@kubernetes-models/flux-cd
Flux CD models
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1CrossNamespaceObjectReference.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1HelmChartTemplateSpec.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1HelmRelease.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1HelmReleaseList.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1HelmReleaseSpec.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1HelmReleaseStatus.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1Install.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1Kustomize.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1Upgrade.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta1ValuesReference.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta2CrossNamespaceObjectReference.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | obfuscated-file:_schemas/ComGithubFluxcdHelmControllerApiV2beta2CrossNamespaceSourceReference.js | AI (source-diff): Minified AJV validator output; stable build artifact pattern for kubernetes-models packages. | ai | |
| source-diff | large-new-source-files | AI (source-diff): 977 new files reflect major version adding many Flux CD API versions; expected for this schema-generation package. | ai | |
| phantom-deps | phantom-dep:@kubernetes-models/validate | AI (phantom-deps): Used transitively via generated schema files; declared as direct dep for version pinning, stable false positive. | ai |
v4.0.0
13 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.