← Home

@adguard/dnr-rulesets

npm

Utility to create AdGuard DNR rulesets for mv3 extensions

100
Versions
GPL-3.0-only
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

ameshkovmaximtopblakhard

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/filters/local_script_rules.js AI (source-diff): This file contains AdGuard scriptlet filter rules — minified JS strings mapped to expanded implementations. This is expected content for an ad-blocking DNR ruleset package, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/chromium-mv3/local_script_rules.js AI (source-diff): These files contain AdGuard's scriptlet lookup tables — minified ad-blocking JS used as object keys with expanded implementations as values. This is the package's documented design, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/opera-mv3/local_script_rules.js AI (source-diff): Same as chromium-mv3 variant: AdGuard scriptlet lookup tables with minified keys and readable implementations. Expected build artifact for this package. ai
publish-pattern rapid-publish AI (publish-pattern): Package has 13,351 versions with timestamp-based version numbers, indicating a fully automated filter-list update pipeline. Rapid publishing is the normal operating mode for this package. ai
phantom-deps phantom-dep:chokidar AI (phantom-deps): CLI tool legitimately uses chokidar for file watching; declared in dependencies and referenced in config files. ai
dependencies unvetted-dep:@adguard/agtree AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
phantom-deps phantom-dep:@adguard/re2-wasm AI (phantom-deps): First-party AdGuard dependency declared in package.json; phantom-dep flag is a false positive for same-org packages. ai
phantom-deps phantom-dep:commander AI (phantom-deps): CLI tool legitimately uses commander for CLI argument parsing; declared in dependencies. ai
dependencies unvetted-dep:@adguard/logger AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/re2-wasm AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/tsurlfilter AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai

Versions (showing 100 of 9557)

Version Deps Published
4.0.20260310120057 10 / 29
4.0.20260310110050 10 / 29
4.0.20260310100059 10 / 29
4.0.20260310090101 10 / 29
4.0.20260310080127 10 / 29
4.0.20260310060109 10 / 29
4.0.20260310040137 10 / 29
4.0.20260310020051 10 / 29
4.0.20260310010050 10 / 29
4.0.20260310000100 10 / 29
4.0.20260309230043 10 / 29
4.0.20260309220045 10 / 29
4.0.20260309210048 10 / 29
4.0.20260309200043 10 / 29
4.0.20260309190048 10 / 29
4.0.20260309180053 10 / 29
4.0.20260309170058 10 / 29
4.0.20260309160052 10 / 29
4.0.20260309150055 10 / 29
4.0.20260309140045 10 / 29
4.0.20260309130051 10 / 29
4.0.20260309120056 10 / 29
4.0.20260309110053 10 / 29
4.0.20260309100054 10 / 29
4.0.20260309090057 10 / 29
4.0.20260309080043 10 / 29
4.0.20260309060102 10 / 29
4.0.20260309050051 10 / 29
4.0.20260309040052 10 / 29
4.0.20260309030049 10 / 29
4.0.20260309020048 10 / 29
4.0.20260309000104 10 / 29
4.0.20260308230052 10 / 29
4.0.20260308220051 10 / 29
4.0.20260308210044 10 / 29
4.0.20260308200048 10 / 29
4.0.20260308180050 10 / 29
4.0.20260308160053 10 / 29
4.0.20260308150055 10 / 29
4.0.20260308140053 10 / 29
4.0.20260308120043 10 / 29
4.0.20260308110050 10 / 29
4.0.20260308100054 10 / 29
4.0.20260308090048 10 / 29
4.0.20260308080051 10 / 29
4.0.20260308070051 10 / 29
4.0.20260308040050 10 / 29
4.0.20260308030052 10 / 29
4.0.20260308020048 10 / 29
4.0.20260308010039 10 / 29
4.0.20260308000059 10 / 29
4.0.20260307230054 10 / 29
4.0.20260307220051 10 / 29
4.0.20260307210051 10 / 29
4.0.20260307200043 10 / 29
4.0.20260307180049 10 / 29
4.0.20260307170047 10 / 29
4.0.20260307160046 10 / 29
4.0.20260307150054 10 / 29
4.0.20260307140041 10 / 29
4.0.20260307130056 10 / 29
4.0.20260307110042 10 / 29
4.0.20260307090047 10 / 29
4.0.20260307080042 10 / 29
4.0.20260307070054 10 / 29
4.0.20260307050048 10 / 29
4.0.20260307040051 10 / 29
4.0.20260307030052 10 / 29
4.0.20260307020044 10 / 29
4.0.20260307010045 10 / 29
4.0.20260306230054 10 / 29
4.0.20260306220048 10 / 29
4.0.20260306210055 10 / 29
4.0.20260306200100 10 / 29
4.0.20260306190045 10 / 29
4.0.20260306180054 10 / 29
4.0.20260306170053 10 / 29
4.0.20260306160059 10 / 29
4.0.20260306150110 10 / 29
4.0.20260306140100 10 / 29
4.0.20260306130124 10 / 29
4.0.20260306120141 10 / 29
4.0.20260306110047 10 / 29
4.0.20260306100059 10 / 29
4.0.20260306090126 10 / 29
4.0.20260306080047 10 / 29
4.0.20260306070100 10 / 29
4.0.20260306060124 10 / 29
4.0.20260306050109 10 / 29
4.0.20260306030106 10 / 29
4.0.20260306020043 10 / 29
4.0.20260306010049 10 / 29
4.0.20260306000107 10 / 29
4.0.20260305220043 10 / 29
4.0.20260305210103 10 / 29
4.0.20260305200100 10 / 29
4.0.20260305190049 10 / 29
4.0.20260305180101 10 / 29
4.0.20260305170251 10 / 29
4.0.20260305160043 10 / 29
Showing 100 of 9557 Next page →

v4.0.20260310120057

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260310010050

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260309150055

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260309020048

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260307170047

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260307050048

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260307040051

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260307010045

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260306140100

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260306130124

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260306110047

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v4.0.20260305220043

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.