@cubejs-backend/shared — Greenflagged

Shared code for Cube.js backend packages

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

cubedevincstatsbotkeydunovmaxim_cube

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
bogus-package	bogus-package	AI (bogus-package): Internal monorepo package; sparse README and no keywords are expected for shared backend utilities.	ai	2026/05/05
dependencies	unvetted-dep:moment-range	AI (dependencies): moment-range is a legitimate date-range extension; stable dependency in this package across many versions.	ai	2026/05/05

Versions (showing 51 of 102)

View all versions

Version	Deps	Published
1.6.55	16 / 12	2026-06-05
1.6.54	16 / 12	2026-06-04
1.6.53	16 / 12	2026-06-02
1.6.52	16 / 12	2026-05-29
1.6.51	16 / 12	2026-05-27
1.6.50	16 / 12	2026-05-22
1.6.49	16 / 12	2026-05-21
1.6.48	16 / 12	2026-05-19
1.6.47	16 / 12	2026-05-18
1.6.46	16 / 12	2026-05-11
1.6.45	16 / 12	2026-05-11
1.6.44	16 / 12	2026-05-06
1.6.43	16 / 12	2026-05-02
1.6.42	16 / 12	2026-05-01
1.6.40	16 / 12	2026-04-30
1.6.38	16 / 12	2026-04-23
1.6.35	16 / 12	2026-04-15
1.6.32	16 / 12	2026-04-06
1.5.6	15 / 12	2025-11-24
1.5.5	15 / 12	2025-11-24
1.5.4	15 / 12	2025-11-18
1.5.3	15 / 12	2025-11-13
1.5.2	15 / 12	2025-11-10
1.5.1	15 / 12	2025-11-04
1.5.0	15 / 12	2025-10-29
1.4.0	15 / 12	2025-10-29
1.3.86	16 / 12	2025-10-29
1.3.85	16 / 12	2025-10-28
1.3.84	16 / 12	2025-10-28
1.3.83	16 / 12	2025-10-24
1.3.82	16 / 12	2025-10-21
1.3.81	16 / 12	2025-10-16
1.3.80	16 / 12	2025-10-15
1.3.79	16 / 12	2025-10-14
1.3.78	16 / 11	2025-10-03
1.3.77	16 / 11	2025-10-01
1.3.76	16 / 11	2025-10-01
1.3.75	16 / 11	2025-09-29
1.3.74	16 / 11	2025-09-26
1.3.73	16 / 11	2025-09-25
1.3.72	16 / 11	2025-09-23
1.3.71	16 / 11	2025-09-22
1.3.70	16 / 11	2025-09-19
1.3.69	16 / 11	2025-09-17
1.3.68	16 / 11	2025-09-16
1.3.67	16 / 11	2025-09-09
1.3.66	16 / 11	2025-09-09
1.3.65	16 / 11	2025-09-05
1.3.64	16 / 11	2025-09-03
1.3.63	16 / 11	2025-09-02
1.3.62	16 / 11	2025-08-29

v1.6.55

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.54

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.53

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.52

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.51

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.50

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.49

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.48

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.47

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.46

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.45

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.44

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.43

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.42

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.40

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.38

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.35

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.6.32

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.