chore(deps-dev): bump the dev-dependencies group across 1 directory with 9 updates

[dependabot]

Bumps the dev-dependencies group with 9 updates in the / directory:

Package	From	To
@docusaurus/module-type-aliases	3.5.2	3.6.3
@types/prismjs	1.26.4	1.26.5
@types/react	18.3.5	18.3.12
@typescript-eslint/eslint-plugin	8.4.0	8.16.0
@typescript-eslint/parser	8.4.0	8.16.0
eslint-plugin-react	7.35.1	7.37.2
husky	9.1.5	9.1.7
prettier	3.3.3	3.4.1
typescript	5.5.4	5.7.2

Updates @docusaurus/module-type-aliases from 3.5.2 to 3.6.3

Release notes

Sourced from @​docusaurus/module-type-aliases's releases.

3.6.3 (2024-11-22)

🐛 Bug Fix

• docusaurus
  • #10712 fix(core): disable Rspack incremental in dev (@​slorber)

3.6.2 (2024-11-19)

🐛 Bug Fix

• docusaurus-module-type-aliases
  • #10693 fix(types): add missing ambiant TS declarations for .md / .mdx partials (@​slorber)
• docusaurus-theme-translations
  • #10688 fix(theme-translation): add and update Japanese translations (@​Ryoga-exe)
• docusaurus
  • #10685 fix(cli): docusaurus --help should print plugin commands using extendCli() (@​slorber)
• docusaurus-bundler
  • #10680 fix(bundler): allow CSS nesting by default, restore postcss-preset-env (@​slorber)
• create-docusaurus
  • #10676 fix(create-docusaurus): add ts exclude to TS init template (@​slorber)
• docusaurus-bundler, docusaurus-faster, docusaurus
  • #10648 fix(faster): Upgrade to Rspack 1.1.1, fix build progress bar display (@​slorber)

🔧 Maintenance

• #10691 chore(ci): retry yarn install to ignore temporary network errors (@​slorber)

Committers: 5

• Junior_Gx (@​goffxnca)
• Kyle Tsang (@​kyletsang)
• Ryoga (@​Ryoga-exe)
• Sébastien Lorber (@​slorber)
• Zwyx (@​Zwyx)

3.6.1 (2024-11-08)

🐛 Bug Fix

• docusaurus
  • #10658 fix(core): bundler should not minimize static assets (@​slorber)
• docusaurus-bundler, docusaurus-faster, docusaurus-utils-common, docusaurus-utils
  • #10649 fix(faster,utils): fix faster/types peerDependencies (@​slorber)

💅 Polish

• docusaurus-bundler, docusaurus-types, docusaurus
  • #10655 refactor(faster,bundler,core): improve js loader DX (@​slorber)

... (truncated)

Changelog

Sourced from @​docusaurus/module-type-aliases's changelog.

3.6.3 (2024-11-22)

🐛 Bug Fix

• docusaurus
  • #10712 fix(core): disable Rspack incremental in dev (@​slorber)

Committers: 1

• Sébastien Lorber (@​slorber)

3.6.2 (2024-11-19)

🐛 Bug Fix

• docusaurus-module-type-aliases
  • #10693 fix(types): add missing ambiant TS declarations for .md / .mdx partials (@​slorber)
• docusaurus-theme-translations
  • #10688 fix(theme-translation): add and update Japanese translations (@​Ryoga-exe)
• docusaurus
  • #10685 fix(cli): docusaurus --help should print plugin commands using extendCli() (@​slorber)
• docusaurus-bundler
  • #10680 fix(bundler): allow CSS nesting by default, restore postcss-preset-env (@​slorber)
• create-docusaurus
  • #10676 fix(create-docusaurus): add ts exclude to TS init template (@​slorber)
• docusaurus-bundler, docusaurus-faster, docusaurus
  • #10648 fix(faster): Upgrade to Rspack 1.1.1, fix build progress bar display (@​slorber)

🔧 Maintenance

• #10691 chore(ci): retry yarn install to ignore temporary network errors (@​slorber)

Committers: 5

• Junior_Gx (@​goffxnca)
• Kyle Tsang (@​kyletsang)
• Ryoga (@​Ryoga-exe)
• Sébastien Lorber (@​slorber)
• Zwyx (@​Zwyx)

3.6.1 (2024-11-08)

🐛 Bug Fix

• docusaurus
  • #10658 fix(core): bundler should not minimize static assets (@​slorber)
• docusaurus-bundler, docusaurus-faster, docusaurus-utils-common, docusaurus-utils
  • #10649 fix(faster,utils): fix faster/types peerDependencies (@​slorber)

💅 Polish

... (truncated)

Commits

• 9c0e19c v3.6.3
• 90e85e8 chore: release Docusaurus 3.6.2 (#10698)
• be7bace fix(types): add missing ambiant TS declarations for .md / .mdx partials (#10693)
• f127278 chore: release Docusaurus 3.6.1 (#10659)
• ed2cdf3 chore: release Docusaurus v3.6 (#10633)
• 655ce94 chore: release 3.5.2 (#10400)
• See full diff in compare view

Updates @types/prismjs from 1.26.4 to 1.26.5

Commits

• See full diff in compare view

Updates @types/react from 18.3.5 to 18.3.12

Commits

• See full diff in compare view

Updates @typescript-eslint/eslint-plugin from 8.4.0 to 8.16.0

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.16.0

8.16.0 (2024-11-25)

🚀 Features

• support TypeScript 5.7 (#10372)
• eslint-plugin: [max-params] add function overload and function type support (#10312)
• eslint-plugin: [no-base-to-string] check Array.prototype.join (#10287)

🩹 Fixes

• typescript-estree: update conditions for unsupported version warning (#10385)

