@polka-codes/cli — Greenflagged

[![npm version](https://img.shields.io/npm/v/@polka-codes/cli.svg)](https://www.npmjs.com/package/@polka-codes/cli) [![npm downloads](https://img.shields.io/npm/dm/@polka-codes/cli.svg)](https://www.npmjs.com/package/@polka-codes/cli) [![License](https://

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

xlc

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@openrouter/ai-sdk-provider	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/06/01
provenance	publisher-changed	AI (provenance): Transition from personal account to GitHub Actions CI publisher with SLSA provenance; legitimate automation migration.	ai	2026/05/30
source-diff	net-exec-file:dist/bin.cjs	AI (source-diff): CLI tool legitimately makes network calls (AI SDK) and uses dynamic requires via bundler shims; not dropper behavior.	ai	2026/05/30
source-diff	source-size-tripled	AI (source-diff): Size increase reflects bundling all deps into a single CJS binary via tsup; expected for a CLI tool.	ai	2026/05/30
source-diff	obfuscated-file:dist/bin.cjs	AI (source-diff): dist/bin.cjs is a tsup-bundled CLI binary; long lines are standard bundler output, not obfuscation.	ai	2026/05/30
phantom-deps	phantom-dep:lodash	AI (phantom-deps): Config-file reference pattern; stable for this CLI package.	ai	2026/05/30
phantom-deps	phantom-dep:dotenv	AI (phantom-deps): Config-referenced environment loader; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:commander	AI (phantom-deps): Config-referenced CLI framework; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:lodash-es	AI (phantom-deps): Config-referenced utility library; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:mime-types	AI (phantom-deps): Config-referenced MIME utility; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/google	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/deepseek	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/provider	AI (phantom-deps): Config-referenced AI provider base; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/anthropic	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@inquirer/prompts	AI (phantom-deps): Config-referenced CLI prompts; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@polka-codes/core	AI (phantom-deps): Same-org scoped dependency; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/google-vertex	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:ollama-ai-provider-v2	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@polka-codes/cli-shared	AI (phantom-deps): Same-org scoped dependency; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/openai-compatible	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:@ai-sdk/openai	AI (phantom-deps): Config-referenced AI provider; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:ai	AI (phantom-deps): Config-referenced AI SDK dependency; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:zod	AI (phantom-deps): Config-referenced validation library; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:ulid	AI (phantom-deps): Config-referenced utility; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:yaml	AI (phantom-deps): Config-referenced parser; stable pattern for this CLI package.	ai	2026/05/18
phantom-deps	phantom-dep:chalk	AI (phantom-deps): Config-referenced CLI styling; stable pattern for this CLI package.	ai	2026/05/18
typosquat	typosquat.levenshtein:joi	AI (typosquat): Scoped package @polka-codes/cli is not a plausible typosquat of joi; different namespace and purpose.	ai	2026/05/03
phantom-deps	phantom-dep:@ai-sdk/provider-utils	AI (phantom-deps): Declared runtime dep; used transitively or indirectly in bundled CLI output.	ai	2026/05/03
phantom-deps	phantom-dep:ora	AI (phantom-deps): ora is a declared runtime dep in package.json; phantom-dep heuristic false positive for this CLI bundle.	ai	2026/05/03

Versions (showing 100 of 145)

