← Home

@everymatrix/cashier-receipt-page

npm
21
Versions
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

clokzeoleksandr.v.stepanovtaras.maksymivnatalya.anisimovaemfe_releasemariana.gheorgheadrian.priponandriizadvirnyiraulvasileemstrulea.sebastianstefan.vladgoe.sutadragos.bodeamaria.bumbarstefanaotong.woodtikarncatalinpoclidcristi.ungureanuliviuclement.everymatrixmihaibalanfrankie24

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:components/CashierReceiptPage-5Niu5QxT.js AI (source-diff): Standard Rollup/Vite minified bundle output for a Stencil component; no malicious patterns. ai
source-diff obfuscated-file:components/CashierReceiptPage-D0BywoKF.js AI (source-diff): Standard Rollup/Vite minified bundle output for a Stencil component; no malicious patterns. ai
source-diff obfuscated-file:components/CashierReceiptPage-BqPrjpEk.cjs AI (source-diff): Standard Rollup/Vite minified bundle output for a Stencil component; no malicious patterns. ai
source-diff obfuscated-file:components/CashierReceiptPage-Yl5Rmwwe.js AI (source-diff): Standard Rollup/Vite minified build output for a Stencil component; stable pattern across versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-CAA8s7e_.js AI (source-diff): Standard Rollup/Vite minified build output for a Stencil component; stable pattern across versions. ai
source-diff obfuscated-file:components/CashierError-DP63QYRV.js AI (source-diff): Standard Rollup/Vite minified build output for a Stencil component; stable pattern across versions. ai
source-diff obfuscated-file:components/CashierError-Bqnx6nL6.js AI (source-diff): Standard Rollup/Vite minified build output for a Stencil component; stable pattern across versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-BaEmGYBJ.cjs AI (source-diff): Standard Rollup/Vite minified build output for a Stencil component; stable pattern across versions. ai
source-diff obfuscated-file:components/CashierError-CTb7sUAf.cjs AI (source-diff): Standard Rollup/Vite minified build output for a Stencil component; stable pattern across versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-vNlOq9VG.js AI (source-diff): Standard Stencil/Svelte minified build output; consistent pattern across all package versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-DBtvS-9B.js AI (source-diff): Standard Stencil/Svelte minified build output; consistent pattern across all package versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-DTW678Hb.cjs AI (source-diff): Standard Stencil/Svelte minified build output; consistent pattern across all package versions. ai
npm-metadata no-description AI (npm-metadata): Consistent across all 486 versions; org publishing style, not a malware indicator. ai
source-diff obfuscated-file:components/CashierError-DgGX_Bgo.js AI (source-diff): Standard Stencil/Rollup minified build artifact; consistent with this package's build pipeline. ai
source-diff obfuscated-file:components/CashierReceiptPage-CsPMBx5V.js AI (source-diff): Standard Stencil/Rollup minified build artifact; consistent with this package's build pipeline. ai
source-diff obfuscated-file:components/CashierReceiptPage-C4aURoqr.js AI (source-diff): Standard Stencil/Rollup minified build artifact; consistent with this package's build pipeline. ai
source-diff obfuscated-file:components/CashierError-C2C_bphD.js AI (source-diff): Standard Stencil/Rollup minified build artifact; consistent with this package's build pipeline. ai
source-diff obfuscated-file:components/CashierReceiptPage-DMzYslgp.cjs AI (source-diff): Standard Stencil/Rollup minified build artifact; consistent with this package's build pipeline. ai
source-diff obfuscated-file:components/CashierError-CcXkeFHB.cjs AI (source-diff): Standard Stencil/Rollup minified build artifact; consistent with this package's build pipeline across all versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-Db-k-Ixs.js AI (source-diff): Standard minified Stencil/Svelte build output; consistent across all versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-D_63vXVL.js AI (source-diff): Standard minified Stencil/Svelte build output; consistent across all versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-C54y5emy.cjs AI (source-diff): Standard minified Stencil/Svelte build output; consistent across all versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-DlBrkz-Z.js AI (source-diff): Standard minified Stencil/Svelte build output; consistent with this package's established bundling pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-Bhmyqokv.js AI (source-diff): Standard minified Stencil/Svelte build output; consistent with this package's established bundling pattern. ai
source-diff obfuscated-file:components/CashierError-BSJEEtKz.cjs AI (source-diff): Minified Stencil/Svelte component bundle; standard build output for this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-BuTgPxmp.js AI (source-diff): Minified Svelte runtime bundle; standard build output for this package. ai
source-diff obfuscated-file:components/CashierReceiptPage--dqgGQ-S.cjs AI (source-diff): Minified Stencil/Svelte component bundle; standard build output for this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-CxWQDfSA.js AI (source-diff): Minified Svelte runtime bundle; standard build output for this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-Ddr_rz3w.js AI (source-diff): Standard minified build artifact from Stencil/Svelte bundler. ai
source-diff obfuscated-file:components/CashierError-LsL-NiMF.cjs AI (source-diff): Standard minified build artifact from Stencil/Svelte bundler; consistent with all prior versions of this package family. ai
source-diff obfuscated-file:components/CashierReceiptPage-DrIGycgR.cjs AI (source-diff): Standard minified build artifact; readable i18n strings and Svelte runtime patterns confirm legitimate bundle. ai
source-diff obfuscated-file:components/CashierError-BXvUVU1j.js AI (source-diff): Standard minified build artifact from Stencil/Svelte bundler. ai