❤️ Thank You

• Inga @​inga-lovinde
• Josh Goldberg ✨
• Kim Sang Du @​developer-bandi
• YeonJuan @​yeonjuan

You can read about our versioning strategy and releases on our website.

v8.15.0

8.15.0 (2024-11-18)

🚀 Features

• eslint-plugin: added related-getter-setter-pairs rule (#10192)
• eslint-plugin: new rule no-unsafe-type-assertion (#10051)
• eslint-plugin: [prefer-nullish-coalescing] fix detection of ignoreConditionalTests involving boolean ! operator (#10299)
• rule-tester: run method - avoid to infer type parameter from tests param (#10324)
• typescript-eslint: allow infinitely deep array nesting in config function and extends (#10333)
• utils: add new optional language field to FlatConfig.Config type (#10326)

🩹 Fixes

• add missing peer dependencies (#9744)
• eslint-plugin: [consistent-indexed-object-style] handle circular mapped types (#10301)
• eslint-plugin: [await-thenable, return-await] don't flag awaiting unconstrained type parameter as unnecessary (#10314)
• eslint-plugin: [explicit-module-boundary-types] and [explicit-function-return-type] don't report on as const satisfies (#10315)
• eslint-plugin: report deprecations used in default export (#10330)
• utils: add defaultOptions to meta in rule (#10339)

❤️ Thank You

• Bartosz @​burtek
• Brad Zacher @​bradzacher
• Ethan Wu
• Josh Goldberg ✨
• Kim Sang Du @​developer-bandi

... (truncated)

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.16.0 (2024-11-25)

🚀 Features

• eslint-plugin: [no-base-to-string] check Array.prototype.join (#10287)
• eslint-plugin: [max-params] add function overload and function type support (#10312)

❤️ Thank You

• Kim Sang Du @​developer-bandi
• YeonJuan @​yeonjuan

You can read about our versioning strategy and releases on our website.

8.15.0 (2024-11-18)

🚀 Features

• eslint-plugin: [prefer-nullish-coalescing] fix detection of ignoreConditionalTests involving boolean ! operator (#10299)
• eslint-plugin: new rule no-unsafe-type-assertion (#10051)
• eslint-plugin: added related-getter-setter-pairs rule (#10192)

🩹 Fixes

• utils: add defaultOptions to meta in rule (#10339)
• eslint-plugin: report deprecations used in default export (#10330)
• eslint-plugin: [explicit-module-boundary-types] and [explicit-function-return-type] don't report on as const satisfies (#10315)
• eslint-plugin: [await-thenable, return-await] don't flag awaiting unconstrained type parameter as unnecessary (#10314)
• eslint-plugin: [consistent-indexed-object-style] handle circular mapped types (#10301)

❤️ Thank You

• Josh Goldberg ✨
• Kim Sang Du @​developer-bandi
• Luis Sebastian Urrutia Fuentes @​LuisUrrutia
• Phillip Huang
• Ronen Amiel
• Szydlak @​wszydlak

You can read about our versioning strategy and releases on our website.

8.14.0 (2024-11-11)

🚀 Features

• eslint-plugin: [await-thenable] report unnecessary await using statements (#10209)
• eslint-plugin: [no-confusing-void-expression] add an option to ignore voidvoid (#10067)

🩹 Fixes

... (truncated)

Commits

• f74a8fa chore(release): publish 8.16.0
• 2e2433b feat(eslint-plugin): [no-base-to-string] check Array.prototype.join (#10287)
• 88e4c66 docs(eslint-plugin): add missing > in array-type.mdx (#10371)
• 71243db chore: correct lint errors in CI (#10370)
• cdbc669 feat(eslint-plugin): [max-params] add function overload and function type sup...
• cac88ca chore: set no-else-return allowIfElse to false (#10325)
• 2444351 chore(release): publish 8.15.0
• 6c27d08 chore: bump eslint dependencies (#10354)
• f5e23e2 fix(utils): add defaultOptions to meta in rule (#10339)
• 12ce800 docs(eslint-plugin): [no-confusing-void-expression] add a default value for `...
• Additional commits viewable in compare view

Updates @typescript-eslint/parser from 8.4.0 to 8.16.0

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.16.0

8.16.0 (2024-11-25)

🚀 Features

• support TypeScript 5.7 (#10372)
• eslint-plugin: [max-params] add function overload and function type support (#10312)
• eslint-plugin: [no-base-to-string] check Array.prototype.join (#10287)

🩹 Fixes

• typescript-estree: update conditions for unsupported version warning (#10385)

❤️ Thank You

• Inga @​inga-lovinde
• Josh Goldberg ✨
• Kim Sang Du @​developer-bandi
• YeonJuan @​yeonjuan

You can read about our versioning strategy and releases on our website.

v8.15.0

8.15.0 (2024-11-18)

🚀 Features

• eslint-plugin: added related-getter-setter-pairs rule (#10192)
• eslint-plugin: new rule no-unsafe-type-assertion (#10051)
• eslint-plugin: [prefer-nullish-coalescing] fix detection of ignoreConditionalTests involving boolean ! operator (#10299)
• rule-tester: run method - avoid to infer type parameter from tests param (#10324)
• typescript-eslint: allow infinitely deep array nesting in config function and extends (#10333)
• utils: add new optional language field to FlatConfig.Config type (#10326)

🩹 Fixes

• add missing peer dependencies (#9744)
• eslint-plugin: [consistent-indexed-object-style] handle circular mapped types (#10301)
• eslint-plugin: [await-thenable, return-await] don't flag awaiting unconstrained type parameter as unnecessary (#10314)
• eslint-plugin: [explicit-module-boundary-types] and [explicit-function-return-type] don't report on as const satisfies (#10315)
• eslint-plugin: report deprecations used in default export (#10330)
• utils: add defaultOptions to meta in rule (#10339)

❤️ Thank You

• Bartosz @​burtek
• Brad Zacher @​bradzacher
• Ethan Wu
• Josh Goldberg ✨
• Kim Sang Du @​developer-bandi

... (truncated)

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.16.0 (2024-11-25)

🚀 Features

• support TypeScript 5.7 (#10372)

❤️ Thank You

• Josh Goldberg ✨

You can read about our versioning strategy and releases on our website.

