@n8n/db — Greenflagged

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

n8n-matsuuutomin8njan_n8n_iocornelius.suermann

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
publish-pattern	rapid-publish	AI (publish-pattern): n8n monorepo uses automated CI/CD with SLSA provenance; rapid publishes are expected across coordinated package releases.	ai	2026/05/24
license	uncommon-license:SEE LICENSE IN LICENSE.md	AI (license): Dual-license pattern (OSS + EE); stable for n8n packages.	ai	2026/05/18
source-diff	large-new-source-files	AI (source-diff): Active n8n monorepo package; new source files are expected across frequent releases.	ai	2026/05/15
dependencies	unvetted-dep:@n8n/typeorm	AI (dependencies): Internal n8n fork of TypeORM; stable dependency for this package.	ai	2026/05/15
dependencies	unvetted-dep:p-lazy	AI (dependencies): p-lazy is a well-known sindresorhus utility; stable dependency for this package.	ai	2026/05/15
npm-metadata	no-description	AI (npm-metadata): Internal monorepo package; missing description is a known pattern, not a malware signal here.	ai	2026/05/15
typosquat	typosquat.levenshtein:pg	AI (typosquat): Scoped @n8n/db is an internal n8n package, not a typosquat of pg.	ai	2026/04/30
phantom-deps	phantom-dep:reflect-metadata	AI (phantom-deps): reflect-metadata is a known implicit runtime dep for TypeORM/decorator-based packages.	ai	2026/04/30
typosquat	typosquat.levenshtein:qs	AI (typosquat): Scoped @n8n/db is an internal n8n package, not a typosquat of qs.	ai	2026/04/30

Versions (showing 73 of 73)

Version	Deps	Published
1.22.4	20 / 3	2026-06-01
1.22.1	20 / 3	2026-05-22
1.21.3	20 / 3	2026-05-21
1.21.1	20 / 3	2026-05-13
1.20.4	20 / 3	2026-05-14
1.20.2	20 / 3	2026-05-07
1.19.3	20 / 3	2026-05-06
1.19.2	20 / 3	2026-05-06
1.19.1	20 / 3	2026-04-30
1.19.0	20 / 3	2026-04-28
1.18.5	20 / 3	2026-04-30
1.18.4	20 / 3	2026-04-28
1.18.2	20 / 3	2026-04-23
1.18.0	20 / 3	2026-04-21
1.17.1	20 / 3	2026-04-15
1.17.0	20 / 3	2026-04-13
1.16.0	20 / 3	2026-04-07
1.15.0	20 / 3	2026-03-30
1.14.0	20 / 3	2026-03-24
1.13.1	20 / 3	2026-03-25
1.13.0	20 / 3	2026-03-16
1.12.0	20 / 3	2026-03-09
1.11.1	20 / 3	2026-03-09
1.11.0	20 / 3	2026-03-02
1.10.3	20 / 3	2026-03-06
1.10.2	20 / 3	2026-02-27
1.10.0	20 / 3	2026-02-23
1.9.1	20 / 3	2026-02-25
1.8.2	20 / 3	2026-02-13
1.8.1	20 / 3	2026-02-11
1.7.3	20 / 3	2026-02-11
1.7.2	20 / 3	2026-02-09
1.7.1	20 / 3	2026-02-05
1.6.2	19 / 3	2026-02-06
1.5.1	19 / 3	2026-01-22
1.3.4	19 / 3	2026-01-16
1.3.3	19 / 3	2026-01-13
1.2.4	19 / 3	2026-01-08
1.2.3	19 / 3	2026-01-06
1.2.2	19 / 3	2026-01-02
1.2.1	19 / 3	2025-12-23
1.2.0	19 / 3	2025-12-22
1.1.2	19 / 3	2025-12-22
1.1.1	19 / 3	2025-12-17
1.0.2	19 / 3	2025-12-12
1.0.1	19 / 3	2025-12-10
0.34.22	19 / 3	2026-04-09
0.34.20	19 / 3	2026-03-25
0.34.19	19 / 3	2026-03-11
0.34.17	19 / 3	2026-02-25
0.34.16	19 / 3	2026-02-20
0.34.14	19 / 3	2026-02-06
0.34.12	19 / 3	2026-01-23
0.34.9	19 / 3	2026-01-13
0.34.8	19 / 3	2026-01-08
0.34.7	19 / 3	2026-01-02
0.34.6	19 / 3	2025-12-23
0.34.5	19 / 3	2025-12-22
0.34.4	19 / 3	2025-12-17
0.34.1	19 / 3	2025-12-04
0.33.3	19 / 3	2025-12-04
0.33.2	19 / 3	2025-11-28
0.33.0	19 / 3	2025-11-24
0.32.3	19 / 3	2025-11-26
0.32.2	19 / 3	2025-11-20
0.32.0	19 / 3	2025-11-18
0.31.3	19 / 3	2025-11-19
0.31.2	19 / 3	2025-11-14
0.31.1	19 / 3	2025-11-11
0.31.0	19 / 3	2025-11-10
0.30.1	19 / 3	2025-11-14
0.30.0	19 / 3	2025-11-03
0.29.1	19 / 3	2025-11-05