← Home

@storm-software/build-tools

npm Repository Homepage
100
Versions
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

stormie-botsullivanpj

Keywords

monorepoopen-systemstormstorm-opsstorm-stackstormstacksullivanpj

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
provenance publisher-changed AI (provenance): Transition from stormie-bot to GitHub Actions reflects a CI/CD automation migration. SLSA provenance attestation confirms legitimate pipeline publishing for this package. ai
phantom-deps phantom-dep:resolve-from AI (phantom-deps): resolve-from is explicitly declared as a runtime dependency in package.json; the phantom-dep finding is a false positive for this package. ai

Versions (showing 100 of 378)

Version Deps Published
0.158.97 5 / 6
0.158.96 5 / 6
0.158.95 5 / 6
0.158.94 5 / 6
0.158.93 5 / 6
0.158.92 5 / 6
0.158.91 5 / 6
0.158.90 5 / 6
0.158.89 5 / 6
0.158.88 5 / 6
0.158.87 5 / 6
0.158.86 5 / 6
0.158.85 5 / 6
0.158.84 5 / 6
0.158.83 5 / 6
0.158.82 5 / 6
0.158.81 5 / 6
0.158.80 5 / 6
0.158.79 5 / 6
0.158.78 5 / 6
0.158.77 5 / 6
0.158.76 5 / 6
0.158.75 5 / 6
0.158.74 5 / 6
0.158.73 5 / 6
0.158.72 5 / 6
0.158.71 5 / 6
0.158.70 5 / 6
0.158.69 5 / 6
0.158.68 5 / 6
0.158.67 5 / 6
0.158.66 5 / 6
0.158.65 5 / 6
0.158.64 5 / 6
0.158.63 5 / 6
0.158.62 5 / 6
0.158.61 5 / 6
0.158.60 5 / 6
0.158.59 5 / 6
0.158.58 5 / 6
0.158.57 5 / 6
0.158.56 5 / 6
0.158.55 5 / 6
0.158.54 5 / 6
0.158.53 5 / 6
0.158.52 5 / 6
0.158.51 5 / 6
0.158.50 5 / 6
0.158.49 5 / 6
0.158.48 5 / 6
0.158.47 5 / 6
0.158.46 5 / 6
0.158.45 5 / 6
0.158.44 5 / 6
0.158.43 5 / 6
0.158.42 5 / 6
0.158.41 5 / 6
0.158.40 5 / 6
0.158.39 5 / 6
0.158.38 5 / 6
0.158.37 5 / 6
0.158.36 5 / 6
0.158.35 5 / 6
0.158.34 5 / 6
0.158.33 5 / 6
0.158.32 5 / 6
0.158.31 5 / 6
0.158.30 5 / 6
0.158.29 5 / 6
0.158.28 5 / 6
0.158.27 5 / 6
0.158.26 5 / 6
0.158.25 5 / 6
0.158.24 5 / 6
0.158.23 5 / 6
0.158.22 5 / 6
0.158.21 5 / 6
0.158.20 5 / 6
0.158.19 5 / 6
0.158.18 5 / 6
0.158.16 5 / 6
0.158.15 5 / 6
0.158.14 5 / 6
0.158.13 5 / 6
0.158.12 5 / 6
0.158.11 5 / 6
0.158.10 5 / 6
0.158.9 5 / 6
0.158.8 5 / 6
0.158.7 5 / 6
0.158.6 5 / 6
0.158.5 5 / 6
0.158.4 5 / 6
0.158.3 5 / 6
0.158.2 5 / 6
0.158.1 5 / 6
0.158.0 5 / 6
0.157.7 5 / 6
0.157.6 5 / 6
0.157.5 5 / 6
Showing 100 of 378 Next page →

v0.158.86

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.11

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.10

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.9

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.8

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.7

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.6

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.5

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.4

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.3

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.2

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.1

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.158.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.157.7

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.157.6

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.157.5

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.