@aws-cdk/aws-service-spec
A specification of built-in AWS resources
Supply chain provenance
Status for the latest visible version.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| npm-metadata | suspicious-initial-version | AI (npm-metadata): AWS CDK monorepo uses 0.0.0 as a standard placeholder version for internal packages managed by projen. This pattern is consistent across all 242 published versions. | ai | |
| bogus-package | bogus-package | AI (bogus-package): Internal AWS CDK tooling package; missing README/repo/keywords are expected for ecosystem-internal spec packages not intended for general public consumption. | ai | |
| dependencies | unvetted-dep:@aws-cdk/service-spec-types | AI (dependencies): Sibling package in the same cdklabs/awscdk-service-spec monorepo; legitimate internal dependency that will always accompany this package. | ai | |
| phantom-deps | phantom-dep:@cdklabs/tskb | AI (phantom-deps): @cdklabs/tskb is a declared runtime dependency from the same cdklabs org; phantom detection is a false positive for this package's usage pattern. | ai |
Versions (showing 51 of 251)
| Version | Deps | Published |
|---|---|---|
| 0.1.184 | 2 / 19 | |
| 0.1.183 | 2 / 19 | |
| 0.1.182 | 2 / 19 | |
| 0.1.181 | 2 / 19 | |
| 0.1.180 | 2 / 19 | |
| 0.1.179 | 2 / 19 | |
| 0.1.178 | 2 / 19 | |
| 0.1.177 | 2 / 19 | |
| 0.1.176 | 2 / 19 | |
| 0.1.175 | 2 / 19 | |
| 0.1.174 | 2 / 19 | |
| 0.1.173 | 2 / 19 | |
| 0.1.172 | 2 / 19 | |
| 0.1.171 | 2 / 19 | |
| 0.1.170 | 2 / 18 | |
| 0.1.169 | 2 / 18 | |
| 0.1.168 | 2 / 18 | |
| 0.1.167 | 2 / 18 | |
| 0.1.166 | 2 / 18 | |
| 0.1.165 | 2 / 18 | |
| 0.1.164 | 2 / 18 | |
| 0.1.163 | 2 / 18 | |
| 0.1.162 | 2 / 18 | |
| 0.1.161 | 2 / 18 | |
| 0.1.160 | 2 / 18 | |
| 0.1.159 | 2 / 18 | |
| 0.1.158 | 2 / 18 | |
| 0.1.157 | 2 / 18 | |
| 0.1.156 | 2 / 18 | |
| 0.1.155 | 2 / 18 | |
| 0.1.154 | 2 / 18 | |
| 0.1.153 | 2 / 18 | |
| 0.1.152 | 2 / 18 | |
| 0.1.151 | 2 / 18 | |
| 0.1.150 | 2 / 18 | |
| 0.1.149 | 2 / 18 | |
| 0.1.148 | 2 / 18 | |
| 0.1.147 | 2 / 18 | |
| 0.1.146 | 2 / 18 | |
| 0.1.145 | 2 / 18 | |
| 0.1.144 | 2 / 18 | |
| 0.1.143 | 2 / 18 | |
| 0.1.142 | 2 / 18 | |
| 0.1.141 | 2 / 18 | |
| 0.1.140 | 2 / 18 | |
| 0.1.139 | 2 / 18 | |
| 0.1.138 | 2 / 18 | |
| 0.1.137 | 2 / 18 | |
| 0.1.136 | 2 / 18 | |
| 0.1.135 | 2 / 18 | |
| 0.1.134 | 2 / 18 |
v0.1.184
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.183
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.182
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.181
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.180
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.179
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.178
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.177
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.176
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.