@vitessce/ome-tiff MIT 5 versions

@vitessce/ome-tiff

npm Repository Homepage

5

Versions

MIT

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

keller-mark

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:d3-array	AI (phantom-deps): Monorepo build artifact; dependency may be consumed transitively or via bundler config.	ai	2026/05/02
phantom-deps	phantom-dep:lodash-es	AI (phantom-deps): Monorepo build artifact; dependency may be consumed transitively or via bundler config.	ai	2026/05/02
phantom-deps	phantom-dep:@vitessce/error	AI (phantom-deps): Same-org monorepo sibling; phantom-dep heuristic unreliable for monorepo packages.	ai	2026/05/02
phantom-deps	phantom-dep:@vitessce/utils	AI (phantom-deps): Same-org monorepo sibling; phantom-dep heuristic unreliable for monorepo packages.	ai	2026/05/02
phantom-deps	phantom-dep:@vitessce/sets-utils	AI (phantom-deps): Same-org monorepo sibling; phantom-dep heuristic unreliable for monorepo packages.	ai	2026/05/02
phantom-deps	phantom-dep:@vitessce/constants-internal	AI (phantom-deps): Same-org monorepo sibling; phantom-dep heuristic unreliable for monorepo packages.	ai	2026/05/02

Versions (showing 5 of 5)

Version	Deps	Published
3.9.11	12 / 0	2026-05-29
3.9.10	12 / 0	2026-05-27
3.9.9	12 / 0	2026-05-20
3.9.8	12 / 0	2026-04-29
3.9.7	12 / 0	2026-04-10

v3.9.11

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.9.10

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.9.9

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.9.8

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.9.7

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.