8.15.0 (2024-11-18)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.14.0 (2024-11-11)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.13.0 (2024-11-04)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.12.2 (2024-10-29)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.12.1 (2024-10-28)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.12.0 (2024-10-28)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.11.0 (2024-10-21)

... (truncated)

Commits

• f74a8fa chore(release): publish 8.16.0
• fe6b47f feat: support TypeScript 5.7 (#10372)
• 2444351 chore(release): publish 8.15.0
• e022eb0 docs: update license file to explicitly use bsd-2 clause license (#10291)
• 16fba0a chore(release): publish 8.14.0
• ac1f632 chore(release): publish 8.13.0
• 4af866a chore(release): publish 8.12.2
• 1edec1d chore(release): publish 8.12.1
• 3413a2d chore(release): publish 8.12.0
• 79c27a8 chore(release): publish 8.11.0
• Additional commits viewable in compare view

Updates eslint-plugin-react from 7.35.1 to 7.37.2

Release notes

Sourced from eslint-plugin-react's releases.

v7.37.2

Fixed

• [destructuring-assignment]: fix false negative when using typeof props.a (#3835[] @​golopot)

Changed

• [Refactor] [destructuring-assignment]: use getParentStatelessComponent (#3835[] @​golopot)

#3835: jsx-eslint/eslint-plugin-react#3835 [destructuring-assignment]: docs/rules/destructuring-assignment.md

v7.37.1

Fixed

• [meta] do not npmignore d.ts files (#3836[] @​ljharb)

Changed

• [readme] Fix shared settings link (#3834[] @​MgenGlder)

#3834: jsx-eslint/eslint-plugin-react#3834 #3836: jsx-eslint/eslint-plugin-react#3836

v7.37.0

Added

• add type generation (#3830[] @​voxpelli)
• [no-unescaped-entities]: add suggestions (#3831[] @​StyleShit)
• [forbid-component-props]: add allowedForPatterns/disallowedForPatterns options (#3805[] @​Efimenko)
• [no-unstable-nested-components]: add propNamePattern to support custom render prop naming conventions (#3826[] @​danreeves)

Changed

• [readme] flat config example for react 17+ (#3824[] @​GabenGar)

#3805: jsx-eslint/eslint-plugin-react#3805 #3824: jsx-eslint/eslint-plugin-react#3824 #3826: jsx-eslint/eslint-plugin-react#3826 #3830: jsx-eslint/eslint-plugin-react#3830 #3831: jsx-eslint/eslint-plugin-react#3831 [forbid-component-props]: docs/rules/forbid-component-props.md [no-unescaped-entities]: docs/rules/no-unescaped-entities.md [no-unstable-nested-components]: docs/rules/no-unstable-nested-components.md

v7.36.1

Fixed

• no-is-mounted: fix logic in method name check (#3821[] @​Mathias-S)
• jsx-no-literals: Avoid crashing on valueless boolean props (#3823[] @​reosarevok)

#3823: jsx-eslint/eslint-plugin-react#3823 #3821: jsx-eslint/eslint-plugin-react#3821

... (truncated)

Changelog

Sourced from eslint-plugin-react's changelog.

7.37.2 - 2024.10.22

Fixed

• [destructuring-assignment]: fix false negative when using typeof props.a (#3835[] @​golopot)

Changed

• [Refactor] [destructuring-assignment]: use getParentStatelessComponent (#3835[] @​golopot)

#3835: jsx-eslint/eslint-plugin-react#3835

7.37.1 - 2024.10.01

Fixed

• [meta] do not npmignore d.ts files (#3836[] @​ljharb)

Changed

• [readme] Fix shared settings link (#3834[] @​MgenGlder)

#3836: jsx-eslint/eslint-plugin-react#3836 #3834: jsx-eslint/eslint-plugin-react#3834

7.37.0 - 2024.09.26

Added

• add type generation (#3830[] @​voxpelli)
• [no-unescaped-entities]: add suggestions (#3831[] @​StyleShit)
• [forbid-component-props]: add allowedForPatterns/disallowedForPatterns options (#3805[] @​Efimenko)
• [no-unstable-nested-components]: add propNamePattern to support custom render prop naming conventions (#3826[] @​danreeves)

Changed

• [readme] flat config example for react 17+ (#3824[] @​GabenGar)

#3831: jsx-eslint/eslint-plugin-react#3831 #3830: jsx-eslint/eslint-plugin-react#3830 #3826: jsx-eslint/eslint-plugin-react#3826 #3824: jsx-eslint/eslint-plugin-react#3824 #3805: jsx-eslint/eslint-plugin-react#3805

7.36.1 - 2024.09.12

Fixed

• [no-is-mounted]: fix logic in method name check (#3821[] @​Mathias-S)
• [jsx-no-literals]: Avoid crashing on valueless boolean props (#3823[] @​reosarevok)

#3823: jsx-eslint/eslint-plugin-react#3823 #3821: jsx-eslint/eslint-plugin-react#3821

... (truncated)

Commits

• 256cf74 Update CHANGELOG and bump version
• 33db656 [Deps] update es-iterator-helpers
• 5696f99 [Dev Deps] update @babel/core, @babel/eslint-parser, `@babel/plugin-synta...
• 5c23573 [Dev Deps] update @babel/core, @​babel/eslint-parser, @​babel/plugin-syntax...
• c47fa56 [types] [Fix] ensure the index types are generated
• 63aceff [Fix] destructuring-assignment: fix false negative when using typeof props.a
• 96d46d5 [Refactor] destructuring-assignment: use getParentStatelessComponent
• ae6fb8d Update CHANGELOG and bump version
• 63e0b49 [meta] do not npmignore d.ts files
• 1f95a24 [readme] Fix shared settings link
• Additional commits viewable in compare view

