← Home

native-promise-pool

npm Repository Homepage

Create a pool of a specified concurrency that accepts functions that return promises

37
Versions
Artistic-2.0
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

bevryme

Keywords

asyncbrowserconcurrencydenodeno-editiondeno-entrydenolandes2016es2022export-defaultflowflow controlmodulenodepoolpromisepromisestypedtypestypescript

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
publish-pattern new-deps-added AI (publish-pattern): All 19 'new runtime deps' are dev/build tools duplicated from devDependencies; confirmed phantom by all being unreferenced at runtime. No supply-chain risk. ai
phantom-deps phantom-dep:kava AI (phantom-deps): Dev/test tool referenced only in scripts/config, not imported at runtime. Stable false positive for this package. ai
phantom-deps phantom-dep:chalk AI (phantom-deps): Dev tool referenced only in config files, not imported at runtime. ai
phantom-deps phantom-dep:surge AI (phantom-deps): Deploy tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:eslint AI (phantom-deps): Linting tool referenced only in config/scripts, not imported at runtime. ai
phantom-deps phantom-dep:typedoc AI (phantom-deps): Docs tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:prettier AI (phantom-deps): Formatting tool referenced only in config/scripts, not imported at runtime. ai
phantom-deps phantom-dep:projectz AI (phantom-deps): Meta tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:typescript AI (phantom-deps): Compiler referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:valid-module AI (phantom-deps): Verification tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:assert-helpers AI (phantom-deps): Test helper referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:valid-directory AI (phantom-deps): Verification tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:logger-clearable AI (phantom-deps): Dev tool referenced only in config, not imported at runtime. ai
phantom-deps phantom-dep:make-deno-edition AI (phantom-deps): Build tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:eslint-config-bevry AI (phantom-deps): ESLint config referenced only in eslintConfig, not imported at runtime. ai
phantom-deps phantom-dep:eslint-config-prettier AI (phantom-deps): ESLint config referenced only in eslintConfig, not imported at runtime. ai
phantom-deps phantom-dep:eslint-plugin-prettier AI (phantom-deps): ESLint plugin referenced only in eslintConfig, not imported at runtime. ai
phantom-deps phantom-dep:@typescript-eslint/parser AI (phantom-deps): TypeScript ESLint parser referenced only in config, not imported at runtime. ai
phantom-deps phantom-dep:@bevry/update-contributors AI (phantom-deps): Contributor update tool referenced only in scripts, not imported at runtime. ai
phantom-deps phantom-dep:@typescript-eslint/eslint-plugin AI (phantom-deps): TypeScript ESLint plugin referenced only in config, not imported at runtime. ai

Versions (showing 37 of 37)

Version Deps Published
3.28.0 1 / 18
3.27.0 1 / 18
3.26.0 1 / 19
3.25.0 1 / 20
3.24.0 1 / 20
3.23.0 1 / 20
3.22.0 1 / 20
3.21.0 1 / 20
3.20.0 1 / 20
3.19.0 0 / 19
3.18.0 0 / 19
3.17.0 0 / 19
3.16.0 0 / 17
3.15.0 0 / 17
3.14.0 0 / 17
3.13.0 0 / 17
3.12.0 0 / 17
3.11.0 0 / 17
3.10.0 0 / 17
3.9.0 1 / 17
3.8.0 19 / 19
3.7.0 0 / 19
3.6.0 0 / 19
3.5.0 0 / 18
3.4.0 0 / 18
3.3.0 0 / 18
3.2.0 0 / 18
3.1.0 0 / 18
3.0.0 0 / 18
2.3.0 0 / 19
2.2.0 0 / 19
2.1.0 0 / 19
2.0.0 0 / 19
1.2.0 0 / 19
1.1.0 0 / 19
1.0.0 0 / 15
0.0.1 1 / 10

v3.28.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.27.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.26.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.25.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.24.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.23.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.22.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.21.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.20.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.19.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.18.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.17.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.16.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.15.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.14.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.13.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.12.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.11.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.10.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.9.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.8.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.7.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.6.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.5.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.4.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.3.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.2.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.1.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.0.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v2.3.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v2.2.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v2.1.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v2.0.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.