← Home

@adguard/dnr-rulesets

npm

Utility to create AdGuard DNR rulesets for mv3 extensions

100
Versions
GPL-3.0-only
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

ameshkovmaximtopblakhard

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/filters/local_script_rules.js AI (source-diff): This file contains AdGuard scriptlet filter rules — minified JS strings mapped to expanded implementations. This is expected content for an ad-blocking DNR ruleset package, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/chromium-mv3/local_script_rules.js AI (source-diff): These files contain AdGuard's scriptlet lookup tables — minified ad-blocking JS used as object keys with expanded implementations as values. This is the package's documented design, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/opera-mv3/local_script_rules.js AI (source-diff): Same as chromium-mv3 variant: AdGuard scriptlet lookup tables with minified keys and readable implementations. Expected build artifact for this package. ai
publish-pattern rapid-publish AI (publish-pattern): Package has 13,351 versions with timestamp-based version numbers, indicating a fully automated filter-list update pipeline. Rapid publishing is the normal operating mode for this package. ai
phantom-deps phantom-dep:chokidar AI (phantom-deps): CLI tool legitimately uses chokidar for file watching; declared in dependencies and referenced in config files. ai
dependencies unvetted-dep:@adguard/agtree AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
phantom-deps phantom-dep:@adguard/re2-wasm AI (phantom-deps): First-party AdGuard dependency declared in package.json; phantom-dep flag is a false positive for same-org packages. ai
phantom-deps phantom-dep:commander AI (phantom-deps): CLI tool legitimately uses commander for CLI argument parsing; declared in dependencies. ai
dependencies unvetted-dep:@adguard/logger AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/re2-wasm AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/tsurlfilter AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai

Versions (showing 100 of 9635)

Version Deps Published
3.3.20260222200051 10 / 29
3.3.20260222190054 10 / 29
3.3.20260222180051 10 / 29
3.3.20260222170051 10 / 29
3.3.20260222160057 10 / 29
3.3.20260222150057 10 / 29
3.3.20260222140050 10 / 29
3.3.20260222130056 10 / 29
3.3.20260222120052 10 / 29
3.3.20260222110054 10 / 29
3.3.20260222100058 10 / 29
3.3.20260222090050 10 / 29
3.3.20260222070050 10 / 29
3.3.20260222060106 10 / 29
3.3.20260222050051 10 / 29
3.3.20260222040046 10 / 29
3.3.20260222030051 10 / 29
3.3.20260222020101 10 / 29
3.3.20260222010051 10 / 29
3.3.20260222000101 10 / 29
3.3.20260221220052 10 / 29
3.3.20260221210049 10 / 29
3.3.20260221200051 10 / 29
3.3.20260221190050 10 / 29
3.3.20260221170050 10 / 29
3.3.20260221160052 10 / 29
3.3.20260221140049 10 / 29
3.3.20260221130047 10 / 29
3.3.20260221120050 10 / 29
3.3.20260221100047 10 / 29
3.3.20260221080055 10 / 29
3.3.20260221070050 10 / 29
3.3.20260221050120 10 / 29
3.3.20260221030057 10 / 29
3.3.20260221000112 10 / 29
3.3.20260220230057 10 / 29
3.3.20260220220055 10 / 29
3.3.20260220210057 10 / 29
3.3.20260220200048 10 / 29
3.3.20260220190056 10 / 29
3.3.20260220180106 10 / 29
3.3.20260220170050 10 / 29
3.3.20260220160109 10 / 29
3.3.20260220150128 10 / 29
3.3.20260220140148 10 / 29
3.3.20260220130100 10 / 29
3.3.20260220120057 10 / 29
3.3.20260220110140 10 / 29
3.3.20260220100117 10 / 29
3.3.20260220080117 10 / 29
3.3.20260220070059 10 / 29
3.3.20260220060118 10 / 29
3.3.20260220040051 10 / 29
3.3.20260220030052 10 / 29
3.3.20260220020102 10 / 29
3.3.20260220000140 10 / 29
3.3.20260219230056 10 / 29
3.3.20260219220051 10 / 29
3.3.20260219210057 10 / 29
3.3.20260219190053 10 / 29
3.3.20260219180059 10 / 29
3.3.20260219160052 10 / 29
3.3.20260219140235 10 / 29
3.3.20260219120145 10 / 29
3.3.20260219110212 10 / 29
3.3.20260219100100 10 / 29
3.3.20260219080054 10 / 29
3.3.20260219070101 10 / 29
3.3.20260219060053 10 / 29
3.3.20260219050108 10 / 29
3.3.20260219040113 10 / 29
3.3.20260219030052 10 / 29
3.3.20260219020104 10 / 29
3.3.20260219010056 10 / 29
3.3.20260219000133 10 / 29
3.3.20260218230059 10 / 29
3.3.20260218220109 10 / 29
3.3.20260218210054 10 / 29
3.3.20260218180057 10 / 29
3.3.20260218170103 10 / 29
3.3.20260218160126 10 / 29
3.3.20260218150225 10 / 29
3.3.20260218140135 10 / 29
3.3.20260218130121 10 / 29
3.3.20260218120103 10 / 29
3.3.20260218110256 10 / 29
3.3.20260218100217 10 / 29
3.3.20260218090112 10 / 29
3.3.20260218080114 10 / 29
3.3.20260218070059 10 / 29
3.3.20260218060126 10 / 29
3.3.20260218050102 10 / 29
3.3.20260218040101 10 / 29
3.3.20260218030148 10 / 29
3.3.20260218020055 10 / 29
3.3.20260218010048 10 / 29
3.3.20260218000148 10 / 29
3.3.20260217230052 10 / 29
3.3.20260217220046 10 / 29
3.3.20260217210054 10 / 29
Showing 100 of 9635 Next page →

v3.3.20260222150057

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260222030051

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260221120050

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260220210057

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260220140148

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260219230056

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260219220051

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260218130121

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260218100217

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.