node MIT 100 versions

node

npm Repository Homepage

node

100

Versions

MIT

License

Yes

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

aredridel

Keywords

runtime

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
bogus-package	bogus-package	AI (bogus-package): This is a legitimate, long-standing Node.js binary wrapper. Tiny payload and minimal description are by design; isaacs spam flag is a false positive for this established package.	ai	2026/04/24
typosquat	typosquat.levenshtein:zod	AI (typosquat): 'node' is a long-established (~5000 days) Node.js binary wrapper package with no relation to 'zod'; the Levenshtein match is a false positive that generalizes across all versions.	ai	2026/04/24
install-scripts	install-script:preinstall	AI (install-scripts): Preinstall is the documented, stable mechanism for node-bin-gen to select the correct arch-specific Node.js binary. Present across hundreds of versions; not a risk signal for this package.	ai	2026/04/23

Versions (showing 100 of 758)

Version	Deps	Published
18.20.4	1 / 0	2024-07-09
18.20.2	1 / 0	2024-04-11
18.20.1	1 / 0	2024-04-04
18.20.0	1 / 0	2024-03-27
18.19.1	1 / 0	2024-02-15
18.19.0	1 / 0	2024-02-15
18.18.2	1 / 0	2023-10-17
18.18.1	1 / 0	2023-10-17
18.18.0	1 / 0	2023-09-26
18.17.1	1 / 0	2023-08-22
18.17.0	1 / 0	2023-07-19
18.16.1	1 / 0	2023-06-24
18.16.0	1 / 0	2023-04-23
18.15.0	1 / 0	2023-03-08
18.14.2	1 / 0	2023-02-25
18.14.1	1 / 0	2023-02-25
18.14.0	1 / 0	2023-02-03
18.13.0	1 / 0	2023-01-26
18.12.1	1 / 0	2022-11-05
18.12.0	1 / 0	2022-10-26
18.11.0	1 / 0	2022-10-15
18.10.0	1 / 0	2022-09-29
18.9.1	1 / 0	2022-09-24
18.9.0	1 / 0	2022-09-08
18.8.0	1 / 0	2022-09-06
18.7.0	1 / 0	2022-07-28
18.6.0	1 / 0	2022-07-28
18.5.0	1 / 0	2022-07-07
18.4.0	1 / 0	2022-06-20
18.3.0	1 / 0	2022-06-20
18.2.0	1 / 0	2022-06-20
18.1.0	1 / 0	2022-06-20
18.0.0	1 / 0	2022-06-20
17.9.1	1 / 0	2022-06-20
17.7.2	1 / 0	2022-03-29
17.7.1	1 / 0	2022-03-13
17.7.0	1 / 0	2022-03-13
17.6.0	1 / 0	2022-03-13
17.5.0	1 / 0	2022-03-01
17.4.0	1 / 0	2022-01-22
17.3.1	1 / 0	2022-01-14
17.3.0	1 / 0	2021-12-18
17.2.0	1 / 0	2021-12-04
17.1.0	1 / 0	2021-11-14
17.0.1	1 / 0	2021-10-21
17.0.0	1 / 0	2021-10-21
16.20.2	1 / 0	2023-08-22
16.20.1	1 / 0	2023-06-24
16.20.0	1 / 0	2023-04-01
16.19.1	1 / 0	2023-02-25
16.19.0	1 / 0	2022-12-15
16.18.1	1 / 0	2022-11-05
16.18.0	1 / 0	2022-10-15
16.17.1	1 / 0	2022-09-24
16.17.0	1 / 0	2022-08-16
16.16.0	1 / 0	2022-07-07
16.15.1	1 / 0	2022-06-20
16.15.0	1 / 0	2022-06-20
16.14.2	1 / 0	2022-03-27
16.14.1	1 / 0	2022-03-26
16.14.0	1 / 0	2022-03-13
16.13.2	1 / 0	2022-01-14
16.13.1	1 / 0	2021-12-04
16.13.0	1 / 0	2021-10-27
16.12.0	1 / 0	2021-10-21
16.11.1	1 / 0	2021-10-18
16.11.0	1 / 0	2021-10-18
16.10.0	1 / 0	2021-09-26
16.9.1	1 / 0	2021-09-13
16.9.0	1 / 0	2021-09-13
16.8.0	1 / 0	2021-09-13
16.7.0	1 / 0	2021-09-13
16.6.2	1 / 0	2021-09-13
16.6.1	1 / 0	2021-08-04
16.6.0	1 / 0	2021-07-30
16.5.0	1 / 0	2021-07-15
16.4.1	1 / 0	2021-07-13
16.4.0	1 / 0	2021-06-28
16.3.0	1 / 0	2021-06-12
16.1.0	1 / 0	2021-05-07
16.0.0	1 / 0	2021-04-23
15.14.0	1 / 0	2021-04-14
15.12.0	1 / 0	2021-03-28
15.10.0	1 / 0	2021-03-01
15.8.0	1 / 0	2021-02-08
15.7.0	1 / 0	2021-01-30
15.4.0	1 / 0	2020-12-12
15.3.0	1 / 0	2020-11-29
15.2.1	1 / 0	2020-11-17
15.2.0	1 / 0	2020-11-12
15.1.0	1 / 0	2020-11-11
15.0.1	1 / 0	2020-10-22
15.0.0	1 / 0	2020-10-21
14.21.3	1 / 0	2023-02-25
14.21.2	1 / 0	2022-12-15
14.21.0	1 / 0	2022-11-02
14.20.1	1 / 0	2022-09-24
14.20.0	1 / 0	2022-07-07
14.19.3	1 / 0	2022-06-19
14.19.2	1 / 0	2022-06-19

Showing 100 of 758 Next page →

v18.20.4

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.