Updates husky from 9.1.5 to 9.1.7

Release notes

Sourced from husky's releases.

v9.1.7

What's Changed

• fix: add husky label to deprecated warning by @​smackfu in typicode/husky#1538

New Contributors

• @​smackfu made their first contribution in typicode/husky#1538

Full Changelog: typicode/husky@v9.1.6...v9.1.7

v9.1.6

What's Changed

• Fix issue where example pre-commit file is generated incorrectly by @​dexmlee in typicode/husky#1519

New Contributors

• @​OlegKipchatov made their first contribution in typicode/husky#1495
• @​Byron2016 made their first contribution in typicode/husky#1499
• @​dexmlee made their first contribution in typicode/husky#1519

Full Changelog: typicode/husky@v9.1.5...v9.1.6

Commits

• 799e84b 9.1.7
• 30f2049 fix: add husky label to deprecated warning (#1538)
• a2d942a 9.1.6
• b4465ed fix: add parens around the null coalescing operator to fix issues when npm_co...
• 3b3e7f1 docs(spanish): improve spanish translation (#1504)
• dcf3aed dosc: repair support Spanish sponsors links (#1500)
• c3afd5f docs: support Spanish documentation (#1499)
• c5f4f48 docs: support Russian documentation (#1495)
• See full diff in compare view

Updates prettier from 3.3.3 to 3.4.1

Release notes

Sourced from prettier's releases.

3.4.1

🔗 Changelog

3.4.0

diff

🔗 Release note

Changelog

Sourced from prettier's changelog.

3.4.1

diff

Remove unnecessary parentheses around assignment in v-on (#16887 by @​fisker)

<!-- Input -->
\<template>
  <button @click="foo += 2">Click</button>
</template>
<!-- Prettier 3.4.0 -->
&lt;template>
<button @​click="(foo += 2)">Click</button>
</template>
<!-- Prettier 3.4.1 -->
&lt;template>
<button @​click="foo += 2">Click</button>
</template>

3.4.0

diff

🔗 Release Notes

Commits

• 37fd177 Release 3.4.1
• 1fb6297 Update ts-api-utils to v1.4.2 (#16888)
• f6fccad Remove unnecessary parentheses around assignment in v-on (#16887)
• 5fef089 Minor improvements in v3.4.0 blog post (#16886)
• 3542f13 3.4 release blog (#16851)
• f53791a Clean changelog_unreleased
• 2b41c93 Bump Prettier dependency to 3.4.0
• 10baab2 Update dependents count
• 7999e10 Release 3.4.0
• 2262d1e chore(config): migrate renovate config (#16884)
• Additional commits viewable in compare view

Updates typescript from 5.5.4 to 5.7.2

Release notes

Sourced from typescript's releases.

TypeScript 5.7

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.7.0 (Beta).
• fixed issues query for Typescript 5.7.1 (RC).
• fixed issues query for Typescript 5.7.2 (Stable).

Downloads are available on:

• npm

TypeScript 5.7 RC

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.7.0 (Beta).
• fixed issues query for Typescript 5.7.1 (RC).

Downloads are available on:

• npm

TypeScript 5.7 Beta

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.7.0 (Beta).

Downloads are available on:

• npm

TypeScript 5.6.3

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).
• fixed issues query for Typescript 5.6.1 (RC).
• fixed issues query for Typescript 5.6.2 (Stable).
• fixed issues query for Typescript 5.6.3 (Stable).

Downloads are available on:

• npm
• NuGet package

... (truncated)

Commits

• d701d90 Bump version to 5.7.2 and LKG
• 0503a63 🤖 Pick PR #60450 (Move to file: fix detection of refe...) into release-5.7 (#...
• 3140dbb 🤖 Pick PR #60488 (Stub out copilotRelated command) into release-5.7 (#60495)
• c1216de Update LKG
• 3ee2b95 🤖 Pick PR #60415 (Fix false positive rewriteRelativeI...) into release-5.7 (#...
• 44bd3f2 Bump version to 5.7.1-rc and LKG
• 5925c81 Update LKG
• 84d58cf Merge remote-tracking branch 'origin/main' into release-5.7
• 0ec4d30 Fixing exception on unsaved file (#60362)
• 11b2930 Add compatible overloads that accept ArrayBuffer to BigInt64Array/BigUint64Ar...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[stacklok-cloud]

Minder Vulnerability Report ✅

Minder analyzed this PR and found it does not add any new vulnerable dependencies.

Vulnerability scan of 8cddaf46:

• 🐞 vulnerable packages: 0
• 🛠 fixes available for: 0

[stacklok-cloud]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @docusaurus/module-type-aliases

Trusty Score: 0

📦 Dependency: @docusaurus/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.3
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1820
Number of git tags or releases	175
Versions matched to tags or releases	92

Alternatives

Package	Score	Description
@docusaurus/core	0

📦 Dependency: @types/eslint

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/eslint-scope	0

📦 Dependency: @types/eslint-scope

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/eslint	0

📦 Dependency: @types/estree

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/estraverse	0
@types/babel__traverse	0
@types/babylon	0

📦 Dependency: @types/prismjs

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

📦 Dependency: @types/react

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/react-dom	0
@types/react-router	0
@types/react-redux	0

📦 Dependency: @typescript-eslint/eslint-plugin

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3867
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@typescript-eslint/eslint-plugin-tslint	0
@typescript-eslint/parser	0

