@kubernetes-models/kubedb
KubeDB models
3
Versions
MIT
License
No
Install Scripts
Verified
Provenance
Supply chain provenance
Status for the latest visible version.
SLSA provenance attestation
npm registry signatures
No source commit
Maintainers
tommy351
Keywords
kuberneteskubernetes-modelskubedb
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| publish-pattern | dormant-publish | AI (publish-pattern): Major version bump after refactor; SLSA provenance confirms legitimate CI/CD publish. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Generated Kubernetes CRD model files; exports map confirms intentional expansion of API groups. | ai | |
| source-diff | source-size-dropped | AI (source-diff): Refactored package structure; size drop consistent with splitting large generated files into smaller modules. | ai | |
| phantom-deps | phantom-dep:@kubernetes-models/validate | AI (phantom-deps): Same-org validation dep; likely used transitively through base/apimachinery deps. | ai |
v2.0.0
1 finding
INFO
Has SLSA provenance attestation
provenance
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.1
1 finding
INFO
Has SLSA provenance attestation
provenance
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.0
1 finding
INFO
Has SLSA provenance attestation
provenance
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.