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.233
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.232
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.231
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.228
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.227
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.225
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.224
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.