source-diff obfuscated-file:components/CashierError-CvTv4opZ.js AI (source-diff): Standard minified build artifact from Stencil/Svelte bundler. ai
source-diff obfuscated-file:components/CashierReceiptPage-DSwAQIay.js AI (source-diff): Standard minified build artifact from Stencil/Svelte bundler. ai
source-diff obfuscated-file:components/CashierError-8RSGfbYj.cjs AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established artifact pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-BFjtEtMW.cjs AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established artifact pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-CFEu5tZT.js AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established artifact pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-ZIUQoYaf.js AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established artifact pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-CfBLvJo9.js AI (source-diff): Standard Svelte/Stencil minified bundle output; consistent with package's established build artifact pattern. ai
source-diff obfuscated-file:components/CashierError-PVjJ3_Ei.cjs AI (source-diff): Minified CJS bundle with localization strings; no malicious indicators, consistent with package build pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-B6zSITnt.cjs AI (source-diff): Standard Svelte/Stencil minified bundle output; consistent with package's established build artifact pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-DFA4RqMz.js AI (source-diff): Standard Svelte/Stencil minified bundle output; consistent with package's established build artifact pattern. ai
source-diff obfuscated-file:components/CashierError-CIh1axRJ.cjs AI (source-diff): Standard minified Svelte/Stencil build output; consistent with all prior approved versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-BczKAmGi.js AI (source-diff): Standard minified Svelte/Stencil build output; consistent with all prior approved versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-BwAtGyZ6.js AI (source-diff): Standard minified Svelte/Stencil build output; consistent with all prior approved versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-CXywFMJ0.cjs AI (source-diff): Standard minified Svelte/Stencil build output; consistent with all prior approved versions of this package. ai
source-diff obfuscated-file:components/CashierReceiptPage-8f1Sk0OQ.js AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established pattern. ai
source-diff obfuscated-file:components/CashierError-CGLAkDGv.cjs AI (source-diff): Minified component bundle with readable error message strings; no malicious indicators. ai
source-diff obfuscated-file:components/CashierReceiptPage-CsqbRiyI.js AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-Nvnxd5kM.cjs AI (source-diff): Standard minified Svelte/Stencil build output; consistent with package's established pattern across 459 versions. ai
source-diff obfuscated-file:components/CashierReceiptPage-ib8Mp6Tt.js AI (source-diff): Standard Svelte/Stencil minified build output; consistent with package's component build pattern. ai
source-diff obfuscated-file:components/CashierError-fvFvP8WT.cjs AI (source-diff): Minified error-message component; content is plaintext error strings, no malicious patterns. ai
source-diff obfuscated-file:components/CashierReceiptPage-CiOncRn1.cjs AI (source-diff): Standard Svelte/Stencil minified build output; consistent with package's component build pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-BZ-JwYho.js AI (source-diff): Standard Svelte/Stencil minified build output; consistent with package's component build pattern. ai
source-diff obfuscated-file:components/CashierReceiptPage-C4P5qga5.js AI (source-diff): Standard minified Stencil/Svelte bundle output; readable framework boilerplate confirms no obfuscation. ai
bogus-package bogus-package AI (bogus-package): Entire @everymatrix package family lacks repo/deps/description; consistent pattern across 459 versions. ai
source-diff obfuscated-file:components/CashierError-BclCV5Gv.cjs AI (source-diff): Minified CJS re-export with readable i18n strings; consistent with normal Stencil build output. ai
source-diff obfuscated-file:components/CashierReceiptPage-EplA8mRT.js AI (source-diff): Standard minified Stencil/Svelte bundle output; readable framework boilerplate confirms no obfuscation. ai
source-diff obfuscated-file:components/CashierReceiptPage-CR8a0Iz_.cjs AI (source-diff): Standard minified Stencil/Svelte bundle output; readable framework boilerplate confirms no obfuscation. ai

Versions (showing 21 of 221)

Version Deps Published
1.73.2 0 / 0
1.73.1 0 / 0
1.73.0 0 / 0
1.72.2 0 / 0
1.72.1 0 / 0
1.72.0 0 / 0
1.71.1 0 / 0
1.71.0 0 / 0
1.70.1 0 / 0
1.70.0 0 / 0
1.69.4 0 / 0
1.69.3 0 / 0
1.69.2 0 / 0
1.69.0 0 / 0
1.68.0 0 / 0
1.67.3 0 / 0
1.67.0 0 / 0
1.66.2 0 / 0
1.66.1 0 / 0
1.66.0 0 / 0
1.65.3 0 / 0

v1.73.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.73.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.73.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.72.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.72.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.71.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.71.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.70.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.70.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.69.4

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.69.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.69.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.69.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.68.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.67.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.67.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.66.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.66.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.66.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.65.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.