@mastra/core
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| phantom-deps | phantom-dep:@ai-sdk/provider-v6 | AI (phantom-deps): npm-aliased dependency (npm:@ai-sdk/[email protected]); import resolves under alias. | ai | |
| phantom-deps | phantom-dep:@ai-sdk/provider-v5 | AI (phantom-deps): npm-aliased dependency (npm:@ai-sdk/[email protected]); import resolves under alias. | ai | |
| source-diff | net-exec-file:dist/chunk-IPBUKOUR.js | AI (source-diff): ESM counterpart of same storage domain code; legitimate network+fs usage. | ai | |
| source-diff | net-exec-file:dist/chunk-2P5NL6Q2.cjs | AI (source-diff): Bundled CJS chunk with legitimate fs/path/crypto usage for storage domains; not malware. | ai | |
| source-diff | net-exec-file:dist/chunk-U3AK7BS3.cjs | AI (source-diff): Build output of AI agent framework; network+fs calls are core functionality, not malware. | ai | |
| source-diff | net-exec-file:dist/chunk-IZCBYIU3.cjs | AI (source-diff): Build-chunked output importing crypto/fs/net for AI framework functionality; not malicious. | ai | |
| source-diff | net-exec-file:dist/chunk-RJK2C4PL.cjs | AI (source-diff): Build-chunked output importing crypto for AI framework functionality; not malicious. | ai | |
| source-diff | net-exec-file:dist/chunk-RVVLQNKU.cjs | AI (source-diff): Normal CJS build chunk with fs/crypto/path imports; expected for this AI framework package. | ai | |
| source-diff | net-exec-file:dist/chunk-PCV2UDOR.cjs | AI (source-diff): Bundled chunk with legitimate fs/crypto/network usage for AI framework core; not malware. | ai | |
| source-diff | net-exec-file:dist/chunk-3MN5BPJC.js | AI (source-diff): ESM counterpart of same storage/observability code; legitimate usage. | ai | |
| source-diff | net-exec-file:dist/chunk-EVUNY5SD.cjs | AI (source-diff): Bundled CJS chunk with normal require() calls; network+exec pattern is inherent to this AI framework. | ai | |
| npm-metadata | no-description | AI (npm-metadata): Scoped package under @mastra org; missing description is cosmetic, not a malware signal. | ai | |
| source-diff | net-exec-file:dist/chunk-J3E47CMA.cjs | AI (source-diff): AI framework core naturally combines network (LLM APIs) and code execution; build chunks rotate names each version. | ai | |
| source-diff | net-exec-file:dist/chunk-B7CR6B45.cjs | AI (source-diff): Bundled build output with standard require calls; not malicious network+exec. | ai | |
| source-diff | net-exec-file:dist/chunk-GM7WJ3F7.cjs | AI (source-diff): Bundled CJS chunk using standard Node built-ins (fs, crypto, path); expected for this framework. | ai | |
| source-diff | net-exec-file:dist/chunk-OWAWKGJ4.cjs | AI (source-diff): Build output of an AI/server framework; network + fs/crypto co-occurrence is expected, not malicious. | ai | |
| source-diff | net-exec-file:dist/chunk-QJB2YTBM.cjs | AI (source-diff): Bundled CJS output with standard requires; network+exec pattern is normal for an AI framework core. | ai | |
| source-diff | net-exec-file:dist/chunk-YNE3ZCU5.cjs | AI (source-diff): Build output chunk with tool-builder code; network+exec pattern is framework functionality. | ai | |
| source-diff | net-exec-file:dist/chunk-TUZTUFQO.cjs | AI (source-diff): Build output chunk with standard framework code (storage, observability); not malware. | ai | |
| source-diff | net-exec-file:dist/chunk-GDEXRBE2.cjs | AI (source-diff): Bundled app code using fs/crypto/path + network for AI framework functionality; not a dropper. | ai | |
| source-diff | net-exec-file:dist/chunk-FFMMLKXC.cjs | AI (source-diff): Bundled CJS chunk with standard imports (crypto, fs, path, zod); not malicious code execution. | ai | |
| source-diff | net-exec-file:dist/chunk-GCVSTCZ7.cjs | AI (source-diff): Bundled CJS chunk combining AI-provider HTTP calls with require(); expected for this package. | ai | |
| source-diff | net-exec-file:dist/chunk-NNRGAKKH.cjs | AI (source-diff): Bundled CJS chunk combining AI-provider HTTP calls with require(); expected for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-v6 | AI (dependencies): Aliased @ai-sdk/provider version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-v5 | AI (dependencies): Aliased @ai-sdk/provider version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-utils-v6 | AI (dependencies): Aliased @ai-sdk/provider-utils version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-utils-v5 | AI (dependencies): Aliased @ai-sdk/provider-utils version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/ui-utils-v5 | AI (dependencies): Aliased @ai-sdk/ui-utils version; legitimate multi-version pinning pattern for this package. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Chunk-split build output changes hash-named files each release; expected for this package. | ai | |
| source-diff | net-exec-file:dist/chunk-HK4BBFHR.cjs | AI (source-diff): Build-output chunk with normal framework code (storage, observability); not malicious. | ai | |
| source-diff | net-exec-file:dist/chunk-HZYM4F5A.cjs | AI (source-diff): Build-output chunk with normal tool-builder code; not malicious. | ai | |
| phantom-deps | phantom-dep:ajv | AI (phantom-deps): ajv is a declared runtime dep used via config/schema validation; phantom-dep heuristic false positive for this package. | ai | |
| phantom-deps | phantom-dep:@ai-sdk/provider-utils-v6 | AI (phantom-deps): npm-alias versioned dep; phantom-dep heuristic fires on aliased package names, stable false positive. | ai | |
| typosquat | typosquat.levenshtein:cors | AI (typosquat): @mastra/core is a scoped AI framework package; Levenshtein match to 'cors' is coincidental and not a typosquat. | ai |
Versions (showing 29 of 29)
| Version | Deps | Published |
|---|---|---|
| 1.41.0 | 28 / 57 | |
| 1.40.0 | 28 / 57 | |
| 1.39.0 | 28 / 57 | |
| 1.38.0 | 30 / 55 | |
| 1.37.1 | 31 / 53 | |
| 1.37.0 | 31 / 53 | |
| 1.36.0 | 31 / 53 | |
| 1.35.0 | 30 / 53 | |
| 1.34.0 | 30 / 53 | |
| 1.33.1 | 30 / 53 | |
| 1.33.0 | 30 / 53 | |
| 1.32.1 | 31 / 53 | |
| 1.32.0 | 31 / 53 | |
| 1.31.0 | 30 / 53 | |
| 1.30.0 | 30 / 53 | |
| 1.29.1 | 30 / 53 | |
| 1.29.0 | 30 / 53 | |
| 1.28.0 | 30 / 53 | |
| 1.27.0 | 30 / 53 | |
| 1.26.0 | 30 / 53 | |
| 1.25.0 | 30 / 53 | |
| 1.24.1 | 30 / 48 | |
| 1.24.0 | 30 / 48 | |
| 1.23.0 | 30 / 48 | |
| 1.22.0 | 30 / 48 | |
| 1.21.0 | 29 / 48 | |
| 1.20.0 | 29 / 48 | |
| 1.19.0 | 29 / 48 | |
| 1.18.0 | 29 / 48 |
v1.41.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.40.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.39.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.38.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.37.1
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.37.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.36.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.35.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.34.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.33.1
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.33.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.32.1
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.32.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.31.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.30.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.28.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.27.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.26.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.25.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.24.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.24.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.23.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.22.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.21.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.20.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.19.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.18.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.