npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

n8n-nodes-globiguard

v1.0.4

Published

GlobiGuard n8n community node with install registration and governed-action checkpoints.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

guidegdmguidegdm

Keywords

n8n-community-node-package

Readme

n8n-nodes-globiguard

n8n community-node package for GlobiGuard install registration and governed-action checkpoints.

Included capabilities

  • TypeScript source and shipped CJS credential definitions
  • Register Install, Governance Checkpoint, Wait for Approval, Export Evidence Package, Incident Replay Lookup, and Verify GlobiGuard Webhook operations
  • Runtime, install-identity, and credential rules aligned with the shared SDK/bootstrap contract
  • n8n manifest wiring with generated bundled CJS runtime artifacts in dist/
  • Custom GlobiGuard SVG node icon
  • Importable starter workflow templates under examples/n8n/
  • Node.js >=22

Runtime contract

  • n8n is server-side only
  • n8n is control-plane-first by default
  • direct decision-engine access is optional and explicit
  • install registration and heartbeat reuse the shared bootstrap profile contract
  • the primary node surface is Governance Checkpoint, placed before risky email, CRM, Slack, webhook, database, or ticket nodes

Credential policy

  • allowed credential kinds:
    • secret in sandbox and live
    • local only in local
  • Browser/publishable credentials are not supported
  • hosted deployments require globiguard_issued bootstrap identity
  • self-hosted and sovereign deployments require customer_issued bootstrap identity
  • self-hosted and sovereign deployments must choose install reporting explicitly: opt_in or disabled
  • webhook signing secrets are separate from API tokens and are used only by the Verify GlobiGuard Webhook operation

Connection defaults

| Surface | Default | Optional | | --- | --- | --- | | Control plane | required | no | | Decision engine | off | yes, only with trusted endpoint + matching secret/local credential |

Entrypoint note

The root package import stays ESM-first for the helper/runtime surface, while the n8n package manifest points n8n itself at the built dist/**/*.cjs artifacts. The TypeScript and CJS node surfaces are both kept aligned to the shared bootstrap helpers for:

  • runtime creation
  • credential-policy enforcement
  • install registration
  • optional heartbeat emission

Governance Checkpoint

Place GlobiGuard immediately before the real action node and choose the matching governed action:

| Downstream action | Governed action | Destination type | | --- | --- | --- | | Email Send | email.send | email | | CRM Update | crm.update | crm | | Slack Post | slack.post | slack | | Webhook Call | webhook.call | webhook | | Database Write | database.write | database | | Ticket Creation | ticket.create | ticketing |

The node sends a metadata-safe payload summary to /v1/actions/authorize using the server credential. It annotates items with json.globiguard and, by default, stops BLOCK and QUEUE decisions before downstream action nodes run. Use Annotate Only only for dry runs or migrations.

The node has separate branch outputs for allow, modified, blocked, queued, and error visibility. Do not wire blocked or unresolved queued branches to the same business-action node unless you are intentionally testing an unsafe override.

One-click starter workflow

Install the community node in n8n with package name n8n-nodes-globiguard, then import the starter workflow from the GitHub raw URL:

https://raw.githubusercontent.com/globiguard/globiguard-open/main/examples/n8n/globiguard-governed-email-starter.json

In n8n, use Import from URL or download the JSON and use Import from File. The template wires a Manual Trigger into a GlobiGuard Governance Checkpoint, routes ALLOW decisions to a downstream action placeholder, routes QUEUE decisions to Wait for Approval, and keeps BLOCK decisions isolated.

Approval, evidence, replay, and webhooks

  • Wait for Approval polls the queue entry and fails closed on rejected, expired, still-pending, or unavailable state.
  • Export Evidence Package returns evidence package identifiers, checksums, summaries, and descriptors; large artifacts should be handled through metadata-safe pointers.
  • Incident Replay Lookup returns the replay timeline and explicit gaps.
  • Verify GlobiGuard Webhook checks signature, timestamp, delivery ID, event type, replay window, and the credential-scoped webhook signing secret before a workflow consumes approval/evidence events.

Sample workflow templates live under examples/n8n/.

Compatibility: action checkpoint payloads use contract version 2026-04-action-beta and require a compatible GlobiGuard control plane or action gateway. Browser/publishable credentials are never valid in n8n.