@copilotkit/shared — Greenflagged

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

copilotkit

Keywords

aiassistantautomationcopilotcopilotkitjavascriptnextjsnodejsreacttextarea

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Transition to GitHub Actions CI/CD publishing with SLSA provenance; legitimate.	ai	2026/06/01
semgrep	semgrep:env-spread	AI (semgrep): Fires in test file saving/restoring process.env; not a production risk.	ai	2026/05/31
semgrep	semgrep:base64-decode	AI (semgrep): Standard base64 decode for telemetry ID parsing; benign pattern stable across versions.	ai	2026/05/31
phantom-deps	phantom-dep:zod-to-json-schema	AI (phantom-deps): zod-to-json-schema is a declared runtime dependency in package.json; phantom-dep heuristic false positive for this package.	ai	2026/04/29

Versions (showing 49 of 49)

Version	Deps	Published
1.59.4	10 / 9	2026-06-04
1.59.3	10 / 9	2026-06-03
1.59.2	10 / 9	2026-05-30
1.59.1	10 / 9	2026-05-29
1.59.0	10 / 9	2026-05-29
1.58.0	10 / 9	2026-05-26
1.57.4	10 / 9	2026-05-21
1.57.3	10 / 9	2026-05-19
1.57.2	10 / 9	2026-05-19
1.57.1	10 / 9	2026-05-07
1.57.0	10 / 9	2026-05-05
1.56.5	10 / 9	2026-04-30
1.56.4	10 / 9	2026-04-27
1.56.3	10 / 9	2026-04-22
1.56.2	10 / 9	2026-04-16
1.56.1	10 / 9	2026-04-16
1.56.0	10 / 9	2026-04-15
1.55.3	10 / 9	2026-04-11
1.55.2	10 / 9	2026-04-10
1.55.1	10 / 9	2026-04-09
1.55.0	10 / 9	2026-04-09
1.54.1	5 / 8	2026-03-26
1.54.0	5 / 8	2026-03-12
1.53.0	5 / 8	2026-03-05
1.52.1	5 / 8	2026-02-27
1.52.0	5 / 8	2026-02-26
1.51.4	5 / 10	2026-02-17
1.51.3	5 / 10	2026-01-29
1.51.2	5 / 10	2026-01-15
1.51.1	5 / 10	2026-01-14
1.51.0	5 / 10	2026-01-13
1.50.1	6 / 10	2025-12-17
1.50.0	6 / 10	2025-12-11
1.10.6	7 / 9	2025-10-09
1.10.5	7 / 9	2025-09-30
1.10.4	7 / 9	2025-09-08
1.10.3	7 / 9	2025-08-29
1.10.2	7 / 9	2025-08-14
1.10.1	7 / 9	2025-08-08
1.10.0	7 / 9	2025-08-07
1.9.3	6 / 9	2025-07-17
1.9.2	6 / 9	2025-07-14
1.9.1	6 / 9	2025-06-17
1.9.0	6 / 9	2025-06-13
1.8.14	6 / 9	2025-06-06
1.8.13	6 / 9	2025-05-21
1.8.12	6 / 9	2025-05-15
1.8.11	6 / 9	2025-05-08
1.8.10	6 / 9	2025-05-06

v1.59.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.59.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.59.2

3 findings

HIGH Publisher changed: copilotkit → GitHub Actions (on 2026-05-30) provenance

This version was published by a different npm account than previous versions on 2026-05-30. This could indicate a legitimate maintainer transition or an account compromise.

HIGH env-spread: src/telemetry/telemetry-client.test.ts:268 semgrep

Spreading entire process.env into an object — may capture all secrets 266 | 267 | describe("isTelemetryDisabled", () => { > 268 | const originalEnv = { ...process.env }; 269 | 270 | afterEach(() => {

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.59.1

3 findings

HIGH Publisher changed: copilotkit → GitHub Actions (on 2026-05-29) provenance

This version was published by a different npm account than previous versions on 2026-05-29. This could indicate a legitimate maintainer transition or an account compromise.

HIGH env-spread: src/telemetry/telemetry-client.test.ts:268 semgrep

Spreading entire process.env into an object — may capture all secrets 266 | 267 | describe("isTelemetryDisabled", () => { > 268 | const originalEnv = { ...process.env }; 269 | 270 | afterEach(() => {

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.59.0

3 findings

HIGH Publisher changed: copilotkit → GitHub Actions (on 2026-05-29) provenance

This version was published by a different npm account than previous versions on 2026-05-29. This could indicate a legitimate maintainer transition or an account compromise.

HIGH env-spread: src/telemetry/telemetry-client.test.ts:268 semgrep

Spreading entire process.env into an object — may capture all secrets 266 | 267 | describe("isTelemetryDisabled", () => { > 268 | const originalEnv = { ...process.env }; 269 | 270 | afterEach(() => {

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.58.0

3 findings

HIGH Publisher changed: copilotkit → GitHub Actions (on 2026-05-26) provenance

This version was published by a different npm account than previous versions on 2026-05-26. This could indicate a legitimate maintainer transition or an account compromise.

HIGH env-spread: src/telemetry/telemetry-client.test.ts:268 semgrep

Spreading entire process.env into an object — may capture all secrets 266 | 267 | describe("isTelemetryDisabled", () => { > 268 | const originalEnv = { ...process.env }; 269 | 270 | afterEach(() => {

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.57.4

3 findings

HIGH Publisher changed: copilotkit → GitHub Actions (on 2026-05-21) provenance

This version was published by a different npm account than previous versions on 2026-05-21. This could indicate a legitimate maintainer transition or an account compromise.

HIGH env-spread: src/telemetry/telemetry-client.test.ts:268 semgrep

Spreading entire process.env into an object — may capture all secrets 266 | 267 | describe("isTelemetryDisabled", () => { > 268 | const originalEnv = { ...process.env }; 269 | 270 | afterEach(() => {

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.