@moneydevkit/lightning-js-darwin-x64 MIT 7 versions

@moneydevkit/lightning-js-darwin-x64

npm Repository Homepage

This is the **x86_64-apple-darwin** binary for `@moneydevkit/lightning-js`

7

Versions

MIT

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

martinsaponatelkinsamackillopezefrd-mdknpslaney

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
bogus-package	bogus-package	AI (bogus-package): Platform-specific native binary package; no deps, tiny payload, and sparse README are all normal for this artifact type.	ai	2026/04/30

Versions (showing 7 of 7)

Version	Deps	Published
0.1.86	0 / 0	2026-06-01
0.1.85	0 / 0	2026-06-01
0.1.84	0 / 0	2026-05-19
0.1.83	0 / 0	2026-05-18
0.1.82	0 / 0	2026-04-28
0.1.81	0 / 0	2026-04-22
0.1.80	0 / 0	2026-04-22

v0.1.86

2 findings

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

INFO Publisher changed: martinsapo → amackillop (on 2026-06-01, known maintainer) provenance

This version was published by a different npm account (amackillop) than the most recent previously approved version (martinsapo) on 2026-06-01, but amackillop is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.1.85

2 findings

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

INFO Publisher changed: martinsapo → amackillop (on 2026-06-01, known maintainer) provenance

This version was published by a different npm account (amackillop) than the most recent previously approved version (martinsapo) on 2026-06-01, but amackillop is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.1.84

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.83

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.82

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.81

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.80

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.