@fern-api/dynamic-ir-sdk
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Versions (showing 24 of 24)
| Version | Deps | Published |
|---|---|---|
| 67.2.0 | 0 / 7 | |
| 67.1.0 | 0 / 7 | |
| 67.0.0 | 0 / 7 | |
| 66.3.0 | 0 / 7 | |
| 66.2.0 | 0 / 7 | |
| 66.1.0 | 0 / 7 | |
| 65.5.0 | 0 / 7 | |
| 65.4.0 | 0 / 7 | |
| 65.3.0 | 0 / 7 | |
| 65.2.1 | 0 / 7 | |
| 65.2.0 | 0 / 7 | |
| 65.1.0 | 0 / 7 | |
| 64.0.0 | 0 / 7 | |
| 63.2.0 | 0 / 7 | |
| 63.1.0 | 0 / 7 | |
| 63.0.0 | 0 / 7 | |
| 62.6.0 | 0 / 7 | |
| 62.4.0 | 0 / 7 | |
| 62.3.0 | 0 / 7 | |
| 62.1.0 | 0 / 7 | |
| 62.0.0 | 0 / 7 | |
| 61.7.0 | 0 / 7 | |
| 61.6.0 | 0 / 7 | |
| 0.0.3603 | 0 / 7 |
v67.2.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v67.1.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v67.0.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v66.3.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v66.2.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v66.1.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v65.4.0
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.