@powerlines/plugin-satori
A Powerlines plugin to use Satori to generate SVG files from jsx/tsx components.
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| phantom-deps | phantom-dep:@stryke/path | AI (phantom-deps): Config-file reference pattern; stable for this package. | ai | |
| phantom-deps | phantom-dep:defu | AI (phantom-deps): Config-file reference pattern; stable for this package. | ai | |
| phantom-deps | phantom-dep:@stryke/fs | AI (phantom-deps): Config-file reference pattern; stable for this package. | ai | |
| phantom-deps | phantom-dep:@stryke/convert | AI (phantom-deps): Config-file reference pattern; stable for this package. | ai | |
| phantom-deps | phantom-dep:@stryke/helpers | AI (phantom-deps): @stryke/helpers is a Storm Software internal utility library; phantom-dep finding is a false positive for this publisher's monorepo pattern. | ai | |
| dependencies | unvetted-dep:satori | AI (dependencies): satori is a well-known Vercel open-source library for SVG generation; this package is explicitly a satori plugin wrapper. The dependency is expected and legitimate. | ai | |
| phantom-deps | phantom-dep:@stryke/type-checks | AI (phantom-deps): @stryke/type-checks is a Storm Software internal library; phantom-dep finding is a false positive for this publisher's monorepo pattern. | ai | |
| phantom-deps | phantom-dep:jiti | AI (phantom-deps): jiti is a common config-loading runtime; declared for config file support in this monorepo-style package. Not a security concern. | ai | |
| phantom-deps | phantom-dep:@stryke/json | AI (phantom-deps): @stryke/* packages are Storm Software's own internal libraries, consistent with the publisher. Referenced in config files is expected for this ecosystem. | ai | |
| phantom-deps | phantom-dep:@stryke/types | AI (phantom-deps): @stryke/types is a Storm Software internal type library; phantom-dep finding is a false positive for this publisher's monorepo pattern. | ai |
Versions (showing 21 of 434)
| Version | Deps | Published |
|---|---|---|
| 0.1.72 | 11 / 6 | |
| 0.1.71 | 11 / 6 | |
| 0.1.70 | 11 / 6 | |
| 0.1.69 | 11 / 6 | |
| 0.1.68 | 11 / 6 | |
| 0.1.67 | 11 / 6 | |
| 0.1.66 | 11 / 6 | |
| 0.1.65 | 11 / 6 | |
| 0.1.64 | 11 / 6 | |
| 0.1.63 | 11 / 6 | |
| 0.1.62 | 11 / 6 | |
| 0.1.61 | 11 / 6 | |
| 0.1.60 | 11 / 6 | |
| 0.1.59 | 11 / 6 | |
| 0.1.58 | 11 / 6 | |
| 0.1.57 | 11 / 6 | |
| 0.1.56 | 11 / 6 | |
| 0.1.27 | 11 / 6 | |
| 0.1.5 | 11 / 6 | |
| 0.1.4 | 11 / 6 | |
| 0.1.0 | 11 / 6 |
v0.1.72
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.71
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.70
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.69
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.68
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.67
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.66
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.65
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.64
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.63
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.62
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.61
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.60
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.59
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.58
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.57
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.56
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.27
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.