@stream-io/video-client No license 6 versions

@stream-io/video-client

npm Repository

6

Versions

—

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

tbarbuglitschellenbachvishtreestream-release-botvangalilea88zita.szuperacaleb.murphymartincupela

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
bogus-package	bogus-package	AI (bogus-package): Established SDK package from GetStream org; sparse README/metadata is typical for scoped client libraries.	ai	2026/04/30
npm-metadata	no-description	AI (npm-metadata): Known SDK package; missing description is a cosmetic issue, not a risk signal.	ai	2026/04/30
dependencies	unvetted-dep:@stream-io/logger	AI (dependencies): First-party @stream-io scoped package from the same publisher org.	ai	2026/04/30
dependencies	unvetted-dep:@stream-io/worker-timer	AI (dependencies): First-party @stream-io scoped package from the same publisher org.	ai	2026/04/30
dependencies	unvetted-dep:@protobuf-ts/twirp-transport	AI (dependencies): Well-known protobuf-ts transport library; no malware indicators.	ai	2026/04/30

Versions (showing 6 of 6)

Version	Deps	Published
1.52.0	10 / 17	2026-06-01
1.51.0	10 / 17	2026-05-26
1.50.0	10 / 17	2026-05-18
1.49.0	10 / 17	2026-05-08
1.48.0	10 / 17	2026-04-28
1.45.0	10 / 17	2026-04-02

v1.52.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.51.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.50.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.49.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.48.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.45.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.