@tinacms/cli Apache-2.0 17 versions

@tinacms/cli

npm Repository Homepage

The _TinaCloud CLI_ can be used to set up your project with TinaCloud configuration, and run a local version of the TinaCloud content-api (using your file system's content). For a real-world example of how this is being used checkout the [TinaCloud Starte

17

Versions

Apache-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

wicksipediarobt-tina

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:many-level	AI (dependencies): many-level is a legitimate LevelDB multi-process module; stable dependency for this package.	ai	2026/05/13
typosquat	typosquat.levenshtein:joi	AI (typosquat): Established @tinacms scoped package; edit-distance match to 'joi' is coincidental, not a typosquat.	ai	2026/04/29
phantom-deps	phantom-dep:@tinacms/app	AI (phantom-deps): Same-org dependency; phantom-dep heuristic is unreliable for monorepo packages that may be loaded dynamically.	ai	2026/04/29
phantom-deps	phantom-dep:yup	AI (phantom-deps): Config-file reference pattern; stable false positive for this CLI tool.	ai	2026/04/29
phantom-deps	phantom-dep:typanion	AI (phantom-deps): Config-file reference pattern; stable false positive for this CLI tool.	ai	2026/04/29
phantom-deps	phantom-dep:altair-express-middleware	AI (phantom-deps): Config-file reference pattern; stable false positive for this CLI tool.	ai	2026/04/29

Versions (showing 17 of 17)

Version	Deps	Published
2.4.3	51 / 19	2026-06-03
2.4.2	51 / 19	2026-06-01
2.4.1	51 / 17	2026-05-28
2.4.0	51 / 17	2026-05-25
2.3.1	50 / 16	2026-05-14
2.3.0	50 / 16	2026-05-12
2.2.6	50 / 16	2026-05-08
2.2.5	50 / 16	2026-04-29
2.2.4	50 / 16	2026-04-27
2.2.3	50 / 16	2026-04-21
2.2.2	50 / 16	2026-04-08
2.2.1	50 / 16	2026-03-30
2.2.0	50 / 16	2026-03-25
2.1.11	50 / 16	2026-03-19
2.1.10	50 / 16	2026-03-17
2.1.9	50 / 16	2026-03-04
2.1.8	50 / 16	2026-03-02

v2.4.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.4.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.4.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.4.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.3.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.3.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.2.6

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.2.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.2.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.2.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.2.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.2.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.1.11

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.1.10

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.1.9

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.1.8

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.