@tryghost/kg-markdown-html-renderer MIT 3 versions

@tryghost/kg-markdown-html-renderer

npm Repository Homepage

`npm install @tryghost/kg-markdown-html-renderer --save`

Versions

MIT

License

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

zimoatghostallouiskernalghostchrisraibleerisdsjohnonolankevinansfieldcobbspuraileencgnjlohminimaluminiumsam-lordpauladamdavisbobvaneckjoeegrigghadretjonhickmanerik-ghostsagzyvershwalmike182ukluissazevedolsingernickmoretonrenatoworksrblstr-ghostevanhahn-ghostweylandswartghost-slimertmciescojonatan-ghost9larsons

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:markdown-it	AI (dependencies): markdown-it is a well-known, widely-used markdown parser; stable dependency for this package.	ai	2026/04/29
dependencies	unvetted-dep:markdown-it-lazy-headers	AI (dependencies): Small markdown-it plugin for lazy headers; expected dependency for this renderer package.	ai	2026/04/29
dependencies	unvetted-dep:markdown-it-image-lazy-loading	AI (dependencies): Small markdown-it plugin for image lazy loading; expected dependency for this renderer package.	ai	2026/04/29

Versions (showing 3 of 3)

Version	Deps	Published
7.2.2	9 / 14	2026-06-02
7.2.1	9 / 14	2026-04-27
7.1.18	9 / 14	2026-04-02

v7.2.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v7.1.18

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.