@clerk/types — Greenflagged

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

colinclerkbradenclerknikosdouvlischanioxarisjescalanbkalowdominic-clerkmwickett

Keywords

clerkreactauthauthenticationpasswordlesssessionjwttypes

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Clerk migrated publishing from personal account (dominic-clerk) to GitHub Actions CI/CD with SLSA attestation — a security improvement, not a compromise indicator. Stable for this package going forward.	ai	2026/04/26
maintainer-change	maintainer-added	AI (maintainer-change): Clerk is a large active org; adding team members (bkalow) is routine. SLSA provenance attestation confirms supply chain integrity.	ai	2026/04/26

Versions (showing 85 of 85)

Version	Deps	Published
4.101.23	1 / 0	2026-04-22
4.101.22	1 / 0	2026-04-15
4.101.21	1 / 0	2026-03-20
4.101.20	1 / 0	2026-02-27
4.101.19	1 / 0	2026-02-26
4.101.18	1 / 0	2026-02-20
4.101.17	1 / 0	2026-02-18
4.101.16	1 / 0	2026-02-17
4.101.15	1 / 0	2026-02-13
4.101.14	1 / 0	2026-01-28
4.101.13	1 / 0	2026-01-23
4.101.12	1 / 0	2026-01-21
4.101.11	1 / 0	2026-01-16
4.101.10	1 / 0	2026-01-07
4.101.9	1 / 0	2025-12-19
4.101.8	1 / 0	2025-12-18
4.101.7	1 / 0	2025-12-15
4.101.6	1 / 0	2025-12-08
4.101.5	1 / 0	2025-12-05
4.101.4	1 / 0	2025-12-02
4.101.3	1 / 0	2025-11-24
4.101.2	1 / 0	2025-11-21
4.101.1	1 / 0	2025-11-20
4.101.0	1 / 0	2025-11-17
4.100.0	1 / 0	2025-11-12
4.99.0	1 / 0	2025-11-11
4.98.0	1 / 0	2025-11-10
4.97.2	1 / 0	2025-11-06
4.97.1	1 / 0	2025-11-05
4.97.0	1 / 0	2025-11-04
4.96.0	1 / 0	2025-10-29
4.95.1	1 / 0	2025-10-22
4.95.0	1 / 0	2025-10-17
4.94.0	1 / 0	2025-10-15
4.93.0	1 / 0	2025-10-14
4.92.0	1 / 0	2025-10-06
4.91.0	1 / 0	2025-10-03
4.90.0	1 / 0	2025-09-30
4.89.0	1 / 0	2025-09-27
4.88.0	1 / 0	2025-09-22
4.87.0	1 / 0	2025-09-16
4.86.0	1 / 0	2025-09-12
4.85.0	1 / 0	2025-09-09
4.84.1	1 / 0	2025-09-04
4.84.0	1 / 0	2025-09-02
4.83.0	1 / 0	2025-08-27
4.82.0	1 / 0	2025-08-26
4.81.0	1 / 0	2025-08-21
4.80.0	1 / 0	2025-08-19
4.79.0	1 / 0	2025-08-18
4.78.0	1 / 0	2025-08-14
4.77.0	1 / 0	2025-08-14
4.76.0	1 / 0	2025-08-13
4.75.0	1 / 0	2025-08-12
4.74.0	1 / 0	2025-08-08
4.73.0	1 / 0	2025-08-06
4.72.0	1 / 0	2025-07-31
4.71.0	1 / 0	2025-07-29
4.70.1	1 / 0	2025-07-25
4.70.0	1 / 0	2025-07-24
4.69.0	1 / 0	2025-07-23
4.68.0	1 / 0	2025-07-17
4.67.0	1 / 0	2025-07-16
4.66.1	1 / 0	2025-07-16
4.66.0	1 / 0	2025-07-15
4.65.0	1 / 0	2025-07-14
4.64.0	1 / 0	2025-07-08
4.63.0	1 / 0	2025-07-03
4.62.1	1 / 0	2025-06-30
4.62.0	1 / 0	2025-06-26
4.61.0	1 / 0	2025-06-23
4.60.1	1 / 0	2025-06-13
4.60.0	1 / 0	2025-06-04
4.59.3	1 / 0	2025-05-29
4.59.2	1 / 0	2025-05-27
4.59.1	1 / 0	2025-05-20
4.59.0	1 / 0	2025-05-15
4.58.1	1 / 0	2025-05-14
4.58.0	1 / 0	2025-05-09
4.57.1	1 / 0	2025-05-06
4.57.0	1 / 0	2025-05-06
4.56.3	1 / 0	2025-05-02
4.56.2	1 / 0	2025-05-01
4.56.1	1 / 0	2025-04-30
4.56.0	1 / 0	2025-04-29

v4.101.23

2 findings

HIGH Publisher changed: dominic-clerk → GitHub Actions (on 2026-04-22) provenance

This version was published by a different npm account than previous versions on 2026-04-22. This could indicate a legitimate maintainer transition or an account compromise.