📦 Dependency: @typescript-eslint/parser

Trusty Score: 0

Alternatives

Package	Score	Description
@babel/eslint-parser	0

📦 Dependency: @typescript-eslint/scope-manager

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3188
Number of git tags or releases	166
Versions matched to tags or releases	157

📦 Dependency: @typescript-eslint/type-utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2257
Number of git tags or releases	166
Versions matched to tags or releases	156

📦 Dependency: @typescript-eslint/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3220
Number of git tags or releases	166
Versions matched to tags or releases	157

📦 Dependency: @typescript-eslint/typescript-estree

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3954
Number of git tags or releases	166
Versions matched to tags or releases	157

📦 Dependency: @typescript-eslint/utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2240
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/eslint-plugin	0
@typescript-eslint/parser	0

📦 Dependency: @typescript-eslint/visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3219
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@babel/eslint-parser	0
eslint-plugin-import	0
eslint	0
eslint-config-airbnb	0

📦 Dependency: acorn

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.1
Repository activity	6.8
User activity	9.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	136
Number of git tags or releases	103
Versions matched to tags or releases	102

Alternatives

Package	Score	Description
acorn-jsx	0

📦 Dependency: browserslist

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.1
Repository activity	7.1
User activity	9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	194
Number of git tags or releases	109
Versions matched to tags or releases	108

Alternatives

Package	Score	Description
browserslist-ga	0

📦 Dependency: caniuse-lite

Trusty Score: 0

Scoring details

Component	Score
Package activity	6.3
Repository activity	4.1
User activity	8.5
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	858
Number of git tags or releases	201
Versions matched to tags or releases	201

Alternatives

Package	Score	Description
caniuse-api	0
caniuse-db	0

📦 Dependency: electron-to-chromium

Trusty Score: 0

Scoring details

Component	Score
Package activity	6.5
Repository activity	3.1
User activity	10
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1817
Number of git tags or releases	405
Versions matched to tags or releases	405

📦 Dependency: es-abstract

Trusty Score: 0

Scoring details

Component	Score
Package activity	6.1
Repository activity	3.4
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	86
Number of git tags or releases	90
Versions matched to tags or releases	85

Alternatives

Package	Score	Description
es5-shim	0
es6-shim	0
es6-iterator	0

📦 Dependency: es-iterator-helpers

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.7
Repository activity	1.8
User activity	7.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	22
Number of git tags or releases	22
Versions matched to tags or releases	22

Alternatives

Package	Score	Description
lodash	0
ramda	0
underscore	0
lazy.js	0

📦 Dependency: escalade

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.1
Repository activity	2.3
User activity	8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	10
Number of git tags or releases	9
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
find-up	0
upath	0

📦 Dependency: eslint-plugin-react

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.2
Repository activity	7.9
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	213
Number of git tags or releases	113
Versions matched to tags or releases	66

Alternatives

Package	Score	Description
eslint-plugin-react-hooks	0
eslint-config-airbnb	0
eslint-plugin-react-native	0

📦 Dependency: eslint-visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.3
Repository activity	5.4
User activity	9.2
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	18
Number of git tags or releases	108
Versions matched to tags or releases	2

This package has been digitally signed using sigtore.

Source repository	https://github.com/eslint/js
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release-please.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=144865437

Alternatives

Package	Score	Description
eslint-plugin-import	0
eslint-plugin-react	0

📦 Dependency: husky

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.3
Repository activity	7.3
User activity	9.3
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	228
Number of git tags or releases	120
Versions matched to tags or releases	114

This package has been digitally signed using sigtore.

Source repository	https://github.com/typicode/husky
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/npm_publish.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=149537746

Alternatives

Package	Score	Description
lint-staged	0
pre-commit	0
git-hooks	0

📦 Dependency: is-finalizationregistry

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.3
Repository activity	1.3
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	4
Number of git tags or releases	4
Versions matched to tags or releases	4

📦 Dependency: iterator.prototype

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.1
Repository activity	0.9
User activity	7.3
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	6
Number of git tags or releases	5
Versions matched to tags or releases	5

Alternatives

Package	Score	Description
iterall	0
itertools	0
iterare	0

📦 Dependency: object-inspect

Trusty Score: 0

Scoring details

Component	Score
Package activity	6
Repository activity	3.4
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	38
Number of git tags or releases	37
Versions matched to tags or releases	25

Alternatives

Package	Score	Description
inspectpack	0

📦 Dependency: picocolors

Trusty Score: 0

Scoring details

Component	Score
Package activity	6.1
Repository activity	4.1
User activity	8.1
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	9
Number of git tags or releases	14
Versions matched to tags or releases	9

Alternatives

Package	Score	Description
chalk	0
colors	0
kleur	0

📦 Dependency: prettier

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.4
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	167
Number of git tags or releases	122
Versions matched to tags or releases	99

Alternatives

Package	Score	Description
eslint-plugin-prettier	0

📦 Dependency: reflect.getprototypeof

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.5
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
es5-shim	0

📦 Dependency: regexp.prototype.flags

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.6
Repository activity	2.1
User activity	9.1
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	16
Number of git tags or releases	15
Versions matched to tags or releases	15

Alternatives

Package	Score	Description
regexpu	0

📦 Dependency: typescript

Trusty Score: 0

Scoring details

Component	Score
Package activity	10
Repository activity	10
User activity	10
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3260
Number of git tags or releases	234
Versions matched to tags or releases	73

Alternatives

Package	Score	Description
ts-node	0
tslib	0
ts-loader	0
tsc	0

📦 Dependency: update-browserslist-db

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.8
Repository activity	3.8
User activity	7.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	19
Number of git tags or releases	19
Versions matched to tags or releases	18

Alternatives

Package	Score	Description
modern-normalize	0

📦 Dependency: webpack

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	9.5
User activity	9.2
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	843
Number of git tags or releases	112
Versions matched to tags or releases	107

