@mintlify/common — Greenflagged

Commonly shared code within Mintlify

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

dks333hanminthahnbeeshouchem-mintlifykathrynmintlifykylefinkenian-mintlifydenssumesh

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
publish-pattern	new-deps-added	AI (publish-pattern): New deps are canonical remark/rehype ecosystem packages consistent with existing unified stack; no malicious signal.	ai	2026/04/27
dependencies	unvetted-dep:color-blend	AI (dependencies): color-blend is a legitimate color manipulation utility; appropriate for a UI/documentation library.	ai	2026/04/25
dependencies	unvetted-dep:@types/mdast	AI (dependencies): Type definitions package from DefinitelyTyped; no runtime risk, appropriate for a markdown processing library.	ai	2026/04/25
dependencies	unvetted-dep:@mintlify/mdx	AI (dependencies): First-party Mintlify package; same organization as this package.	ai	2026/04/25
dependencies	unvetted-dep:@asyncapi/specs	AI (dependencies): Official AsyncAPI specification package from the AsyncAPI Initiative; legitimate for API documentation tooling.	ai	2026/04/25
dependencies	unvetted-dep:@asyncapi/parser	AI (dependencies): Official AsyncAPI parser from the AsyncAPI Initiative; legitimate for API documentation tooling.	ai	2026/04/25
dependencies	unvetted-dep:@mintlify/models	AI (dependencies): First-party Mintlify package; same organization as this package.	ai	2026/04/25
dependencies	unvetted-dep:hex-rgb	AI (dependencies): hex-rgb is a well-known, single-purpose utility package by sindresorhus ecosystem; legitimate dependency for color processing.	ai	2026/04/25
dependencies	unvetted-dep:@mintlify/openapi-parser	AI (dependencies): First-party Mintlify package; same organization as this package.	ai	2026/04/25
phantom-deps	phantom-dep:@types/mdast	AI (phantom-deps): Type-only package; framework-scoped usage is expected for TypeScript projects using mdast types.	ai	2026/04/25
phantom-deps	phantom-dep:@asyncapi/specs	AI (phantom-deps): Config-referenced usage is expected for AsyncAPI spec validation; not a direct import pattern.	ai	2026/04/25
phantom-deps	phantom-dep:hast-util-to-text	AI (phantom-deps): Config-referenced in a markdown/MDX processing library; indirect usage pattern is legitimate.	ai	2026/04/25
phantom-deps	phantom-dep:micromark-extension-mdx-jsx	AI (phantom-deps): Config-referenced in a markdown/MDX processing library; indirect usage pattern is legitimate.	ai	2026/04/25
provenance	no-provenance	AI (provenance): Established package with 858 versions and 230k weekly downloads; lack of provenance is common and not a risk indicator here.	ai	2026/04/25
dependencies	unvetted-dep:@mintlify/validation	AI (dependencies): First-party Mintlify package; same organization as this package.	ai	2026/04/25

Versions (showing 100 of 428)

