@storm-software/esbuild

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

stormie-botsullivanpj

Keywords

esbuildmonorepostormstorm-opsstorm-stacksullivanpj

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:prettier-plugin-organize-imports	AI (phantom-deps): Prettier plugin referenced via config, not direct import; stable false positive.	ai	2026/05/30
semgrep	semgrep:dynamic-require	AI (semgrep): Reads project package.json by path to enumerate deps; standard build-tool pattern, not arbitrary module loading.	ai	2026/05/30
phantom-deps	phantom-dep:source-map	AI (phantom-deps): Build toolchain dep used transitively via config; stable false positive for this package.	ai	2026/05/30
phantom-deps	phantom-dep:prettier-plugin-sh	AI (phantom-deps): Prettier plugin referenced via config, not direct import; stable false positive.	ai	2026/05/30
phantom-deps	phantom-dep:prettier-plugin-pkg	AI (phantom-deps): Prettier plugin referenced via config, not direct import; stable false positive.	ai	2026/05/30
provenance	publisher-changed	AI (provenance): Transition from stormie-bot to GitHub Actions CI is a documented automation migration; SLSA provenance attestation confirms integrity.	ai	2026/05/29
dependencies	unvetted-dep:@nx/js	AI (dependencies): @nx/js is a mainstream Nx toolchain package; stable false positive for this build-tools package.	ai	2026/04/29
phantom-deps	phantom-dep:globby	AI (phantom-deps): Globby used in config/build scripts; stable false positive for this package.	ai	2026/04/28
phantom-deps	phantom-dep:@nx/js	AI (phantom-deps): Config-file reference pattern for Nx tooling; stable false positive for this build-tools package.	ai	2026/04/28

Versions (showing 100 of 413)

Version	Deps	Published
0.53.98	12 / 3	2026-03-06
0.53.97	12 / 3	2026-03-06
0.53.96	12 / 3	2026-03-06
0.53.95	12 / 3	2026-03-04
0.53.94	12 / 3	2026-03-04
0.53.93	12 / 3	2026-03-02
0.53.92	12 / 3	2026-02-28
0.53.91	12 / 3	2026-02-24
0.53.90	12 / 3	2026-02-23
0.53.89	12 / 3	2026-02-21
0.53.88	12 / 3	2026-02-20
0.53.87	12 / 3	2026-02-20
0.53.86	12 / 3	2026-02-19
0.53.85	12 / 3	2026-02-19
0.53.84	12 / 3	2026-02-19
0.53.83	12 / 3	2026-02-18
0.53.82	12 / 3	2026-02-18
0.53.81	12 / 3	2026-01-22
0.53.80	12 / 3	2026-01-14
0.53.79	12 / 3	2026-01-14
0.53.78	12 / 3	2026-01-14
0.53.77	12 / 3	2026-01-14
0.53.76	12 / 3	2026-01-14
0.53.75	12 / 3	2025-12-30
0.53.74	12 / 3	2025-12-23
0.53.73	12 / 3	2025-12-19
0.53.72	12 / 3	2025-12-18
0.53.71	12 / 3	2025-12-18
0.53.70	12 / 3	2025-12-17
0.53.69	12 / 3	2025-12-17
0.53.68	12 / 3	2025-12-16
0.53.67	12 / 3	2025-12-15
0.53.66	12 / 3	2025-12-15
0.53.65	12 / 3	2025-12-08
0.53.64	12 / 3	2025-12-08
0.53.63	12 / 3	2025-12-08
0.53.62	12 / 3	2025-12-08
0.53.61	12 / 3	2025-12-08
0.53.60	12 / 3	2025-12-08
0.53.59	12 / 3	2025-12-06
0.53.58	12 / 3	2025-12-06
0.53.57	12 / 3	2025-12-06
0.53.56	12 / 3	2025-12-05
0.53.55	12 / 3	2025-12-05
0.53.54	12 / 3	2025-12-05
0.53.53	12 / 3	2025-12-05
0.53.52	12 / 3	2025-12-05
0.53.51	12 / 3	2025-12-05
0.53.50	12 / 3	2025-11-27
0.53.49	12 / 3	2025-11-25
0.53.48	12 / 3	2025-11-21
0.53.47	12 / 3	2025-11-20
0.53.46	12 / 3	2025-11-20
0.53.45	12 / 3	2025-11-20
0.53.44	12 / 3	2025-11-20
0.53.43	12 / 3	2025-11-19
0.53.42	12 / 3	2025-11-19
0.53.41	12 / 3	2025-11-19
0.53.40	12 / 3	2025-11-16
0.53.39	12 / 3	2025-11-16
0.53.38	12 / 3	2025-11-14
0.53.37	12 / 3	2025-11-14
0.53.36	12 / 3	2025-11-13
0.53.35	12 / 3	2025-11-13
0.53.34	12 / 3	2025-11-13
0.53.33	12 / 3	2025-11-13
0.53.32	12 / 3	2025-11-13
0.53.31	12 / 3	2025-11-13
0.53.30	12 / 3	2025-11-13
0.53.29	12 / 3	2025-11-12
0.53.28	12 / 3	2025-11-12
0.53.27	12 / 3	2025-11-12
0.53.26	12 / 3	2025-11-12
0.53.25	12 / 3	2025-11-12
0.53.24	12 / 3	2025-11-10
0.53.23	12 / 3	2025-11-09
0.53.22	12 / 3	2025-11-08
0.53.21	12 / 3	2025-11-08
0.53.20	12 / 3	2025-11-08
0.53.19	12 / 3	2025-11-05
0.53.18	12 / 3	2025-11-05
0.53.16	12 / 3	2025-10-31
0.53.15	12 / 3	2025-10-31
0.53.14	12 / 3	2025-10-30
0.53.13	12 / 3	2025-10-28
0.53.12	12 / 3	2025-10-28
0.53.11	12 / 3	2025-10-23
0.53.10	12 / 3	2025-10-22
0.53.9	12 / 3	2025-10-22
0.53.8	12 / 3	2025-10-22
0.53.7	12 / 3	2025-10-22
0.53.6	12 / 3	2025-10-17
0.53.5	12 / 3	2025-10-17
0.53.4	12 / 3	2025-10-17
0.53.3	12 / 3	2025-10-17
0.53.2	12 / 3	2025-10-14
0.53.1	12 / 3	2025-10-14
0.53.0	12 / 3	2025-10-08
0.52.20	12 / 3	2025-10-08
0.52.19	12 / 3	2025-10-05

Showing 100 of 413 Next page →

v0.53.98

2 findings

HIGH Publisher changed: stormie-bot → GitHub Actions (on 2026-03-06) provenance

This version was published by a different npm account than previous versions on 2026-03-06. This could indicate a legitimate maintainer transition or an account compromise.