directus No license 8 versions

directus

npm Repository Homepage

8

Versions

—

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

benhaynesrijk

Keywords

directusrealtimedatabasecontentapirestgraphqlappdashboardheadlesscmsmysqlpostgresqlcockroachdbsqliteframeworkvue

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
publish-pattern	dormant-publish	AI (publish-pattern): Directus is an established project with SLSA provenance; CI/CD publishing pattern explains any apparent gaps.	ai	2026/05/18
license	uncommon-license:BUSL-1.1	AI (license): BUSL-1.1 is Directus's intentional commercial license; stable for this package.	ai	2026/05/08
dependencies	unvetted-dep:@directus/api	AI (dependencies): First-party monorepo sub-package; expected dependency for this package across all versions.	ai	2026/05/05
dependencies	unvetted-dep:@directus/update-check	AI (dependencies): First-party monorepo sub-package; expected dependency for this package across all versions.	ai	2026/05/05

Versions (showing 8 of 8)

Version	Deps	Published
12.0.2	2 / 0	2026-06-12
12.0.1	2 / 0	2026-06-11
12.0.0	2 / 0	2026-06-10
11.17.4	2 / 0	2026-04-30
11.17.3	2 / 0	2026-04-15
11.17.2	2 / 0	2026-04-06
11.17.1	2 / 0	2026-03-30
11.17.0	2 / 0	2026-03-24

v12.0.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v12.0.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v12.0.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v11.17.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v11.17.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v11.17.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v11.17.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v11.17.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.