Alternatives

Package	Score	Description
parcel	0
rollup	0
browserify	0

📦 Dependency: which-builtin-type

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
string	0
array	0

[stacklok-cloud]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @docusaurus/module-type-aliases

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.2
Repository activity	9.3
User activity	9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1792
Number of git tags or releases	175
Versions matched to tags or releases	72

📦 Dependency: @docusaurus/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.2
Repository activity	9.3
User activity	9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1820
Number of git tags or releases	175
Versions matched to tags or releases	92

📦 Dependency: @types/prismjs

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

📦 Dependency: @types/react

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/react-dom	0
@types/react-router	0
@types/react-redux	0

📦 Dependency: @typescript-eslint/eslint-plugin

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3867
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin-tslint	0

📦 Dependency: @typescript-eslint/parser

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3949
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@babel/eslint-parser	0

📦 Dependency: @typescript-eslint/scope-manager

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3188
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
eslint-plugin-react	0
typescript	0
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/type-utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2257
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/typescript-estree	0

📦 Dependency: @typescript-eslint/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3221
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0

📦 Dependency: @typescript-eslint/typescript-estree

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3954
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@babel/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2240
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3219
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@babel/eslint-parser	0
typescript-eslint	0
eslint-plugin-import	0
eslint	0
eslint-config-airbnb	0

📦 Dependency: es-abstract

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.9
Repository activity	3.4
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	86
Number of git tags or releases	90
Versions matched to tags or releases	85

📦 Dependency: es-iterator-helpers

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.7
Repository activity	1.8
User activity	7.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	22
Number of git tags or releases	22
Versions matched to tags or releases	22

📦 Dependency: eslint-plugin-react

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.2
Repository activity	7.9
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	213
Number of git tags or releases	113
Versions matched to tags or releases	66

Alternatives

Package	Score	Description
eslint-plugin-react-hooks	0
eslint-config-airbnb	0
eslint-plugin-react-native	0

📦 Dependency: eslint-visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.4
User activity	9
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	18
Number of git tags or releases	108
Versions matched to tags or releases	2

This package has been digitally signed using sigtore.

Source repository	https://github.com/eslint/js
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release-please.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=144865437

📦 Dependency: husky

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.3
Repository activity	7.3
User activity	9.3
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	228
Number of git tags or releases	120
Versions matched to tags or releases	114

This package has been digitally signed using sigtore.

Source repository	https://github.com/typicode/husky
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/npm_publish.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=149537746

Alternatives

Package	Score	Description
lint-staged	0
pre-commit	0
git-hooks	0

📦 Dependency: is-finalizationregistry

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.3
Repository activity	1.3
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	4
Number of git tags or releases	4
Versions matched to tags or releases	4

📦 Dependency: iterator.prototype

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.1
Repository activity	0.9
User activity	7.3
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	6
Number of git tags or releases	5
Versions matched to tags or releases	5

📦 Dependency: object-inspect

Trusty Score: 0

Scoring details

Component	Score
Package activity	6
Repository activity	3.4
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	38
Number of git tags or releases	37
Versions matched to tags or releases	25

📦 Dependency: prettier

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.4
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	167
Number of git tags or releases	122
Versions matched to tags or releases	99

Alternatives

Package	Score	Description
eslint-plugin-prettier	0

📦 Dependency: reflect.getprototypeof

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.5
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

📦 Dependency: regexp.prototype.flags

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.2
Repository activity	2.1
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	16
Number of git tags or releases	15
Versions matched to tags or releases	15

📦 Dependency: typescript

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.9
Repository activity	10
User activity	9.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3260
Number of git tags or releases	234
Versions matched to tags or releases	73

Alternatives

Package	Score	Description
ts-node	0
ts-loader	0
tsc	0

📦 Dependency: which-builtin-type

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
string	0
array	0

[stacklok-cloud]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @docusaurus/module-type-aliases

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.2
Repository activity	9.3
User activity	9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1792
Number of git tags or releases	175
Versions matched to tags or releases	72

📦 Dependency: @docusaurus/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.2
Repository activity	9.3
User activity	9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1820
Number of git tags or releases	175
Versions matched to tags or releases	92

📦 Dependency: @types/prismjs

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

📦 Dependency: @types/react

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/react-dom	0
@types/react-router	0
@types/react-redux	0

📦 Dependency: @typescript-eslint/eslint-plugin

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3867
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin-tslint	0

📦 Dependency: @typescript-eslint/parser

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3949
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@babel/eslint-parser	0

📦 Dependency: @typescript-eslint/scope-manager

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3188
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
eslint-plugin-react	0
typescript	0
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/type-utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2257
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/typescript-estree	0

📦 Dependency: @typescript-eslint/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3221
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0

📦 Dependency: @typescript-eslint/typescript-estree

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3954
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2240
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3219
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@babel/eslint-parser	0
typescript-eslint	0
eslint-plugin-import	0
eslint	0
eslint-config-airbnb	0

📦 Dependency: es-abstract

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.9
Repository activity	3.4
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	86
Number of git tags or releases	90
Versions matched to tags or releases	85

Alternatives

Package	Score	Description
es5-shim	0
es6-shim	0
es6-iterator	0

📦 Dependency: es-iterator-helpers

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.7
Repository activity	1.8
User activity	7.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	22
Number of git tags or releases	22
Versions matched to tags or releases	22

📦 Dependency: eslint-plugin-react

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.2
Repository activity	7.9
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	213
Number of git tags or releases	113
Versions matched to tags or releases	66

Alternatives

Package	Score	Description
eslint-plugin-react-hooks	0
eslint-config-airbnb	0
eslint-plugin-react-native	0

📦 Dependency: eslint-visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.4
User activity	9
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	18
Number of git tags or releases	108
Versions matched to tags or releases	2

This package has been digitally signed using sigtore.

