@storm-software/prettier

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

stormie-botsullivanpj

Keywords

monorepoprettierprettier-configstormstorm-opssullivanpj

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
source-diff	source-size-tripled	AI (source-diff): Size increase reflects added config JSON files (all.json, jsdoc.json, etc.) visible in package exports — not injected payload.	ai	2026/05/31
publish-pattern	new-deps-added	AI (publish-pattern): prettier-plugin-packagejson is a well-known prettier plugin; replaces prettier-plugin-pkg, benign swap.	ai	2026/05/30
provenance	publisher-changed	AI (provenance): Transition from stormie-bot to GitHub Actions CI is consistent with automation; SLSA attestation confirms legitimate pipeline.	ai	2026/05/30
phantom-deps	phantom-dep:prettier-plugin-pkg	AI (phantom-deps): prettier-plugin-pkg is a config-file-referenced prettier plugin; not directly imported by design in a prettier config package.	ai	2026/05/29
dependencies	unvetted-dep:prettier-plugin-toml	AI (dependencies): Well-known prettier plugin; stable dependency for this config package.	ai	2026/04/29
dependencies	unvetted-dep:prettier-plugin-sh	AI (dependencies): Well-known prettier plugin; stable dependency for this config package.	ai	2026/04/29
dependencies	unvetted-dep:prettier-plugin-jsdoc	AI (dependencies): Well-known prettier plugin; stable dependency for this config package.	ai	2026/04/29
phantom-deps	phantom-dep:prettier-plugin-toml	AI (phantom-deps): Prettier plugins are loaded via config, not direct imports; stable pattern for this package.	ai	2026/04/28
phantom-deps	phantom-dep:prettier-plugin-organize-imports	AI (phantom-deps): Prettier plugins are loaded via config, not direct imports; stable pattern for this package.	ai	2026/04/28
phantom-deps	phantom-dep:prettier-plugin-packagejson	AI (phantom-deps): Prettier plugins are loaded via config, not direct imports; stable pattern for this package.	ai	2026/04/28
phantom-deps	phantom-dep:prettier-plugin-jsdoc	AI (phantom-deps): Prettier plugins are loaded via config, not direct imports; stable pattern for this package.	ai	2026/04/28
phantom-deps	phantom-dep:prettier-plugin-sh	AI (phantom-deps): Prettier plugins are loaded via config, not direct imports; stable pattern for this package.	ai	2026/04/28

Versions (showing 100 of 380)

Version	Deps	Published
0.59.8	5 / 6	2026-03-16
0.59.7	5 / 6	2026-03-16
0.59.6	5 / 6	2026-03-16
0.59.5	5 / 6	2026-03-16
0.59.4	5 / 6	2026-03-16
0.59.3	5 / 6	2026-03-14
0.59.2	5 / 6	2026-03-11
0.59.1	5 / 6	2026-03-11
0.59.0	5 / 6	2026-03-11
0.58.25	5 / 6	2026-03-11
0.58.24	5 / 6	2026-03-11
0.58.23	5 / 6	2026-03-11
0.58.22	5 / 6	2026-03-11
0.58.21	5 / 6	2026-03-11
0.58.20	5 / 6	2026-03-07
0.58.19	5 / 6	2026-03-07
0.58.18	5 / 6	2026-03-07
0.58.17	5 / 6	2026-03-07
0.58.16	5 / 6	2026-03-06
0.58.15	5 / 6	2026-03-06
0.58.14	5 / 6	2026-03-06
0.58.13	5 / 6	2026-03-06
0.58.12	5 / 6	2026-03-04
0.58.11	5 / 6	2026-03-04
0.58.10	5 / 6	2026-03-02
0.58.9	5 / 6	2026-02-28
0.58.8	5 / 6	2026-02-24
0.58.7	5 / 6	2026-02-23
0.58.6	5 / 6	2026-02-21
0.58.5	5 / 6	2026-02-20
0.58.4	5 / 6	2026-02-19
0.58.3	5 / 6	2026-02-19
0.58.2	5 / 6	2026-02-19
0.58.1	5 / 6	2026-02-18
0.58.0	5 / 6	2026-02-18
0.57.80	5 / 6	2026-01-28
0.57.79	5 / 6	2026-01-28
0.57.78	5 / 6	2026-01-27
0.57.77	5 / 6	2026-01-27
0.57.76	5 / 6	2026-01-27
0.57.75	5 / 6	2026-01-22
0.57.74	5 / 6	2025-12-30
0.57.73	5 / 6	2025-12-23
0.57.72	5 / 6	2025-12-19
0.57.71	5 / 6	2025-12-18
0.57.70	5 / 6	2025-12-18
0.57.69	5 / 6	2025-12-17
0.57.68	5 / 6	2025-12-17
0.57.67	5 / 6	2025-12-16
0.57.66	5 / 6	2025-12-15
0.57.65	5 / 6	2025-12-15
0.57.64	5 / 6	2025-12-08
0.57.63	5 / 6	2025-12-08
0.57.62	5 / 6	2025-12-08
0.57.61	5 / 6	2025-12-08
0.57.60	5 / 6	2025-12-08
0.57.59	5 / 6	2025-12-06
0.57.58	5 / 6	2025-12-06
0.57.57	5 / 6	2025-12-06
0.57.56	5 / 6	2025-12-05
0.57.55	5 / 6	2025-12-05
0.57.54	5 / 6	2025-12-05
0.57.53	5 / 6	2025-12-05
0.57.52	5 / 6	2025-12-05
0.57.51	5 / 6	2025-12-05
0.57.50	5 / 6	2025-11-27
0.57.49	5 / 6	2025-11-25
0.57.48	5 / 6	2025-11-21
0.57.47	5 / 6	2025-11-20
0.57.46	5 / 6	2025-11-20
0.57.45	5 / 6	2025-11-20
0.57.44	5 / 6	2025-11-20
0.57.43	5 / 6	2025-11-19
0.57.42	5 / 6	2025-11-19
0.57.41	5 / 6	2025-11-19
0.57.40	5 / 6	2025-11-16
0.57.39	5 / 6	2025-11-16
0.57.38	5 / 6	2025-11-14
0.57.37	5 / 6	2025-11-14
0.57.36	5 / 6	2025-11-13
0.57.35	5 / 6	2025-11-13
0.57.34	5 / 6	2025-11-13
0.57.33	5 / 6	2025-11-13
0.57.32	5 / 6	2025-11-13
0.57.31	5 / 6	2025-11-13
0.57.30	5 / 6	2025-11-13
0.57.29	5 / 6	2025-11-12
0.57.28	5 / 6	2025-11-12
0.57.27	5 / 6	2025-11-12
0.57.26	5 / 6	2025-11-12
0.57.25	5 / 6	2025-11-12
0.57.24	5 / 6	2025-11-10
0.57.23	5 / 6	2025-11-09
0.57.22	5 / 6	2025-11-08
0.57.21	5 / 6	2025-11-08
0.57.20	5 / 6	2025-11-08
0.57.19	5 / 6	2025-11-05
0.57.18	5 / 6	2025-11-05
0.57.16	5 / 6	2025-10-31
0.57.15	5 / 6	2025-10-31

Showing 100 of 380 Next page →

v0.59.8

2 findings

HIGH Publisher changed: stormie-bot → GitHub Actions (on 2026-03-16) provenance

This version was published by a different npm account than previous versions on 2026-03-16. This could indicate a legitimate maintainer transition or an account compromise.