@esri/arcgis-rest-request No license 16 versions

@esri/arcgis-rest-request

npm Repository Homepage

16

Versions

—

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

patrickarlttomwaysondbouwmanajturnermjuniperrweber.esri

Keywords

ES6arcgisesrifetchpromisetypescript

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:@esri/arcgis-rest-fetch	AI (dependencies): Sibling package from the same @esri/arcgis-rest-js monorepo, published together at matching versions via the same CI/CD pipeline with SLSA provenance. Not a third-party risk.	ai	2026/04/27
dependencies	unvetted-dep:@esri/arcgis-rest-form-data	AI (dependencies): Sibling package from the same @esri/arcgis-rest-js monorepo, published together at matching versions via the same CI/CD pipeline with SLSA provenance. Not a third-party risk.	ai	2026/04/27

Versions (showing 16 of 16)

Version	Deps	Published
4.10.2	4 / 1	2026-04-07
4.10.1	4 / 1	2026-03-09
4.10.0	4 / 1	2026-03-05
4.9.1	4 / 1	2026-02-25
4.9.0	4 / 1	2026-02-19
4.8.0	4 / 1	2026-01-16
4.7.3	4 / 1	2025-09-18
4.7.2	4 / 1	2025-07-28
4.7.1	4 / 1	2025-07-25
4.7.0	4 / 1	2025-07-25
4.6.0	4 / 1	2025-06-27
4.5.1	4 / 1	2025-05-20
4.5.0	4 / 1	2025-04-30
4.4.3	4 / 1	2025-04-30
4.4.2	4 / 1	2025-04-30
4.4.1	4 / 1	2025-04-30

v4.10.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v4.7.3

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.7.2

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.7.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.7.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.6.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.5.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.5.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.4.3

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v4.4.2

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.4.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.