Version	Deps	Published
1.0.586	43 / 16	2025-10-27
1.0.585	43 / 16	2025-10-26
1.0.584	43 / 16	2025-10-24
1.0.583	43 / 16	2025-10-21
1.0.582	43 / 16	2025-10-20
1.0.581	43 / 16	2025-10-20
1.0.580	43 / 16	2025-10-16
1.0.579	43 / 16	2025-10-16
1.0.578	43 / 16	2025-10-15
1.0.577	43 / 16	2025-10-15
1.0.576	43 / 16	2025-10-14
1.0.575	43 / 16	2025-10-14
1.0.574	43 / 16	2025-10-13
1.0.573	43 / 16	2025-10-13
1.0.572	43 / 16	2025-10-13
1.0.571	43 / 16	2025-10-10
1.0.570	43 / 16	2025-10-10
1.0.569	43 / 16	2025-10-09
1.0.568	43 / 16	2025-10-09
1.0.567	43 / 16	2025-10-08
1.0.566	43 / 16	2025-10-08
1.0.565	43 / 16	2025-10-08
1.0.564	43 / 16	2025-10-07
1.0.563	43 / 16	2025-10-07
1.0.562	43 / 16	2025-10-07
1.0.561	43 / 16	2025-10-07
1.0.560	43 / 16	2025-10-07
1.0.559	43 / 16	2025-10-07
1.0.558	43 / 16	2025-10-06
1.0.557	43 / 16	2025-10-06
1.0.556	43 / 16	2025-10-06
1.0.555	43 / 16	2025-10-03
1.0.554	43 / 16	2025-10-03
1.0.553	43 / 16	2025-10-03
1.0.552	43 / 16	2025-10-03
1.0.551	43 / 16	2025-10-02
1.0.550	43 / 16	2025-10-01
1.0.549	43 / 16	2025-09-30
1.0.548	43 / 16	2025-09-30
1.0.547	41 / 16	2025-09-30
1.0.546	41 / 16	2025-09-29
1.0.545	41 / 16	2025-09-29
1.0.544	41 / 16	2025-09-27
1.0.543	41 / 16	2025-09-27
1.0.542	41 / 16	2025-09-26
1.0.541	41 / 16	2025-09-26
1.0.540	41 / 16	2025-09-26
1.0.539	41 / 16	2025-09-25
1.0.538	41 / 16	2025-09-25
1.0.537	41 / 16	2025-09-21
1.0.536	41 / 16	2025-09-21
1.0.535	41 / 16	2025-09-19
1.0.534	41 / 16	2025-09-19
1.0.533	41 / 16	2025-09-19
1.0.532	41 / 16	2025-09-18
1.0.531	41 / 16	2025-09-16
1.0.530	41 / 16	2025-09-16
1.0.529	41 / 16	2025-09-16
1.0.528	41 / 16	2025-09-16
1.0.527	41 / 16	2025-09-15
1.0.526	41 / 16	2025-09-12
1.0.525	41 / 16	2025-09-11
1.0.524	41 / 16	2025-09-11
1.0.523	41 / 16	2025-09-11
1.0.522	41 / 16	2025-09-10
1.0.521	41 / 16	2025-09-09
1.0.520	41 / 16	2025-09-09
1.0.519	41 / 16	2025-09-06
1.0.518	41 / 16	2025-09-04
1.0.517	41 / 16	2025-09-04
1.0.516	41 / 16	2025-09-04
1.0.515	41 / 16	2025-09-03
1.0.514	41 / 16	2025-09-03
1.0.513	41 / 16	2025-09-03
1.0.512	41 / 16	2025-09-02
1.0.511	41 / 16	2025-08-31
1.0.510	41 / 16	2025-08-29
1.0.509	41 / 16	2025-08-29
1.0.508	41 / 16	2025-08-29
1.0.507	41 / 16	2025-08-29
1.0.506	41 / 16	2025-08-28
1.0.505	41 / 16	2025-08-28
1.0.504	41 / 16	2025-08-28
1.0.503	41 / 16	2025-08-26
1.0.502	41 / 16	2025-08-26
1.0.501	41 / 16	2025-08-26
1.0.500	41 / 16	2025-08-25
1.0.499	41 / 16	2025-08-21
1.0.498	41 / 16	2025-08-21
1.0.497	41 / 16	2025-08-21
1.0.496	41 / 16	2025-08-20
1.0.495	41 / 16	2025-08-19
1.0.494	41 / 16	2025-08-19
1.0.493	41 / 16	2025-08-15
1.0.492	41 / 16	2025-08-15
1.0.491	41 / 16	2025-08-15
1.0.490	41 / 16	2025-08-14
1.0.489	41 / 16	2025-08-13
1.0.488	41 / 16	2025-08-13
1.0.487	41 / 16	2025-08-11

Showing 100 of 428 Next page →