@vercel/sandbox — Greenflagged

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

matheussmatt.strakavercel-release-botzeit-bot

Keywords

vercelsandboxsdk

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Transition from vercel-release-bot to GitHub Actions CI; same org, SLSA attested.	ai	2026/05/17
maintainer-change	maintainer-added	AI (maintainer-change): Routine maintainer addition within the Vercel org.	ai	2026/05/17
semgrep	semgrep:base64-decode	AI (semgrep): Legitimate URL-safe base64 decode utility for OIDC token handling; not obfuscation.	ai	2026/05/17
provenance	no-provenance	AI (provenance): Vercel's release bot consistently publishes without Sigstore provenance; stable pattern across all their packages.	ai	2026/05/17

Versions (showing 36 of 36)

Version	Deps	Published
2.0.2	11 / 12	2026-05-29
2.0.1	11 / 12	2026-05-27
2.0.0	11 / 12	2026-05-22
1.10.2	10 / 12	2026-05-11
1.10.1	10 / 12	2026-05-07
1.10.0	10 / 12	2026-04-14
1.9.3	10 / 12	2026-04-08
1.9.2	10 / 12	2026-04-02
1.9.1	10 / 12	2026-04-02
1.9.0	9 / 10	2026-03-20
1.8.1	9 / 10	2026-03-10
1.8.0	9 / 10	2026-03-02
1.7.1	9 / 10	2026-02-24
1.7.0	9 / 10	2026-02-23
1.6.0	9 / 10	2026-02-17
1.5.0	9 / 10	2026-02-10
1.4.1	9 / 10	2026-01-30
1.4.0	9 / 10	2026-01-29
1.3.2	9 / 10	2026-01-27
1.3.1	9 / 10	2026-01-23
1.3.0	9 / 10	2026-01-23
1.2.1	9 / 10	2026-01-22
1.2.0	9 / 10	2026-01-15
1.1.9	9 / 10	2026-01-14
1.1.8	9 / 10	2026-01-12
1.1.7	9 / 10	2026-01-12
1.1.6	9 / 10	2026-01-09
1.1.5	9 / 10	2026-01-08
1.1.4	7 / 9	2026-01-06
1.1.3	7 / 9	2026-01-06
1.1.2	7 / 9	2025-12-28
1.1.1	7 / 9	2025-12-18
1.1.0	7 / 9	2025-12-08
1.0.4	7 / 9	2025-11-26
1.0.3	7 / 9	2025-11-24
1.0.2	7 / 9	2025-10-16

v2.0.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.0.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2.0.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.10.2

2 findings

HIGH Publisher changed: vercel-release-bot → GitHub Actions (on 2026-05-11) provenance

This version was published by a different npm account than previous versions on 2026-05-11. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.10.1

2 findings

HIGH Publisher changed: vercel-release-bot → GitHub Actions (on 2026-05-07) provenance

This version was published by a different npm account than previous versions on 2026-05-07. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.