Verified packages
Proof
Proof you can run
Install a public package, audit the workspace and verify unsafe manifests fail before release.
Transparency leaves
Registry trust
Safe path
Install one package. Verify every step.
nipmod inspect pkg:did:key:z6MkfAZP5ayqPdX9biypAAZAjtDM1AbztFTmUFNGVqjpn41N/gitlawb-release-review@0.1.0
nipmod install gitlawb-release-review
nipmod audit --online
nipmod ci --online- Package
- gitlawb-release-review
- Expected trust
- verified/100
- Checkpoint
- 3cc66da3292900a4ac482b2c301db5c6e0a00c2461847a29fec5275da7f631cf
Blocks
Unsafe manifests fail before release.
postinstall
postinstall.allowed must be false
manifest schemaexec
exec.allowed must be false
manifest schemabroad network
network wildcards are not allowed
permission grammarsecret env
secret like environment variables are rejected
permission grammarsecret scope
secrets permissions are unsupported in v1
permission grammarwrite path
filesystem write scopes are rejected
permission grammarprompt injection metadata
prompt-injection metadata is rejected
safe text schema