@algolia/logger-console

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

haroenvshortcutseric-zahariafluf

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	missing-githead	AI (provenance): Established Algolia monorepo package with clear official GitHub repo URL; missing gitHead reflects a publish environment change, not a supply chain compromise.	ai	2026/04/24
provenance	publisher-changed	AI (provenance): Publisher changed to GitHub Actions with SLSA provenance attestation — this is a CI/CD migration for the official Algolia monorepo, not a compromise.	ai	2026/04/24
maintainer-change	maintainer-added	AI (maintainer-change): New maintainers are Algolia team members; normal team evolution for a large org package with 2300+ day history.	ai	2026/04/24
maintainer-change	maintainer-removed	AI (maintainer-change): Maintainer removal is consistent with team changes at Algolia; no compromise indicators given SLSA provenance and official repo.	ai	2026/04/24
publish-pattern	new-deps-added	AI (publish-pattern): @algolia/client-common is a first-party Algolia package from the same monorepo at the same version (5.51.0), replacing @algolia/logger-common as part of v5 refactoring.	ai	2026/04/24

Versions (showing 100 of 138)

Version	Deps	Published
5.53.0	1 / 8	2026-05-29
5.52.1	1 / 8	2026-05-05
5.52.0	1 / 8	2026-04-30
5.51.0	1 / 8	2026-04-22
5.50.2	1 / 8	2026-04-14
5.50.1	1 / 8	2026-04-01
5.50.0	1 / 8	2026-03-24
5.49.2	1 / 8	2026-03-09
5.49.1	1 / 8	2026-02-24
5.49.0	1 / 8	2026-02-18
5.48.2	1 / 8	2026-02-17
5.48.1	1 / 8	2026-02-12
5.48.0	1 / 8	2026-02-05
5.47.0	1 / 8	2026-01-20
5.46.4	1 / 8	2026-01-20
5.46.3	1 / 8	2026-01-13
5.46.2	1 / 8	2025-12-23
5.46.1	1 / 8	2025-12-17
5.46.0	1 / 8	2025-12-04
5.45.0	1 / 8	2025-11-24
5.44.0	1 / 8	2025-11-14
5.43.0	1 / 8	2025-11-07
5.42.0	1 / 8	2025-10-30
5.41.0	1 / 8	2025-10-22
5.40.1	1 / 8	2025-10-15
5.40.0	1 / 8	2025-10-07
5.39.0	1 / 8	2025-09-26
5.38.0	1 / 8	2025-09-24
5.37.0	1 / 8	2025-09-03
5.36.0	1 / 8	2025-08-26
5.35.0	1 / 8	2025-07-29
5.34.1	1 / 8	2025-07-23
5.34.0	1 / 8	2025-07-17
5.33.0	1 / 8	2025-07-15
5.32.0	1 / 8	2025-07-08
5.31.0	1 / 8	2025-07-07
5.30.0	1 / 8	2025-07-01
5.29.0	1 / 8	2025-06-19
5.28.0	1 / 8	2025-06-17
5.27.0	1 / 8	2025-06-05
5.26.0	1 / 8	2025-06-04
5.25.0	1 / 8	2025-05-12
5.24.0	1 / 8	2025-04-30
5.23.4	1 / 8	2025-04-14
5.23.3	1 / 8	2025-04-07
5.23.2	1 / 8	2025-04-03
5.23.1	1 / 8	2025-04-01
5.23.0	1 / 8	2025-03-25
5.22.0	1 / 8	2025-03-24
5.21.0	1 / 8	2025-03-11
5.20.4	1 / 8	2025-03-05
5.20.3	1 / 8	2025-02-17
5.20.2	1 / 8	2025-02-11
5.20.1	1 / 8	2025-02-05
5.20.0	1 / 8	2025-01-22
5.19.0	1 / 8	2025-01-07
5.18.0	1 / 8	2024-12-18
5.17.1	1 / 8	2024-12-12
5.17.0	1 / 8	2024-12-11
5.16.0	1 / 8	2024-12-09
5.15.0	1 / 8	2024-11-19
5.14.2	1 / 8	2024-11-15
5.14.1	1 / 8	2024-11-15
5.14.0	1 / 8	2024-11-14
5.13.0	1 / 8	2024-11-06
5.12.0	1 / 8	2024-10-30
5.11.0	1 / 8	2024-10-29
5.10.2	1 / 8	2024-10-23
5.10.1	1 / 8	2024-10-22
5.10.0	1 / 8	2024-10-21
5.9.1	1 / 8	2024-10-18
5.9.0	1 / 8	2024-10-17
5.8.1	1 / 8	2024-10-10
5.8.0	1 / 8	2024-10-08
5.7.0	1 / 8	2024-10-01
5.6.1	1 / 8	2024-09-25
5.6.0	1 / 8	2024-09-24
4.25.3	1 / 0	2025-11-06
4.25.2	1 / 0	2025-06-23
4.25.1	1 / 0	2025-06-23
4.25.0	1 / 0	2025-06-19
4.24.0	1 / 0	2024-06-25
4.23.3	1 / 0	2024-04-10
4.23.2	1 / 0	2024-03-27
4.23.1	1 / 0	2024-03-26
4.23.0	1 / 0	2024-03-26
4.22.1	1 / 0	2024-01-09
4.22.0	1 / 0	2023-12-14
4.21.1	1 / 0	2023-12-12
4.21.0	1 / 0	2023-12-11
4.20.0	1 / 0	2023-09-12
4.19.1	1 / 0	2023-07-20
4.19.0	1 / 0	2023-07-18
4.18.0	1 / 0	2023-06-23
4.17.2	1 / 0	2023-06-08
4.17.1	1 / 0	2023-05-24
4.17.0	1 / 0	2023-04-03
4.16.0	1 / 0	2023-03-23
4.15.0	1 / 0	2023-03-02
4.14.3	1 / 0	2022-12-19

Showing 100 of 138 Next page →

v5.53.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.52.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.52.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.51.0

2 findings

HIGH Publisher changed: shortcuts → GitHub Actions (on 2026-04-22) provenance

This version was published by a different npm account than previous versions on 2026-04-22. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.50.2

2 findings

HIGH Publisher changed: shortcuts → GitHub Actions (on 2026-04-14) provenance

This version was published by a different npm account than previous versions on 2026-04-14. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.50.1

2 findings

HIGH Publisher changed: shortcuts → GitHub Actions (on 2026-04-01) provenance

This version was published by a different npm account than previous versions on 2026-04-01. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.50.0

2 findings

HIGH Publisher changed: shortcuts → GitHub Actions (on 2026-03-24) provenance

This version was published by a different npm account than previous versions on 2026-03-24. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.49.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.49.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.49.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.48.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.48.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.48.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.47.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.46.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.46.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.46.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v5.46.1

2 findings

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

INFO Publisher changed: shortcuts → GitHub Actions (on 2025-12-17) provenance

[Accepted risk] This version was published by a different npm account than previous versions on 2025-12-17. This could indicate a legitimate maintainer transition or an account compromise.