@keplr-wallet/stores-starknet Apache-2.0 15 versions

@keplr-wallet/stores-starknet

npm Repository Homepage

15

Versions

Apache-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

chainapsis

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Keplr wallet migrated publishing to GitHub Actions CI with SLSA attestation; stable pattern for this org.	ai	2026/05/30
phantom-deps	phantom-dep:big-integer	AI (phantom-deps): Monorepo package; declared deps used transitively in build pipeline.	ai	2026/05/16
phantom-deps	phantom-dep:@ethersproject/abi	AI (phantom-deps): Monorepo package; ethersproject deps used transitively in build pipeline.	ai	2026/05/16
phantom-deps	phantom-dep:@ethersproject/bytes	AI (phantom-deps): Monorepo package; ethersproject deps used transitively in build pipeline.	ai	2026/05/16
semgrep	semgrep:hex-decode	AI (semgrep): Hex decode is used for Starknet address validation (32-byte check), not payload hiding.	ai	2026/05/16
phantom-deps	phantom-dep:@ethersproject/address	AI (phantom-deps): Monorepo package; ethersproject deps used transitively in build pipeline.	ai	2026/05/16
phantom-deps	phantom-dep:@keplr-wallet/simple-fetch	AI (phantom-deps): Same-org monorepo package; stable false positive for this package.	ai	2026/05/16
phantom-deps	phantom-dep:@ethersproject/transactions	AI (phantom-deps): Monorepo package; ethersproject deps used transitively in build pipeline.	ai	2026/05/16
phantom-deps	phantom-dep:@ethersproject/units	AI (phantom-deps): Monorepo package; ethersproject deps used transitively in build pipeline.	ai	2026/05/16

Versions (showing 15 of 115)

Version	Deps	Published
0.12.245	12 / 0	2025-06-24
0.12.244	12 / 0	2025-06-24
0.12.243	12 / 0	2025-06-20
0.12.242	12 / 0	2025-06-20
0.12.241	12 / 0	2025-06-19
0.12.240	12 / 0	2025-06-16
0.12.239	12 / 0	2025-06-10
0.12.238	12 / 0	2025-06-02
0.12.237	12 / 0	2025-05-28
0.12.236	12 / 0	2025-05-27
0.12.235	12 / 0	2025-05-19
0.12.234	12 / 0	2025-05-15
0.12.233	12 / 0	2025-05-13
0.12.232	12 / 0	2025-05-08
0.12.231	12 / 0	2025-05-07

v0.12.245

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.244

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.243

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.242

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.241

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.240

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.239

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.238

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.12.237

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.12.236

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.12.235

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.12.234

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.12.233

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.12.232

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.12.231

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.