← Home

@powerlines/plugin-alloy

npm Repository Homepage

A package containing various Alloy framework components and helper utilities.

51
Versions
Apache-2.0
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

stormie-botsullivanpj

Keywords

alloy-jspowerlinespowerlines-plugin

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
provenance publisher-changed AI (provenance): stormie-bot is the org's automation account with 2775 approved packages; publisher change from GH Actions is expected CI/CD rotation. ai
phantom-deps phantom-dep:@vue/shared AI (phantom-deps): @vue/shared is a framework-scoped Vue internal loaded by convention; not directly imported but legitimately used as a peer/transitive dep in Vue-ecosystem packages. ai
publish-pattern new-deps-added AI (publish-pattern): New dep is from the same @alloy-js namespace already present in the package; not a suspicious lateral dependency addition. ai
phantom-deps phantom-dep:defu AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/json AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/path AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/capnp AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@alloy-js/core AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/convert AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/helpers AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@alloy-js/markdown AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/type-checks AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@alloy-js/typescript AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@stryke/string-format AI (phantom-deps): Config-referenced dependency; stable pattern for this build tool package. ai
phantom-deps phantom-dep:@babel/preset-typescript AI (phantom-deps): Framework-scoped Babel preset; loaded by convention, not direct import. ai
dependencies unvetted-dep:@alloy-js/rollup-plugin AI (dependencies): @alloy-js/rollup-plugin is part of the same @alloy-js ecosystem as other vetted deps in this package; consistent with legitimate Alloy framework usage. ai
phantom-deps phantom-dep:@powerlines/deepkit AI (phantom-deps): Same-org monorepo package; phantom dep pattern is expected in this monorepo setup. ai
phantom-deps phantom-dep:@alloy-js/rollup-plugin AI (phantom-deps): Build tool dependency referenced in config files, not directly imported at runtime. Expected pattern for a plugin package in this ecosystem. ai
phantom-deps phantom-dep:@babel/plugin-syntax-jsx AI (phantom-deps): Framework-scoped Babel plugin loaded by convention, not direct import. Standard pattern for packages integrating with Babel transform pipelines. ai
phantom-deps phantom-dep:@powerlines/plugin-babel AI (phantom-deps): Same-org plugin dependency referenced by convention. Stable false positive for this package. ai
phantom-deps phantom-dep:@powerlines/plugin-plugin AI (phantom-deps): Same-org plugin dependency referenced by convention. Stable false positive for this package. ai
phantom-deps phantom-dep:@babel/plugin-syntax-typescript AI (phantom-deps): Framework-scoped Babel plugin loaded by convention. Standard pattern for TypeScript-aware plugin packages. ai
phantom-deps phantom-dep:powerlines AI (phantom-deps): powerlines is the parent framework package; referenced in config files by convention for this plugin package. Stable false positive for this org's plugin packages. ai
phantom-deps phantom-dep:@storm-software/config-tools AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:@stryke/types AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:@stryke/fs AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:prettier AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:@alloy-js/json AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:@stryke/unique-id AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:@alloy-js/babel-preset AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai
phantom-deps phantom-dep:unctx AI (phantom-deps): Build/config dependency; legitimate pattern in TypeScript/monorepo projects. ai

Versions (showing 51 of 270)

View all versions
Version Deps Published
0.26.220 22 / 2
0.26.219 22 / 2
0.26.218 22 / 2
0.26.217 22 / 2
0.26.216 22 / 2
0.26.215 22 / 2
0.26.214 22 / 2
0.26.213 22 / 2
0.26.212 22 / 2
0.26.211 22 / 2
0.26.210 22 / 2
0.26.209 22 / 2
0.26.208 22 / 2
0.26.207 22 / 2
0.26.206 22 / 2
0.26.205 22 / 2
0.26.204 22 / 2
0.26.203 22 / 2
0.26.202 22 / 2
0.26.201 22 / 2
0.26.200 22 / 2
0.26.199 22 / 2
0.26.198 22 / 2
0.26.197 22 / 2
0.26.196 22 / 2
0.26.195 22 / 2
0.26.194 22 / 2
0.26.193 22 / 2
0.26.192 22 / 2
0.26.180 22 / 2
0.26.179 22 / 2
0.26.178 22 / 2
0.26.177 22 / 2
0.26.176 22 / 2
0.26.175 22 / 2
0.26.174 22 / 2
0.26.172 22 / 2
0.26.171 22 / 2
0.26.170 22 / 2
0.26.169 22 / 2
0.26.168 22 / 2
0.26.167 22 / 2
0.26.166 22 / 2
0.26.165 22 / 2
0.26.164 22 / 2
0.26.163 22 / 2
0.26.162 22 / 2
0.26.161 22 / 2
0.26.160 22 / 2
0.26.159 22 / 2
0.26.158 22 / 2

v0.26.220

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.219

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.218

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.217

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.216

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.215

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.214

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.213

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.212

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.211

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.210

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.209

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.208

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.207

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.206

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.205

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.204

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.203

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.202

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.201

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.200

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.199

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.198

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.197

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.196

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.195

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.194

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.193

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.192

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.180

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.179

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.178

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.177

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.176

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.175

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.174

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.172

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.171

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.170

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.169

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.168

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.167

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.166

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.165

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.164

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.163

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.162

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.161

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.160

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.159

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.26.158

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.