@stdlib/number-float64-base-to-float16 Apache-2.0 3 versions

@stdlib/number-float64-base-to-float16

npm Repository Homepage

Convert a double-precision floating-point number to the nearest half-precision floating-point number.

Versions

Apache-2.0

License

Install Scripts

Missing

Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

stdlib-botkgryteplaneshifterrreusser

Keywords

stdlibstdtypesbaseutilitiesutilityutilsutiltypestypecastconvertfloat64doubledblfloat16floattobitsnumber

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
npm-metadata	url-dep:@stdlib/number-float16-ctor	AI (npm-metadata): Same-org GitHub dependency; stdlib-js uses this pattern for packages not yet published to the registry.	ai	2026/05/03
npm-metadata	url-dep:@stdlib/number-float32-base-to-float16	AI (npm-metadata): Same-org GitHub dependency; stdlib-js uses this pattern for packages not yet published to the registry.	ai	2026/05/03
phantom-deps	phantom-dep:@stdlib/number-float16-ctor	AI (phantom-deps): stdlib scoped dep; phantom-dep heuristic fires on indirect/conditional imports common in stdlib packages.	ai	2026/04/29
phantom-deps	phantom-dep:@stdlib/utils-library-manifest	AI (phantom-deps): stdlib manifest utility; used at build/load time, not directly imported in JS source.	ai	2026/04/29
phantom-deps	phantom-dep:@stdlib/number-float32-base-to-float16	AI (phantom-deps): stdlib scoped dep; phantom-dep heuristic fires on indirect/conditional imports common in stdlib packages.	ai	2026/04/29

Versions (showing 3 of 3)

Version	Deps	Published
0.1.2	10 / 0	2026-02-07
0.1.1	10 / 0	2026-01-31
0.1.0	10 / 0	2026-01-29

v0.1.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.1.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.