ini [BUG] `ini@4.1.2` has an invalid attestation

[BUG] `[email protected]` has an invalid attestation

Open sjinks opened this issue 4 months ago • 1 comments

Is there an existing issue for this?

[X] I have searched the existing issues

Current Behavior

npm audit signatures complains:

1 package has an invalid attestation:

[email protected] (https://registry.npmjs.org/)

Someone might have tampered with this package since it was published on the registry!

Expected Behavior

No errors about package attestation

Steps To Reproduce

npm init -y
npm i ini
npm audit signatures

Test repo: https://github.com/sjinks/test-ini Action log: https://github.com/sjinks/test-ini/actions/runs/8242432839/job/22541375637

Environment

npm: 10.2.4
Node: v20.11.1
OS: Ubuntu 22.04.4 LTS
platform: amd64

Mar 12 '24 02:03 sjinks

ini ini copied to clipboard

[BUG] `[email protected]` has an invalid attestation

Is there an existing issue for this?

Current Behavior

Expected Behavior

Steps To Reproduce

Environment

ini
ini copied to clipboard