bare-fs
Native file system operations for Bare
1
Versions
Apache-2.0
License
No
Install Scripts
Verified
Provenance
Supply chain provenance
Status for the latest visible version.
SLSA provenance attestation
npm registry signatures
gitHead linked
Maintainers
mafintosh
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| npm-metadata | bundled-binaries | AI (npm-metadata): bare-fs is a native addon for the Bare runtime; prebuilt .bare binaries for multiple platforms are expected and documented. SLSA provenance attestation confirms CI-built supply chain integrity. | ai | |
| dependencies | unvetted-dep:bare-path | AI (dependencies): bare-path is a Holepunch ecosystem package; unvetted status is a registry artifact, not a genuine risk signal for this publisher. | ai | |
| dependencies | unvetted-dep:bare-stream | AI (dependencies): bare-stream is a Holepunch ecosystem package; unvetted status is a registry artifact, not a genuine risk signal for this publisher. | ai |
Versions (showing 1 of 1)
| Version | Deps | Published |
|---|---|---|
| 4.7.1 | 5 / 7 |