@promptbook/pdf BUSL-1.1 14 versions

@promptbook/pdf

npm Repository Homepage

Promptbook: Create persistent AI agents that turn your company's scattered knowledge into action

14

Versions

BUSL-1.1

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

hejny

Keywords

aiai-agentsai-application-frameworkai-assistantai-automationai-developmentai-frameworkai-opsai-orchestrationai-pipelineai-platformai-scriptingai-sdkai-workflowapi-integrationautomation-frameworkbook-languagebrowserchatbotcontent-generationconversational-aicross-platformcross-providerdeveloper-toolsdocument-processingembeddingsfunction-callinggenerative-aihuman-readablejavascriptknowledge-baselanguage-modellarge-language-modelsllmllmopsmachine-learningmarkdown-dslmlopsmodel-agnosticmulti-modelmultimodalnatural-languagenatural-language-processingnlpnodejsorchestrationpdfpdf-processingpipelineplain-englishpromptprompt-chainingprompt-engineeringprompt-managementprompt-templateragreasoningtask-automationtemplatetext-generationtext-processingtypescriptunified-interfacevendor-agnosticworkflowworkflow-engine

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
semgrep	semgrep:eval-usage	AI (semgrep): Internal script executor with a TODO to replace; not user-controlled external input in a supply-chain-attack sense.	ai	2026/05/15
typosquat	typosquat.levenshtein:pg	AI (typosquat): @promptbook/pdf is a scoped AI framework package; Levenshtein proximity to 'pg' is coincidental.	ai	2026/05/15
semgrep	semgrep:api-obfuscation-reflect	AI (semgrep): Standard Proxy trap pattern using Reflect.get; not obfuscation.	ai	2026/05/15
semgrep	semgrep:new-function-constructor	AI (semgrep): Used only to detect Node.js global context; fixed, benign input.	ai	2026/05/15

Versions (showing 14 of 14)

Version	Deps	Published
0.110.0	7 / 0	2026-02-13
0.105.0	7 / 0	2026-01-29
0.104.0	7 / 0	2025-12-31
0.103.0	7 / 0	2025-12-11
0.102.0	7 / 0	2025-10-14
0.101.0	7 / 0	2025-10-03
0.100.2	7 / 0	2025-09-08
0.100.1	7 / 0	2025-09-04
0.100.0	7 / 0	2025-09-03
0.98.0	8 / 0	2025-06-17
0.95.0	8 / 0	2025-05-21
0.94.0	8 / 0	2025-05-21
0.93.0	8 / 0	2025-05-14
0.92.0	8 / 0	2025-05-13

v0.110.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.105.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.104.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.103.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.102.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.101.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.100.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.100.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.100.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.98.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.95.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.94.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.93.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.92.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.