Version	Deps	Published
0.10.32	23 / 2	2026-06-01
0.10.31	23 / 2	2026-05-12
0.10.30	23 / 2	2026-05-12
0.10.29	23 / 2	2026-05-04
0.10.28	23 / 2	2026-05-03
0.10.27	23 / 2	2026-04-30
0.10.26	23 / 2	2026-04-10
0.10.25	23 / 2	2026-04-07
0.10.24	23 / 2	2026-04-07
0.10.23	23 / 2	2026-04-07
0.10.22	23 / 2	2026-04-07
0.10.21	23 / 2	2026-04-07
0.10.20	23 / 2	2026-04-07
0.10.19	23 / 2	2026-04-06
0.10.18	23 / 2	2026-04-06
0.10.17	23 / 2	2026-04-02
0.10.16	23 / 2	2026-04-02
0.10.13	23 / 2	2026-04-01
0.10.11	23 / 2	2026-04-01
0.10.10	23 / 2	2026-04-01
0.10.9	23 / 2	2026-04-01
0.10.8	23 / 2	2026-04-01
0.10.6	23 / 2	2026-04-01
0.10.5	23 / 2	2026-03-30
0.10.3	23 / 2	2026-03-23
0.10.1	23 / 2	2026-03-11
0.9.102	24 / 2	2026-03-05
0.9.101	24 / 2	2026-02-22
0.9.100	24 / 2	2026-02-09
0.9.99	24 / 2	2026-01-29
0.9.98	24 / 2	2026-01-28
0.9.97	24 / 2	2026-01-28
0.9.96	24 / 2	2026-01-28
0.9.95	24 / 2	2026-01-28
0.9.94	24 / 2	2026-01-28
0.9.93	24 / 2	2026-01-28
0.9.92	24 / 2	2026-01-27
0.9.91	24 / 2	2026-01-23
0.9.90	24 / 2	2026-01-23
0.9.89	24 / 2	2026-01-18
0.9.88	24 / 2	2026-01-14
0.9.86	23 / 2	2026-01-08
0.9.85	23 / 2	2026-01-06
0.9.84	22 / 2	2026-01-05
0.9.83	22 / 2	2026-01-05
0.9.82	22 / 2	2026-01-04
0.9.81	21 / 2	2025-12-19
0.9.80	21 / 2	2025-12-17
0.9.79	21 / 2	2025-12-16
0.9.78	21 / 2	2025-12-11
0.9.77	21 / 2	2025-12-10
0.9.76	21 / 2	2025-12-10
0.9.74	21 / 2	2025-12-09
0.9.73	21 / 2	2025-12-09
0.9.72	21 / 2	2025-12-09
0.9.71	21 / 2	2025-12-04
0.9.70	21 / 2	2025-12-03
0.9.69	21 / 2	2025-12-03
0.9.68	21 / 2	2025-11-28
0.9.67	21 / 2	2025-11-28
0.9.66	21 / 2	2025-11-27
0.9.65	21 / 2	2025-11-24
0.9.64	21 / 2	2025-11-23
0.9.63	20 / 2	2025-11-22
0.9.62	20 / 2	2025-11-19
0.9.61	20 / 2	2025-11-19
0.9.60	20 / 2	2025-11-18
0.9.59	20 / 2	2025-11-17
0.9.58	20 / 2	2025-11-12
0.9.57	20 / 2	2025-11-12
0.9.56	20 / 2	2025-11-06
0.9.55	20 / 2	2025-11-06
0.9.54	20 / 2	2025-11-02
0.9.53	20 / 2	2025-11-02
0.9.52	21 / 2	2025-10-30
0.9.51	21 / 2	2025-10-30
0.9.50	21 / 2	2025-10-29
0.9.49	21 / 2	2025-10-28
0.9.48	21 / 2	2025-10-27
0.9.47	21 / 2	2025-10-25
0.9.46	21 / 2	2025-10-22
0.9.45	20 / 2	2025-10-08
0.9.44	20 / 2	2025-10-07
0.9.43	20 / 2	2025-10-06
0.9.42	20 / 2	2025-10-06
0.9.41	20 / 2	2025-10-05
0.9.40	20 / 2	2025-10-05
0.9.39	19 / 2	2025-09-23
0.9.38	19 / 2	2025-09-23
0.9.37	19 / 2	2025-09-12
0.9.36	19 / 2	2025-09-11
0.9.35	19 / 2	2025-09-11
0.9.34	19 / 2	2025-09-10
0.9.33	19 / 2	2025-09-08
0.9.32	19 / 2	2025-09-08
0.9.31	19 / 2	2025-09-05
0.9.30	19 / 2	2025-09-05
0.9.29	19 / 2	2025-09-05
0.9.28	19 / 2	2025-09-04
0.9.27	19 / 2	2025-08-31

Showing 100 of 145 Next page →

v0.10.32

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.31

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.30

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.29

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.28

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.27

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.26

4 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-10) provenance

This version was published by a different npm account than previous versions on 2026-04-10. This could indicate a legitimate maintainer transition or an account compromise.

HIGH New obfuscated file: dist/bin.cjs source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/bin.cjs source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.25

4 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-07) provenance

This version was published by a different npm account than previous versions on 2026-04-07. This could indicate a legitimate maintainer transition or an account compromise.

HIGH New obfuscated file: dist/bin.cjs source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/bin.cjs source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.24

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-07) provenance

This version was published by a different npm account than previous versions on 2026-04-07. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.23

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-07) provenance

This version was published by a different npm account than previous versions on 2026-04-07. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.22

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-07) provenance

This version was published by a different npm account than previous versions on 2026-04-07. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.21

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-07) provenance

This version was published by a different npm account than previous versions on 2026-04-07. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.20

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-07) provenance

This version was published by a different npm account than previous versions on 2026-04-07. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.19

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-06) provenance

This version was published by a different npm account than previous versions on 2026-04-06. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.18

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-06) provenance

This version was published by a different npm account than previous versions on 2026-04-06. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.17

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-02) provenance

This version was published by a different npm account than previous versions on 2026-04-02. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.10.16

2 findings

HIGH Publisher changed: xlc → GitHub Actions (on 2026-04-02) provenance

This version was published by a different npm account than previous versions on 2026-04-02. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.