← Home

@quenty/clienttranslator

npm Repository Homepage

Gets local translator for player

12
Versions
MIT
License
Yes
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

quenty

Keywords

RobloxNevermoreLuaLocalization

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
npm-metadata url-dep:@quentystudios/jest-lua AI (npm-metadata): Test/dev dependency from same org (quentystudios); not a runtime risk for this Roblox Lua package. ai
dependencies unvetted-dep:@quentystudios/jest-lua AI (dependencies): Same org scope (@quentystudios), used as test tooling; stable pattern across this package's releases. ai
dependencies unvetted-dep:@quenty/rx AI (dependencies): Same @quenty org scope; part of the established NevermoreEngine monorepo ecosystem. ai
phantom-deps phantom-dep:@quenty/blend AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/enums AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/table AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/loader AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/string AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/promise AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
install-scripts install-script:preinstall AI (install-scripts): npx only-allow pnpm is a standard package manager enforcer, not malicious code. ai
phantom-deps phantom-dep:@quenty/promisemaid AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/valueobject AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/instanceutils AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/pseudolocalize AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quentystudios/jest-lua AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/nevermore-test-runner AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/servicebag AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/rx AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai
phantom-deps phantom-dep:@quenty/maid AI (phantom-deps): Roblox/Lua package; JS import analysis doesn't apply to Lua module resolution. ai

Versions (showing 12 of 12)

Version Deps Published
14.36.0 15 / 0
14.35.2 15 / 0
14.35.1 15 / 0
14.35.0 15 / 0
14.34.0 15 / 0
14.32.0 15 / 0
14.26.1 12 / 0
14.24.0 12 / 0
14.23.7 12 / 0
14.23.1 11 / 0
14.20.1 11 / 0
14.20.0 11 / 0

v14.36.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v14.35.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v14.35.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v14.34.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.32.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.26.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.24.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.23.7

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.23.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.20.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v14.20.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.