@astrojs/vercel MIT 7 versions

@astrojs/vercel

npm Repository Homepage

Deploy your site to Vercel

7

Versions

MIT

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

fredkschottmatthewp

Keywords

withastroastro-adapter

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:@vercel/routing-utils	AI (dependencies): First-party Vercel package; stable dependency of this adapter across versions.	ai	2026/05/26
typosquat	typosquat.levenshtein:parcel	AI (typosquat): @astrojs/vercel is the official Astro-Vercel adapter; name similarity to 'parcel' is coincidental.	ai	2026/04/30
phantom-deps	phantom-dep:@vercel/analytics	AI (phantom-deps): Framework-scoped package loaded by convention in Vercel adapter; not directly imported but legitimately declared.	ai	2026/04/30

Versions (showing 7 of 7)

Version	Deps	Published
10.0.8	7 / 4	2026-05-28
10.0.7	7 / 4	2026-05-13
10.0.6	7 / 4	2026-04-28
10.0.5	7 / 4	2026-04-22
10.0.4	7 / 4	2026-04-01
10.0.3	7 / 4	2026-03-26
10.0.2	7 / 4	2026-03-19

v10.0.8

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.0.7

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.0.6

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.0.5

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.0.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.0.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.0.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.