@contractspec/lib.jobs — Greenflagged

Background jobs and scheduler module for ContractSpec applications

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

farzim

Keywords

contractspecjobsqueueschedulerbackgroundtypescript

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:cron-parser	AI (phantom-deps): cron-parser is a declared runtime dep; likely loaded by convention in scheduler module.	ai	2026/04/29
phantom-deps	phantom-dep:@aws-sdk/client-sqs	AI (phantom-deps): Framework-scoped AWS SDK dep loaded by convention in queue adapters; stable false positive for this package.	ai	2026/04/29

Versions (showing 51 of 81)

View all versions

Version	Deps	Published
3.8.8	8 / 3	2026-04-30
3.8.7	8 / 3	2026-04-29
3.8.6	8 / 3	2026-04-29
3.8.5	8 / 3	2026-04-28
3.8.4	8 / 3	2026-04-28
3.8.3	8 / 3	2026-04-24
3.8.2	8 / 3	2026-04-22
3.8.1	8 / 3	2026-04-21
3.8.0	8 / 3	2026-04-21
3.7.20	8 / 3	2026-04-19
3.7.19	8 / 3	2026-04-13
3.7.18	8 / 3	2026-04-10
3.7.17	8 / 3	2026-03-28
3.7.16	8 / 3	2026-03-27
3.7.15	8 / 3	2026-03-26
3.7.14	8 / 3	2026-03-24
3.7.12	8 / 3	2026-03-23
3.7.10	8 / 3	2026-03-20
3.7.7	8 / 3	2026-03-20
3.7.6	8 / 3	2026-03-20
3.7.5	8 / 3	2026-03-19
3.7.4	8 / 3	2026-03-19
3.7.3	8 / 3	2026-03-19
3.7.1	8 / 3	2026-03-15
3.7.0	8 / 3	2026-03-13
3.6.0	8 / 3	2026-03-10
3.5.5	8 / 3	2026-03-09
3.5.4	8 / 3	2026-03-09
3.5.3	8 / 3	2026-03-09
3.5.2	8 / 3	2026-03-09
3.5.0	8 / 3	2026-03-09
3.4.3	8 / 3	2026-03-09
3.4.2	8 / 3	2026-03-09
3.4.1	8 / 3	2026-03-09
3.4.0	8 / 3	2026-03-08
3.3.0	8 / 3	2026-03-07
3.2.0	8 / 3	2026-03-06
3.1.1	8 / 3	2026-03-06
3.0.0	8 / 3	2026-02-27
2.9.1	8 / 3	2026-02-26
2.9.0	8 / 3	2026-02-25
2.8.0	8 / 3	2026-02-25
2.7.0	8 / 3	2026-02-24
2.6.0	8 / 3	2026-02-22
2.5.0	8 / 3	2026-02-21
2.4.0	8 / 3	2026-02-19
2.3.0	8 / 3	2026-02-19
2.2.0	8 / 3	2026-02-17
2.1.1	8 / 3	2026-02-17
2.1.0	8 / 3	2026-02-16
2.0.0	8 / 3	2026-02-15

v3.8.8

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.8.7

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.8.5

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.8.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.8.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.8.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.8.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.19

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.17

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.16

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.15

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.14

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.12

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.10

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.7

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.6

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.5

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.7.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.