Source repository	https://github.com/eslint/js
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release-please.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=144865437

📦 Dependency: husky

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.3
Repository activity	7.3
User activity	9.3
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	228
Number of git tags or releases	120
Versions matched to tags or releases	114

This package has been digitally signed using sigtore.

Source repository	https://github.com/typicode/husky
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/npm_publish.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=149537746

📦 Dependency: is-finalizationregistry

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.3
Repository activity	1.3
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	4
Number of git tags or releases	4
Versions matched to tags or releases	4

📦 Dependency: iterator.prototype

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.1
Repository activity	0.9
User activity	7.3
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	6
Number of git tags or releases	5
Versions matched to tags or releases	5

📦 Dependency: object-inspect

Trusty Score: 0

Scoring details

Component	Score
Package activity	6
Repository activity	3.4
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	38
Number of git tags or releases	37
Versions matched to tags or releases	25

📦 Dependency: prettier

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.4
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	167
Number of git tags or releases	122
Versions matched to tags or releases	99

Alternatives

Package	Score	Description
eslint-plugin-prettier	0

📦 Dependency: reflect.getprototypeof

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.5
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

📦 Dependency: regexp.prototype.flags

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.2
Repository activity	2.1
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	16
Number of git tags or releases	15
Versions matched to tags or releases	15

📦 Dependency: typescript

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.9
Repository activity	10
User activity	9.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3260
Number of git tags or releases	234
Versions matched to tags or releases	73

Alternatives

Package	Score	Description
ts-node	0
tslib	0
ts-loader	0
tsc	0

📦 Dependency: which-builtin-type

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

[stacklok-cloud]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @docusaurus/module-type-aliases

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.3
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1792
Number of git tags or releases	175
Versions matched to tags or releases	72

📦 Dependency: @docusaurus/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.3
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1820
Number of git tags or releases	175
Versions matched to tags or releases	92

Alternatives

Package	Score	Description
@docusaurus/core	0

📦 Dependency: @types/prismjs

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.9
Provenance	unknown

📦 Dependency: @types/react

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/react-dom	0
@types/react-router	0
@types/react-redux	0

📦 Dependency: @typescript-eslint/eslint-plugin

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3867
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin-tslint	0

📦 Dependency: @typescript-eslint/parser

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3949
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@babel/eslint-parser	0

📦 Dependency: @typescript-eslint/scope-manager

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3188
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
eslint-plugin-react	0
typescript	0
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/type-utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2257
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/typescript-estree	0

📦 Dependency: @typescript-eslint/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3221
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0

📦 Dependency: @typescript-eslint/typescript-estree

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3954
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@babel/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2240
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3219
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@babel/eslint-parser	0
typescript-eslint	0
eslint-plugin-import	0
eslint	0
eslint-config-airbnb	0

📦 Dependency: es-abstract

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.9
Repository activity	3.4
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	86
Number of git tags or releases	90
Versions matched to tags or releases	85

Alternatives

Package	Score	Description
es5-shim	0
es6-shim	0
es6-iterator	0

📦 Dependency: es-iterator-helpers

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.7
Repository activity	1.8
User activity	7.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	22
Number of git tags or releases	22
Versions matched to tags or releases	22

Alternatives

Package	Score	Description
ramda	0
underscore	0
lazy.js	0
lodash	0

📦 Dependency: eslint-plugin-react

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.2
Repository activity	7.9
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	213
Number of git tags or releases	113
Versions matched to tags or releases	66

Alternatives

Package	Score	Description
eslint-plugin-react-hooks	0
eslint-config-airbnb	0
eslint-plugin-react-native	0

📦 Dependency: eslint-visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.4
User activity	9
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	18
Number of git tags or releases	108
Versions matched to tags or releases	2

This package has been digitally signed using sigtore.

Source repository	https://github.com/eslint/js
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release-please.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=144865437

Alternatives

Package	Score	Description
eslint-plugin-import	0
eslint-plugin-react	0

📦 Dependency: husky

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.3
Repository activity	7.3
User activity	9.3
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	228
Number of git tags or releases	120
Versions matched to tags or releases	114

This package has been digitally signed using sigtore.

Source repository	https://github.com/typicode/husky
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/npm_publish.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=149537746

Alternatives

Package	Score	Description
lint-staged	0
pre-commit	0
git-hooks	0

📦 Dependency: is-finalizationregistry

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.3
Repository activity	1.3
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	4
Number of git tags or releases	4
Versions matched to tags or releases	4

📦 Dependency: iterator.prototype

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.1
Repository activity	0.9
User activity	7.3
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	6
Number of git tags or releases	5
Versions matched to tags or releases	5

Alternatives

Package	Score	Description
iterall	0
itertools	0
iterare	0

📦 Dependency: object-inspect

Trusty Score: 0

Scoring details

Component	Score
Package activity	6
Repository activity	3.4
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	38
Number of git tags or releases	37
Versions matched to tags or releases	25

Alternatives

Package	Score	Description
inspectpack	0

📦 Dependency: prettier

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.4
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	167
Number of git tags or releases	122
Versions matched to tags or releases	99

Alternatives

Package	Score	Description
eslint-plugin-prettier	0

📦 Dependency: reflect.getprototypeof

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.5
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
core-js	0
es5-shim	0

📦 Dependency: regexp.prototype.flags

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.2
Repository activity	2.1
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	16
Number of git tags or releases	15
Versions matched to tags or releases	15

Alternatives

Package	Score	Description
regexpu	0

📦 Dependency: typescript

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.9
Repository activity	10
User activity	9.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3260
Number of git tags or releases	234
Versions matched to tags or releases	73

