@mastra/schema-compat
Tool schema compatibility layer for Mastra.ai
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | net-exec-file:dist/chunk-DOFJIM6Y.cjs | AI (source-diff): Bundled AJV codegen module; code generation is AJV's core function, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/_types/@internal_ai-sdk-v5/dist/index.d.ts | AI (source-diff): Same pattern — bundled internal AI SDK v5 type declarations with long lines. | ai | |
| source-diff | net-exec-file:dist/chunk-VJDHNYOU.js | AI (source-diff): ESM equivalent of the same bundled AJV codegen; same rationale. | ai | |
| source-diff | net-exec-file:dist/chunk-ROFMEFEF.cjs | AI (source-diff): Bundled AJV codegen code; no actual network+exec malware pattern, just schema validation library internals. | ai | |
| source-diff | net-exec-file:dist/chunk-QDRBTCDV.js | AI (source-diff): ESM equivalent of the same bundled AJV codegen; false positive from bundler output. | ai | |
| source-diff | obfuscated-file:dist/_types/@internal_ai-sdk-v4/dist/index.d.ts | AI (source-diff): Long-line TypeScript declaration file for bundled AI SDK types; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/chunk-DAVEUCUM.cjs | AI (source-diff): Bundled AJV (JSON schema validator) internals; network+codegen patterns are AJV's legitimate code generation, not dropper malware. | ai | |
| source-diff | net-exec-file:dist/chunk-DGOXVQNP.js | AI (source-diff): ESM equivalent of the same AJV bundle; same rationale as the CJS variant. | ai | |
| source-diff | obfuscated-file:dist/_types/@internal_ai-v6/dist/index.d.ts | AI (source-diff): Long-line TypeScript declaration file for AI SDK types; minified .d.ts is normal for large type bundles, not obfuscation. | ai | |
| provenance | publisher-changed | AI (provenance): Transition to GitHub Actions CI publisher with SLSA provenance; consistent with mastra-ai org automation. | ai | |
| dependencies | unvetted-dep:json-schema-to-zod | AI (dependencies): Expected dependency for a schema-compat layer; purpose-aligned and widely used. | ai | |
| dependencies | unvetted-dep:zod-from-json-schema-v3 | AI (dependencies): Alias for zod-from-json-schema@^0.0.5 for zod v3 compat; purpose-aligned for this package. | ai |
Versions (showing 12 of 12)
| Version | Deps | Published |
|---|---|---|
| 1.2.10 | 4 / 24 | |
| 1.2.9 | 4 / 24 | |
| 1.2.8 | 4 / 24 | |
| 1.2.7 | 4 / 19 | |
| 1.2.2 | 4 / 19 | |
| 1.2.0 | 4 / 19 | |
| 1.1.3 | 4 / 18 | |
| 1.1.0 | 4 / 18 | |
| 1.0.0 | 4 / 12 | |
| 0.11.9 | 5 / 10 | |
| 0.11.8 | 4 / 10 | |
| 0.11.7 | 4 / 10 |
v1.2.10
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.2.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.2.8
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.2.7
6 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.2.2
6 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.2.0
5 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.1.3
4 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.1.0
4 findingsNewly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.0
2 findingsThis version was published by a different npm account than previous versions on 2026-01-20. This could indicate a legitimate maintainer transition or an account compromise.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.11.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.11.8
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.11.7
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.