@powerlines/plugin-graphql

A Powerlines plugin to generate project code from GraphQL schemas.

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

stormie-botsullivanpj

Keywords

graphqlpowerlinesstorm-softwarepowerlines-plugin

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
source-diff	obfuscated-file:dist/powerlines/src/plugin-utils/get-config-path.cjs	AI (source-diff): File is minified build output of a config path resolver; logic is transparent (existsSync checks for various config file extensions). Not obfuscated malicious code.	ai	2026/04/27
source-diff	obfuscated-file:dist/powerlines/src/plugin-utils/get-config-path.mjs	AI (source-diff): ESM variant of the same minified config path resolver. Benign minified build output, not obfuscation.	ai	2026/04/27
provenance	publisher-changed	AI (provenance): Publisher changed to GitHub Actions CI with SLSA Sigstore attestation — a legitimate migration to automated publishing, not a compromise indicator for this package.	ai	2026/04/27
phantom-deps	phantom-dep:@stryke/path	AI (phantom-deps): Phantom dependency pattern is legitimate for utility libraries used indirectly in config.	ai	2026/04/27
phantom-deps	phantom-dep:@stryke/types	AI (phantom-deps): Phantom dependency pattern is legitimate for type utilities used indirectly.	ai	2026/04/27
phantom-deps	phantom-dep:defu	AI (phantom-deps): Phantom dependency pattern is legitimate for config-driven code generation tools; defu is used indirectly.	ai	2026/04/27
phantom-deps	phantom-dep:@graphql-codegen/cli	AI (phantom-deps): Phantom dependency pattern is legitimate for code generation tools; CLI is used indirectly.	ai	2026/04/27
phantom-deps	phantom-dep:@stryke/type-checks	AI (phantom-deps): Phantom dependency pattern is legitimate for utility libraries used indirectly.	ai	2026/04/27
phantom-deps	phantom-dep:jiti	AI (phantom-deps): Phantom dependency pattern is legitimate for config-driven code generation tools; jiti is used indirectly.	ai	2026/04/27
phantom-deps	phantom-dep:powerlines	AI (phantom-deps): Phantom dependency pattern is legitimate for monorepo plugins; powerlines is used indirectly.	ai	2026/04/27

Versions (showing 51 of 420)

View all versions

Version	Deps	Published
0.1.588	8 / 3	2026-06-05
0.1.587	8 / 3	2026-06-05
0.1.586	8 / 3	2026-06-05
0.1.585	8 / 3	2026-06-03
0.1.584	8 / 3	2026-06-03
0.1.583	8 / 3	2026-06-03
0.1.582	8 / 3	2026-06-03
0.1.581	8 / 3	2026-06-03
0.1.580	8 / 3	2026-06-03
0.1.579	8 / 3	2026-06-03
0.1.578	8 / 3	2026-06-03
0.1.577	8 / 3	2026-06-03
0.1.576	8 / 3	2026-06-03
0.1.575	8 / 3	2026-06-03
0.1.574	8 / 3	2026-06-03
0.1.573	8 / 3	2026-06-03
0.1.572	8 / 3	2026-06-02
0.1.571	8 / 3	2026-06-02
0.1.570	8 / 3	2026-06-02
0.1.569	8 / 3	2026-06-02
0.1.568	8 / 3	2026-06-02
0.1.567	8 / 3	2026-06-02
0.1.566	8 / 3	2026-06-01
0.1.565	8 / 3	2026-06-01
0.1.564	8 / 3	2026-06-01
0.1.563	8 / 3	2026-06-01
0.1.562	8 / 3	2026-06-01
0.1.561	8 / 3	2026-06-01
0.1.560	8 / 3	2026-06-01
0.1.559	8 / 3	2026-06-01
0.1.558	8 / 3	2026-05-31
0.1.557	8 / 3	2026-05-31
0.1.556	8 / 3	2026-05-31
0.1.555	8 / 3	2026-05-31
0.1.554	8 / 3	2026-05-31
0.1.553	8 / 3	2026-05-30
0.1.552	8 / 3	2026-05-30
0.1.551	8 / 3	2026-05-30
0.1.550	8 / 3	2026-05-30
0.1.549	8 / 3	2026-05-30
0.1.548	8 / 3	2026-05-30
0.1.547	8 / 3	2026-05-28
0.1.546	8 / 3	2026-05-28
0.1.545	8 / 3	2026-05-28
0.1.543	8 / 3	2026-05-28
0.1.542	8 / 3	2026-05-28
0.1.541	8 / 3	2026-05-27
0.1.540	8 / 3	2026-05-27
0.1.539	8 / 3	2026-05-27
0.1.538	8 / 3	2026-05-27
0.1.537	8 / 3	2026-05-27