← Home

@powerlines/plugin-open-feature

npm Repository Homepage

A package containing a Powerlines plugin for managing Open Feature feature flags at runtime.

100
Versions
Apache-2.0
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

stormie-botsullivanpj

Keywords

open-featurepowerlinesstorm-softwarepowerlines-plugin

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
provenance publisher-changed AI (provenance): Publisher changed from one CI bot (stormie-bot) to another (GitHub Actions). SLSA provenance confirms legitimate build origin from the expected repo. ai
phantom-deps phantom-dep:@openfeature/core AI (phantom-deps): Transitive/config dependency of the OpenFeature plugin; referenced in config files per the finding. ai
phantom-deps phantom-dep:@stryke/env AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai
phantom-deps phantom-dep:@stryke/json AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai
phantom-deps phantom-dep:@stryke/types AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai
phantom-deps phantom-dep:@alloy-js/json AI (phantom-deps): Declared dep used indirectly in this plugin framework; phantom detection is a false positive. ai
phantom-deps phantom-dep:@stryke/convert AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai
phantom-deps phantom-dep:c12 AI (phantom-deps): c12 is a config-loading utility declared as a dep and referenced in config files; phantom detection is a false positive for this plugin package's architecture. ai
phantom-deps phantom-dep:@stryke/type-checks AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai
phantom-deps phantom-dep:@stryke/string-format AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai
phantom-deps phantom-dep:@powerlines/plugin-plugin AI (phantom-deps): Same-org sibling package; phantom detection is a false positive for this plugin framework's architecture. ai
phantom-deps phantom-dep:@storm-software/config-tools AI (phantom-deps): Storm Software org config package used indirectly; phantom detection is a false positive for this ecosystem's build pattern. ai
dependencies unvetted-dep:@powerlines/plugin-alloy AI (dependencies): Same-org sibling package from Storm Software / Powerlines ecosystem with established publisher track record and SLSA provenance. ai
phantom-deps phantom-dep:@alloy-js/markdown AI (phantom-deps): Declared dep used indirectly in this plugin framework; phantom detection is a false positive. ai
phantom-deps phantom-dep:@stryke/fs AI (phantom-deps): Sibling @stryke/* org package; phantom detection is a false positive for this plugin's indirect usage pattern. ai

Versions (showing 100 of 210)

Version Deps Published
0.1.109 22 / 3
0.1.108 22 / 3
0.1.107 22 / 3
0.1.106 22 / 3
0.1.105 22 / 3
0.1.104 22 / 3
0.1.103 22 / 3
0.1.102 22 / 3
0.1.101 22 / 3
0.1.100 22 / 3
0.1.99 22 / 3
0.1.98 22 / 3
0.1.97 22 / 3
0.1.96 22 / 3
0.1.95 22 / 3
0.1.94 22 / 3
0.1.93 22 / 3
0.1.92 22 / 3
0.1.89 22 / 3
0.1.88 22 / 3
0.1.87 22 / 3
0.1.86 22 / 3
0.1.85 22 / 3
0.1.83 22 / 3
0.1.82 22 / 3
0.1.81 22 / 3
0.1.80 22 / 3
0.1.79 22 / 3
0.1.78 22 / 3
0.1.77 22 / 3
0.1.76 22 / 4
0.1.75 22 / 4
0.1.74 22 / 4
0.1.73 22 / 4
0.1.72 22 / 4
0.1.71 22 / 4
0.1.70 22 / 4
0.1.69 22 / 4
0.1.68 22 / 4
0.1.67 22 / 4
0.1.66 22 / 4
0.1.65 22 / 4
0.1.64 22 / 4
0.1.63 22 / 4
0.1.62 22 / 4
0.1.61 22 / 4
0.1.60 22 / 4
0.1.59 22 / 4
0.1.58 22 / 4
0.1.56 22 / 4
0.1.55 22 / 4
0.1.54 22 / 4
0.1.53 22 / 4
0.1.52 22 / 4
0.1.51 22 / 4
0.1.50 22 / 4
0.1.49 22 / 4
0.1.48 22 / 4
0.1.47 22 / 4
0.1.46 22 / 4
0.1.45 22 / 4
0.1.44 22 / 4
0.1.43 22 / 4
0.1.42 22 / 4
0.1.41 22 / 4
0.1.40 22 / 4
0.1.39 22 / 4
0.1.38 22 / 4
0.1.37 22 / 4
0.1.36 22 / 4
0.1.35 22 / 4
0.1.34 22 / 4
0.1.33 22 / 4
0.1.32 22 / 4
0.1.30 22 / 4
0.1.29 22 / 4
0.1.28 22 / 4
0.1.27 22 / 4
0.1.26 22 / 4
0.1.25 22 / 4
0.1.24 22 / 4
0.1.23 22 / 4
0.1.22 22 / 4
0.1.21 22 / 4
0.1.20 22 / 4
0.1.19 22 / 4
0.1.18 22 / 4
0.1.17 22 / 4
0.1.16 22 / 4
0.1.15 22 / 4
0.1.14 22 / 4
0.1.13 22 / 4
0.1.12 22 / 4
0.1.11 22 / 4
0.1.10 22 / 4
0.1.9 22 / 4
0.1.8 22 / 4
0.1.7 22 / 4
0.1.6 22 / 4
0.1.5 22 / 4
Showing 100 of 210 Next page →

v0.1.109

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.108

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.107

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.106

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.105

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.104

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.103

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.102

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.101

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.100

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.99

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.98

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.97

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.96

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.95

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.94

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.93

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.92

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.89

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.88

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.87

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.86

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.85

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.83

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.82

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.81

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.80

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.79

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.78

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.77

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.76

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.75

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.74

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.1.73

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.