@mastra/core
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | net-exec-file:dist/chunk-B7CR6B45.cjs | AI (source-diff): Bundled build output with standard require calls; not malicious network+exec. | ai | |
| source-diff | net-exec-file:dist/chunk-GM7WJ3F7.cjs | AI (source-diff): Bundled CJS chunk using standard Node built-ins (fs, crypto, path); expected for this framework. | ai | |
| source-diff | net-exec-file:dist/chunk-OWAWKGJ4.cjs | AI (source-diff): Build output of an AI/server framework; network + fs/crypto co-occurrence is expected, not malicious. | ai | |
| source-diff | net-exec-file:dist/chunk-QJB2YTBM.cjs | AI (source-diff): Bundled CJS output with standard requires; network+exec pattern is normal for an AI framework core. | ai | |
| source-diff | net-exec-file:dist/chunk-YNE3ZCU5.cjs | AI (source-diff): Build output chunk with tool-builder code; network+exec pattern is framework functionality. | ai | |
| source-diff | net-exec-file:dist/chunk-TUZTUFQO.cjs | AI (source-diff): Build output chunk with standard framework code (storage, observability); not malware. | ai | |
| source-diff | net-exec-file:dist/chunk-GDEXRBE2.cjs | AI (source-diff): Bundled app code using fs/crypto/path + network for AI framework functionality; not a dropper. | ai | |
| source-diff | net-exec-file:dist/chunk-FFMMLKXC.cjs | AI (source-diff): Bundled CJS chunk with standard imports (crypto, fs, path, zod); not malicious code execution. | ai | |
| source-diff | net-exec-file:dist/chunk-NNRGAKKH.cjs | AI (source-diff): Bundled CJS chunk combining AI-provider HTTP calls with require(); expected for this package. | ai | |
| source-diff | net-exec-file:dist/chunk-GCVSTCZ7.cjs | AI (source-diff): Bundled CJS chunk combining AI-provider HTTP calls with require(); expected for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-v6 | AI (dependencies): Aliased @ai-sdk/provider version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/ui-utils-v5 | AI (dependencies): Aliased @ai-sdk/ui-utils version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-v5 | AI (dependencies): Aliased @ai-sdk/provider version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-utils-v5 | AI (dependencies): Aliased @ai-sdk/provider-utils version; legitimate multi-version pinning pattern for this package. | ai | |
| dependencies | unvetted-dep:@ai-sdk/provider-utils-v6 | AI (dependencies): Aliased @ai-sdk/provider-utils version; legitimate multi-version pinning pattern for this package. | ai | |
| source-diff | net-exec-file:dist/chunk-HK4BBFHR.cjs | AI (source-diff): Build-output chunk with normal framework code (storage, observability); not malicious. | ai | |
| source-diff | net-exec-file:dist/chunk-HZYM4F5A.cjs | AI (source-diff): Build-output chunk with normal tool-builder code; not malicious. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Chunk-split build output changes hash-named files each release; expected for this package. | ai | |
| typosquat | typosquat.levenshtein:cors | AI (typosquat): @mastra/core is a scoped AI framework package; Levenshtein match to 'cors' is coincidental and not a typosquat. | ai | |
| phantom-deps | phantom-dep:@ai-sdk/provider-utils-v6 | AI (phantom-deps): npm-alias versioned dep; phantom-dep heuristic fires on aliased package names, stable false positive. | ai | |
| phantom-deps | phantom-dep:ajv | AI (phantom-deps): ajv is a declared runtime dep used via config/schema validation; phantom-dep heuristic false positive for this package. | ai |
Versions (showing 16 of 16)
| Version | Deps | Published |
|---|---|---|
| 1.37.0 | 31 / 53 | |
| 1.36.0 | 31 / 53 | |
| 1.35.0 | 30 / 53 | |
| 1.34.0 | 30 / 53 | |
| 1.33.0 | 30 / 53 | |
| 1.32.1 | 31 / 53 | |
| 1.31.0 | 30 / 53 | |
| 1.30.0 | 30 / 53 | |
| 1.29.1 | 30 / 53 | |
| 1.29.0 | 30 / 53 | |
| 1.26.0 | 30 / 53 | |
| 1.25.0 | 30 / 53 | |
| 1.24.1 | 30 / 48 | |
| 1.24.0 | 30 / 48 | |
| 1.23.0 | 30 / 48 | |
| 1.21.0 | 29 / 48 |
v1.37.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.36.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.35.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.34.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.33.0
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.32.1
2 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.31.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.30.0
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.29.1
3 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.29.0
2 findingsPackage name '@mastra/core' is 1 edit(s) away from popular package 'cors'.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.26.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.25.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.24.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.24.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.23.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.21.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.