@aws-cdk/asset-awscli-v1 Apache-2.0 22 versions

@aws-cdk/asset-awscli-v1

npm Repository Homepage

A library that contains the AWS CLI for use in Lambda Layers

22

Versions

Apache-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

amzn-ossaws-cdk-team

Keywords

cdk

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Transition from aws-cdk-team to GitHub Actions CI/CD publishing, corroborated by SLSA provenance attestation. Standard for cdklabs packages.	ai	2026/04/23

Versions (showing 22 of 322)

Version	Deps	Published
2.1.5	0 / 24	2022-10-17
2.1.4	0 / 24	2022-10-16
2.1.3	0 / 24	2022-10-15
2.1.2	0 / 24	2022-10-14
2.1.1	0 / 24	2022-10-13
2.1.0	0 / 24	2022-10-12
2.0.1	0 / 24	2022-10-12
2.0.0	0 / 24	2022-10-11
0.0.13	0 / 24	2022-09-20
0.0.12	0 / 24	2022-09-19
0.0.11	0 / 24	2022-09-19
0.0.10	0 / 24	2022-09-15
0.0.9	0 / 24	2022-09-15
0.0.8	0 / 24	2022-09-14
0.0.7	0 / 24	2022-09-14
0.0.6	0 / 24	2022-09-13
0.0.5	0 / 24	2022-09-13
0.0.4	0 / 24	2022-09-12
0.0.3	0 / 24	2022-10-03
0.0.2	0 / 24	2022-09-28
0.0.1	0 / 24	2022-09-24
0.0.0	0 / 24	2022-09-23

v2.1.5

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.1.4

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.1.3

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.1.2

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.1.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.1.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.0.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v2.0.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.