@aws-sdk/client-cloudcontrol

AWS SDK for JavaScript Cloudcontrol Client for Node.js, Browser and React Native

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

amzn-ossaws-sdk-bot

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
publish-pattern	new-deps-added	AI (publish-pattern): @types/uuid is a TypeScript type definition package for the already-present uuid runtime dep; adding it is benign and consistent with normal SDK development practices.	ai	2026/04/22
provenance	no-provenance	AI (provenance): aws-sdk-bot is a well-established publisher with 16000+ approved packages; lack of Sigstore provenance is a known characteristic of this publisher and not a meaningful risk signal.	ai	2026/04/22
phantom-deps	phantom-dep:@types/uuid	AI (phantom-deps): @types/uuid is a benign TypeScript type definitions package for the uuid runtime dep already present; not a security concern for this package.	ai	2026/04/22
maintainer-change	maintainer-removed	AI (maintainer-change): AWS SDK v3 is maintained by aws-sdk-bot; individual maintainer removals reflect normal AWS team changes and do not indicate a takeover for this package.	ai	2026/04/22
phantom-deps	phantom-dep:@aws-sdk/util-base64-browser	AI (phantom-deps): AWS SDK v3 packages use convention-based loading for utilities; phantom-dep is a false positive for this architecture.	ai	2026/04/22
phantom-deps	phantom-dep:@aws-sdk/middleware-stack	AI (phantom-deps): AWS SDK v3 packages use convention-based loading for middleware; phantom-dep is a false positive for this architecture.	ai	2026/04/22
phantom-deps	phantom-dep:@aws-sdk/util-base64-node	AI (phantom-deps): AWS SDK v3 packages use convention-based loading for utilities; phantom-dep is a false positive for this architecture.	ai	2026/04/22
phantom-deps	phantom-dep:@aws-sdk/client-sts	AI (phantom-deps): Framework-scoped AWS SDK dependency loaded by convention; stable pattern for this package.	ai	2026/04/22
phantom-deps	phantom-dep:@smithy/middleware-stack	AI (phantom-deps): Framework-scoped Smithy middleware dependency loaded by convention; stable pattern for this package.	ai	2026/04/22
phantom-deps	phantom-dep:@aws-sdk/client-sso-oidc	AI (phantom-deps): Framework-scoped AWS SDK dependency loaded by convention; stable pattern for this package.	ai	2026/04/22

Versions (showing 22 of 522)

Version	Deps	Published
3.54.0	35 / 9	2022-03-11
3.53.0	35 / 9	2022-02-25
3.52.0	35 / 9	2022-02-18
3.51.0	35 / 9	2022-02-12
3.50.0	35 / 9	2022-02-08
3.49.0	35 / 9	2022-01-29
3.48.0	35 / 3	2022-01-22
3.47.2	35 / 3	2022-01-21
3.47.1	35 / 3	2022-01-20
3.47.0	35 / 3	2022-01-15
3.46.0	33 / 3	2022-01-07
3.45.0	33 / 9	2021-12-23
3.43.0	33 / 9	2021-11-29
3.42.0	33 / 9	2021-11-19
3.41.0	33 / 9	2021-11-11
3.40.0	33 / 9	2021-11-06
3.39.0	33 / 9	2021-10-29
3.38.0	33 / 9	2021-10-22
3.37.0	33 / 9	2021-10-15
3.36.1	33 / 9	2021-10-12
3.36.0	33 / 9	2021-10-08
3.35.0	33 / 9	2021-10-04