@christiandoxa/prodex-linux-arm64
Native prodex binary for aarch64-unknown-linux-gnu
Supply chain provenance
Status for the latest visible version.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| npm-metadata | bundled-binaries | AI (npm-metadata): Platform binary package by design; SLSA provenance attestation confirms CI/CD build integrity. | ai |
Versions (showing 11 of 227)
| Version | Deps | Published |
|---|---|---|
| 0.2.106 | 0 / 0 | |
| 0.2.105 | 0 / 0 | |
| 0.2.104 | 0 / 0 | |
| 0.2.103 | 0 / 0 | |
| 0.2.102 | 0 / 0 | |
| 0.2.101 | 0 / 0 | |
| 0.2.100 | 0 / 0 | |
| 0.2.99 | 0 / 0 | |
| 0.2.98 | 0 / 0 | |
| 0.2.97 | 0 / 0 | |
| 0.2.96 | 0 / 0 |
v0.2.106
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.105
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.104
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.103
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.102
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.101
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.100
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.99
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.98
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.97
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.2.96
2 findingsPackage contains compiled binaries that could be backdoors: • vendor/prodex
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.