@aws-sdk/middleware-user-agent
[](https://www.npmjs.com/package/@aws-sdk/middleware-user-agent) [](https://www.npmjs.c
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| phantom-deps | phantom-dep:tslib | AI (phantom-deps): tslib is a standard TypeScript runtime helper; implicit usage via TypeScript compilation is expected and stable for this package. | ai | |
| bogus-package | bogus-package | AI (bogus-package): Internal AWS SDK middleware package; sparse README and no keywords are expected for transitive-only SDK components, not spam indicators. | ai |
Versions (showing 51 of 310)
| Version | Deps | Published |
|---|---|---|
| 3.972.45 | 2 / 4 | |
| 3.972.44 | 2 / 4 | |
| 3.972.43 | 2 / 4 | |
| 3.972.42 | 2 / 4 | |
| 3.972.41 | 2 / 4 | |
| 3.972.40 | 6 / 5 | |
| 3.972.39 | 6 / 5 | |
| 3.972.38 | 8 / 5 | |
| 3.972.37 | 8 / 5 | |
| 3.972.36 | 8 / 5 | |
| 3.972.35 | 8 / 5 | |
| 3.972.34 | 8 / 5 | |
| 3.972.33 | 8 / 5 | |
| 3.972.32 | 8 / 5 | |
| 3.972.31 | 8 / 5 | |
| 3.972.30 | 8 / 5 | |
| 3.972.29 | 8 / 5 | |
| 3.972.28 | 8 / 5 | |
| 3.972.27 | 8 / 5 | |
| 3.972.26 | 8 / 5 | |
| 3.972.25 | 8 / 5 | |
| 3.972.24 | 8 / 5 | |
| 3.972.23 | 8 / 5 | |
| 3.972.22 | 8 / 5 | |
| 3.972.21 | 8 / 5 | |
| 3.972.20 | 8 / 5 | |
| 3.972.19 | 8 / 5 | |
| 3.972.18 | 7 / 5 | |
| 3.972.17 | 7 / 5 | |
| 3.972.16 | 7 / 5 | |
| 3.972.15 | 7 / 5 | |
| 3.972.14 | 7 / 5 | |
| 3.972.13 | 7 / 5 | |
| 3.972.12 | 7 / 5 | |
| 3.972.11 | 7 / 5 | |
| 3.972.10 | 7 / 5 | |
| 3.972.9 | 7 / 5 | |
| 3.972.8 | 7 / 5 | |
| 3.972.7 | 7 / 5 | |
| 3.972.6 | 7 / 5 | |
| 3.972.5 | 7 / 5 | |
| 3.972.4 | 7 / 5 | |
| 3.972.3 | 7 / 5 | |
| 3.972.2 | 7 / 5 | |
| 3.972.1 | 7 / 5 | |
| 3.972.0 | 7 / 5 | |
| 3.970.0 | 7 / 5 | |
| 3.969.0 | 7 / 5 | |
| 3.968.0 | 7 / 5 | |
| 3.967.0 | 7 / 5 | |
| 3.966.0 | 7 / 5 |
v3.972.45
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.44
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.43
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.42
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.41
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.40
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.39
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.38
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.37
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.36
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.35
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v3.972.34
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.