Alternatives

Package	Score	Description
ts-node	0
tslib	0
ts-loader	0
tsc	0

📦 Dependency: which-builtin-type

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
string	0
array	0

[stacklok-cloud]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: @docusaurus/module-type-aliases

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.3
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1792
Number of git tags or releases	175
Versions matched to tags or releases	72

📦 Dependency: @docusaurus/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.3
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1820
Number of git tags or releases	175
Versions matched to tags or releases	92

Alternatives

Package	Score	Description
@docusaurus/core	0

📦 Dependency: @types/prismjs

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.9
Provenance	unknown

📦 Dependency: @types/react

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.4
Repository activity	10
User activity	8.8
Provenance	unknown

Alternatives

Package	Score	Description
@types/react-dom	0
@types/react-router	0
@types/react-redux	0

📦 Dependency: @typescript-eslint/eslint-plugin

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3867
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin-tslint	0

📦 Dependency: @typescript-eslint/parser

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3949
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@babel/eslint-parser	0

📦 Dependency: @typescript-eslint/scope-manager

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3188
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
eslint-plugin-react	0
typescript	0
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/type-utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2257
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/typescript-estree	0

📦 Dependency: @typescript-eslint/types

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3221
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0

📦 Dependency: @typescript-eslint/typescript-estree

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.4
Repository activity	8.2
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3954
Number of git tags or releases	167
Versions matched to tags or releases	158

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@babel/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/utils

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	2240
Number of git tags or releases	167
Versions matched to tags or releases	157

Alternatives

Package	Score	Description
@typescript-eslint/parser	0
@typescript-eslint/eslint-plugin	0

📦 Dependency: @typescript-eslint/visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.5
Repository activity	8.2
User activity	8.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3219
Number of git tags or releases	166
Versions matched to tags or releases	156

Alternatives

Package	Score	Description
@babel/eslint-parser	0
typescript-eslint	0
eslint-plugin-import	0
eslint	0
eslint-config-airbnb	0

📦 Dependency: es-abstract

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.9
Repository activity	3.4
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	86
Number of git tags or releases	90
Versions matched to tags or releases	85

Alternatives

Package	Score	Description
es5-shim	0
es6-shim	0
es6-iterator	0

📦 Dependency: es-iterator-helpers

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.7
Repository activity	1.8
User activity	7.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	22
Number of git tags or releases	22
Versions matched to tags or releases	22

Alternatives

Package	Score	Description
ramda	0
underscore	0
lazy.js	0
lodash	0

📦 Dependency: eslint-plugin-react

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.2
Repository activity	7.9
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	213
Number of git tags or releases	113
Versions matched to tags or releases	66

Alternatives

Package	Score	Description
eslint-plugin-react-hooks	0
eslint-config-airbnb	0
eslint-plugin-react-native	0

📦 Dependency: eslint-visitor-keys

Trusty Score: 0

Scoring details

Component	Score
Package activity	7.2
Repository activity	5.4
User activity	9
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	18
Number of git tags or releases	108
Versions matched to tags or releases	2

This package has been digitally signed using sigtore.

Source repository	https://github.com/eslint/js
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/release-please.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=144865437

Alternatives

Package	Score	Description
eslint-plugin-import	0
eslint-plugin-react	0

📦 Dependency: husky

Trusty Score: 0

Scoring details

Component	Score
Package activity	8.3
Repository activity	7.3
User activity	9.3
Provenance	verified_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	228
Number of git tags or releases	120
Versions matched to tags or releases	114

This package has been digitally signed using sigtore.

Source repository	https://github.com/typicode/husky
Cerificate Issuer	CN=sigstore-intermediate,O=sigstore.dev
GitHub action workflow	.github/workflows/npm_publish.yml
Rekor (public ledger) entry	https://search.sigstore.dev/?logIndex=149537746

Alternatives

Package	Score	Description
lint-staged	0
pre-commit	0
git-hooks	0

📦 Dependency: is-finalizationregistry

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.3
Repository activity	1.3
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	4
Number of git tags or releases	4
Versions matched to tags or releases	4

📦 Dependency: iterator.prototype

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.1
Repository activity	0.9
User activity	7.3
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	6
Number of git tags or releases	5
Versions matched to tags or releases	5

Alternatives

Package	Score	Description
iterall	0
itertools	0
iterare	0

📦 Dependency: object-inspect

Trusty Score: 0

Scoring details

Component	Score
Package activity	6
Repository activity	3.4
User activity	8.7
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	38
Number of git tags or releases	37
Versions matched to tags or releases	25

Alternatives

Package	Score	Description
inspectpack	0

📦 Dependency: prettier

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.1
Repository activity	9.4
User activity	8.8
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	167
Number of git tags or releases	122
Versions matched to tags or releases	99

Alternatives

Package	Score	Description
eslint-plugin-prettier	0

📦 Dependency: reflect.getprototypeof

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.5
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
core-js	0
es5-shim	0

📦 Dependency: regexp.prototype.flags

Trusty Score: 0

Scoring details

Component	Score
Package activity	5.2
Repository activity	2.1
User activity	8.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	16
Number of git tags or releases	15
Versions matched to tags or releases	15

Alternatives

Package	Score	Description
regexpu	0

📦 Dependency: typescript

Trusty Score: 0

Scoring details

Component	Score
Package activity	9.9
Repository activity	10
User activity	9.9
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	3260
Number of git tags or releases	234
Versions matched to tags or releases	73

Alternatives

Package	Score	Description
ts-node	0
tslib	0
ts-loader	0
tsc	0

📦 Dependency: which-builtin-type

Trusty Score: 0

Scoring details

Component	Score
Package activity	4.4
Repository activity	1.4
User activity	7.4
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	8
Number of git tags or releases	8
Versions matched to tags or releases	8

Alternatives

Package	Score	Description
string	0
array	0