← Home

@graphql-tools/load

npm Repository Homepage

A set of utils for faster development of GraphQL tools

17
Versions
MIT
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

dotansimhaurigoardatanenisdenjotheguild-bot

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
typosquat typosquat.levenshtein:koa AI (typosquat): @graphql-tools/load is a scoped package in the established @graphql-tools namespace; Levenshtein comparison to 'koa' is a false positive that will never be relevant. ai
typosquat typosquat.levenshtein:zod AI (typosquat): @graphql-tools/load is a scoped package in the established @graphql-tools namespace; Levenshtein comparison to 'zod' is a false positive that will never be relevant. ai
semgrep semgrep:dynamic-require AI (semgrep): Dynamic require is an intentional feature for loading user-specified custom loaders via the 'require' pointer option; this is documented API behavior, not a security risk. ai
bogus-package bogus-package AI (bogus-package): Monorepo sub-package; sparse README and missing keywords are typical for @graphql-tools scoped packages and not indicative of spam or malicious intent. ai

Versions (showing 17 of 117)

Show 272 prereleases
Version Deps Published
6.0.16 9 / 4
6.0.15 9 / 4
6.0.14 9 / 4
6.0.13 9 / 4
6.0.12 9 / 4
6.0.11 9 / 4
6.0.10 9 / 4
6.0.9 9 / 4
6.0.8 9 / 4
6.0.7 9 / 4
6.0.6 9 / 4
6.0.5 9 / 4
6.0.4 9 / 4
6.0.3 9 / 4
6.0.2 9 / 4
6.0.1 9 / 4
6.0.0 9 / 4