@powerlines/plugin-nodejs
A package containing a Powerlines plugin for building a Node.js application.
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/components/env-builtin.cjs | AI (source-diff): Standard Rolldown CJS bundle output; code is readable JSX component logic, not obfuscated. | ai | |
| provenance | publisher-changed | AI (provenance): Publisher changed from stormie-bot to GitHub Actions, consistent with org adopting CI/CD OIDC publishing. SLSA provenance attestation confirms legitimate automated pipeline. | ai | |
| phantom-deps | phantom-dep:@alloy-js/json | AI (phantom-deps): Framework dependency referenced in plugin architecture; not directly imported. Expected for this package type. | ai | |
| phantom-deps | phantom-dep:@powerlines/plugin-alloy | AI (phantom-deps): Same-org plugin dependency; referenced in config/architecture, not direct imports. Stable pattern. | ai | |
| phantom-deps | phantom-dep:@powerlines/plugin-babel | AI (phantom-deps): Same-org plugin dependency; referenced in config/architecture, not direct imports. Stable pattern. | ai | |
| phantom-deps | phantom-dep:@powerlines/plugin-env | AI (phantom-deps): Same-org plugin dependency; referenced in config/architecture, not direct imports. Stable pattern. | ai | |
| phantom-deps | phantom-dep:powerlines | AI (phantom-deps): Core framework dependency for plugin system; referenced in config, not direct imports. Expected pattern. | ai | |
| phantom-deps | phantom-dep:@powerlines/plugin-plugin | AI (phantom-deps): Same-org sibling package declared as dependency; phantom detection is a stable false positive for this package's build/config pattern. | ai | |
| phantom-deps | phantom-dep:@storm-software/config-tools | AI (phantom-deps): Referenced in config files per finding description; not a direct import but legitimately declared. Stable false positive for this package. | ai |
Versions (showing 100 of 503)
| Version | Deps | Published |
|---|---|---|
| 0.1.419 | 10 / 1 | |
| 0.1.418 | 10 / 1 | |
| 0.1.417 | 10 / 1 | |
| 0.1.416 | 10 / 1 | |
| 0.1.415 | 10 / 1 | |
| 0.1.414 | 10 / 1 | |
| 0.1.413 | 10 / 1 | |
| 0.1.412 | 10 / 1 | |
| 0.1.411 | 10 / 1 | |
| 0.1.409 | 10 / 1 | |
| 0.1.408 | 10 / 1 | |
| 0.1.407 | 10 / 1 | |
| 0.1.406 | 10 / 1 | |
| 0.1.405 | 10 / 1 | |
| 0.1.404 | 10 / 1 | |
| 0.1.403 | 10 / 1 | |
| 0.1.402 | 10 / 1 | |
| 0.1.401 | 10 / 1 | |
| 0.1.400 | 10 / 1 | |
| 0.1.399 | 10 / 1 | |
| 0.1.398 | 10 / 1 | |
| 0.1.397 | 10 / 1 | |
| 0.1.396 | 10 / 1 | |
| 0.1.393 | 10 / 1 | |
| 0.1.392 | 10 / 1 | |
| 0.1.391 | 10 / 1 | |
| 0.1.390 | 10 / 1 | |
| 0.1.389 | 10 / 1 | |
| 0.1.388 | 10 / 1 | |
| 0.1.386 | 10 / 1 | |
| 0.1.385 | 10 / 1 | |
| 0.1.384 | 10 / 1 | |
| 0.1.383 | 10 / 1 | |
| 0.1.382 | 10 / 1 | |
| 0.1.381 | 10 / 1 | |
| 0.1.380 | 10 / 1 | |
| 0.1.379 | 10 / 1 | |
| 0.1.378 | 10 / 1 | |
| 0.1.377 | 10 / 1 | |
| 0.1.376 | 10 / 1 | |
| 0.1.375 | 10 / 1 | |
| 0.1.374 | 10 / 1 | |
| 0.1.373 | 10 / 1 | |
| 0.1.372 | 10 / 1 | |
| 0.1.371 | 10 / 1 | |
| 0.1.370 | 10 / 1 | |
| 0.1.369 | 10 / 1 | |
| 0.1.368 | 10 / 1 | |
| 0.1.367 | 10 / 1 | |
| 0.1.366 | 10 / 1 | |
| 0.1.365 | 10 / 1 | |
| 0.1.364 | 10 / 1 | |
| 0.1.363 | 10 / 1 | |
| 0.1.362 | 10 / 1 | |
| 0.1.361 | 10 / 1 | |
| 0.1.359 | 10 / 1 | |
| 0.1.358 | 10 / 1 | |
| 0.1.357 | 10 / 1 | |
| 0.1.356 | 10 / 1 | |
| 0.1.355 | 10 / 1 | |
| 0.1.354 | 10 / 1 | |
| 0.1.353 | 10 / 1 | |
| 0.1.352 | 10 / 1 | |
| 0.1.351 | 10 / 1 | |
| 0.1.350 | 10 / 1 | |
| 0.1.349 | 10 / 1 | |
| 0.1.348 | 10 / 1 | |
| 0.1.347 | 10 / 1 | |
| 0.1.346 | 10 / 1 | |
| 0.1.345 | 10 / 1 | |
| 0.1.344 | 10 / 1 | |
| 0.1.343 | 10 / 1 | |
| 0.1.342 | 10 / 1 | |
| 0.1.341 | 10 / 1 | |
| 0.1.340 | 10 / 1 | |
| 0.1.339 | 10 / 1 | |
| 0.1.338 | 10 / 1 | |
| 0.1.337 | 10 / 1 | |
| 0.1.336 | 10 / 1 | |
| 0.1.335 | 10 / 1 | |
| 0.1.334 | 10 / 1 | |
| 0.1.332 | 10 / 1 | |
| 0.1.331 | 10 / 1 | |
| 0.1.330 | 10 / 1 | |
| 0.1.329 | 10 / 1 | |
| 0.1.328 | 10 / 1 | |
| 0.1.327 | 10 / 1 | |
| 0.1.326 | 10 / 1 | |
| 0.1.325 | 10 / 1 | |
| 0.1.324 | 10 / 1 | |
| 0.1.323 | 10 / 1 | |
| 0.1.322 | 10 / 1 | |
| 0.1.321 | 10 / 1 | |
| 0.1.320 | 10 / 1 | |
| 0.1.319 | 10 / 1 | |
| 0.1.318 | 10 / 1 | |
| 0.1.317 | 10 / 1 | |
| 0.1.316 | 10 / 1 | |
| 0.1.315 | 10 / 1 | |
| 0.1.314 | 10 / 1 |
v0.1.419
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.418
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.417
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.416
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.415
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.414
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.413
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.412
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.411
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.409
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.408
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.407
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.406
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.405
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.404
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.403
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.402
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.401
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.400
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.399
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.398
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.397
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.396
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.393
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.392
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.391
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.390
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.389
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.388
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.386
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.385
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.384
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.383
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.382
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.381
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.380
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.379
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.378
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.377
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.376
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.346
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.345
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.344
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.343
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.342
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.341
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.340
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.339
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.338
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.337
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.336
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.335
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.334
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.332
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.331
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.330
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.329
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.328
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.327
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.326
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.325
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.324
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.323
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.322
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.321
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.320
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.319
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.318
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.317
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.316
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.315
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.314
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.