json-text-sequence — Greenflagged

Parse and generate RS-delimited JSON sequences according to draft-ietf-json-text-sequence

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

hildjj

Keywords

jsonsequencestreamRS

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Publisher changed from hildjj to GitHub Actions as part of a legitimate CI/CD migration; SLSA provenance attestation confirms automated publishing under the same repo ownership.	ai	2026/04/23
publish-pattern	dormant-publish	AI (publish-pattern): Low-churn utility library; dormancy followed by a CI/CD infrastructure update is consistent with legitimate maintenance patterns for this package.	ai	2026/04/23

Versions (showing 21 of 21)

Version	Deps	Published
4.0.3	1 / 0	2026-03-05
4.0.2	1 / 0	2025-08-04
4.0.1	1 / 0	2025-07-02
4.0.0	1 / 0	2025-05-01
3.0.1	1 / 0	2024-12-10
3.0.0	1 / 0	2024-10-25
2.0.2	1 / 8	2023-07-03
2.0.1	1 / 8	2023-06-25
2.0.0	1 / 8	2023-05-14
1.0.1	1 / 8	2022-04-28
1.0.0	1 / 9	2021-10-14
0.3.0	1 / 6	2021-02-18
0.2.0	1 / 2	2021-02-09
0.1.1	1 / 9	2016-05-02
0.1.0	1 / 16	2015-10-05
0.0.7	1 / 16	2015-07-11
0.0.6	1 / 16	2015-05-07
0.0.5	1 / 15	2014-10-22
0.0.4	1 / 15	2014-09-23
0.0.3	1 / 12	2014-09-22
0.0.2	1 / 12	2014-09-22

v4.0.3

2 findings

HIGH Publisher changed: hildjj → GitHub Actions (on 2026-03-05) provenance

This version was published by a different npm account than previous versions on 2026-03-05. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance