@langchain/[email protected] rejected Risk: 35 MIT 2025-12-23

@langchain/openai @0.6.17

rejected

This version was rejected. It did not pass GreenFlagged's security review and is not served by the registry. The findings and risk dispositions below explain why.

npm Repository Homepage Tarball

Risk Score

MIT

License

Install Scripts

Dependencies

Dev Dependencies

89.6 KB

Package Size

2025-12-23

Published

OpenAI integrations for LangChain.js

Maintainers

hwchase17jacoblee93basprouleric_langchainandrewnguonlynfcamposdavidduongmaddyadamssam_noyeshntrlchristian-bromann

Keywords

llmaigpt3chainpromptprompt engineeringchatgptmachine learningmlopenaiembeddingsvectorstores

Dependencies (3)

Package	Constraint	Registry Status
zod	^3.25.32	auto_approved
openai	5.12.2	auto_approved
js-tiktoken	^1.0.12	auto_approved

Dev Dependencies (22)

Package	Constraint	Registry Status
dpdm	^3.14.0	Not imported
jest	^29.5.0	auto_approved
eslint	^8.33.0	auto_approved
rimraf	^5.0.1	auto_approved
ts-jest	^29.1.0	auto_approved
prettier	^2.8.3	auto_approved
@swc/core	^1.3.90	auto_approved
@swc/jest	^0.2.29	auto_approved
release-it	^18.1.2	pending
typescript	~5.8.3	auto_approved
@jest/globals	^29.5.0	auto_approved
@azure/identity	^4.2.1	auto_approved
@langchain/core	workspace:*	rejected
@langchain/scripts	>=0.1.0 <0.2.0	Not imported
eslint-plugin-jest	^27.6.0	auto_approved
eslint-plugin-import	^2.31.0	auto_approved
jest-environment-node	^29.6.4	auto_approved
eslint-config-prettier	^8.6.0	auto_approved
eslint-plugin-prettier	^4.2.1	auto_approved
@langchain/standard-tests	0.0.0	Not imported
eslint-config-airbnb-base	^15.0.0	auto_approved
eslint-plugin-no-instanceof	^1.0.1	Not imported

Transitive Dependency Tree

4 transitive deps max depth 2

├─ js-tiktoken ^1.0.12 → 1.0.21

├─ openai 5.12.2 → 5.12.2

├─ zod ^3.25.32 → 3.25.76

├─ base64-js ^1.5.1 → 1.5.1

Changes from v1.2.0

Dependency Changes

Change	Package	Version
changed	zod	^3.25.76 \|\| ^4 → ^3.25.32
changed	openai	^6.10.0 → 5.12.2

Script Changes

+ prepack+ test:single+ build:internal - typegen- build:compile- typegen:profiles

File Changes

23 added 235 removed 41 modified size delta: -1714.5 KB

SAST Findings (2)

HIGH Provenance attestation missing — previous versions had it provenance

This version was published without provenance, but prior versions were published via CI/CD with attestations. This is a strong signal of a potential account compromise or unauthorized publish. The axios attack (March 2026) exhibited exactly this pattern.

INFO Publisher changed: GitHub Actions → hntrl (on 2025-12-23) provenance

[Accepted risk] This version was published by a different npm account than previous versions on 2025-12-23. This could indicate a legitimate maintainer transition or an account compromise.

Review Summary

Risk score: 35. Findings: 1 high (+25), 1 medium (+10), 2 info (+0).

Published to npm: 2025-12-23