@nocobase/app
<video width="100%" controls> <source src="https://github.com/user-attachments/assets/4d11a87b-00e2-48f3-9bf7-389d21072d13" type="video/mp4"> </video>
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | net-exec-file:dist/client/umi.9bbad14a.js | AI (source-diff): Network + dynamic code in umi runtime bundle is expected SPA behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.9bbad14a.js | AI (source-diff): Standard umi/antd webpack bundle; minification is expected, no obfuscation indicators. | ai | |
| source-diff | net-exec-file:dist/client/p__index.ebb5f778.async.js | AI (source-diff): Network calls and dynamic imports are normal for a SPA webpack bundle; no malicious payload visible. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.ebb5f778.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/2025-87ab227c.js | AI (source-diff): Minified rspack bundle; largest client chunk, consistent with bundled frontend app. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/2017-29a9879a.js | AI (source-diff): Minified rspack bundle; consistent with other client bundles in this package. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/1951-84be8ebc.js | AI (source-diff): Minified rspack bundle; readable RunJS context code. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/1786-e6c321bb.js | AI (source-diff): Minified rspack bundle; readable FormJSFieldItem context code. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/1725-d9ce2582.js | AI (source-diff): Minified rspack bundle; readable RunJS context code. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/158-5273dfbb.js | AI (source-diff): Minified rspack bundle; readable JSItem context code. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/1507-9a211af0.js | AI (source-diff): Minified rspack bundle; readable JSField context code. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/1425-69534606.js | AI (source-diff): Minified rspack bundle; readable JSField context code. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/108-76a3fdea.js | AI (source-diff): Standard rspack minified bundle; content is readable graph-layout library code, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/1310-c0031389.js | AI (source-diff): Minified rspack bundle with readable RunJS context definitions; not malicious. | ai | |
| phantom-deps | phantom-dep:@nocobase/cli-v1 | AI (phantom-deps): Same-org CLI package; phantom-dep heuristic fires because it's not directly imported in JS but used as a CLI tool dep. | ai | |
| source-diff | obfuscated-file:dist/client/v/assets/212-0f8a26a2.js | AI (source-diff): Minified rspack bundle; consistent with other client bundles. | ai | |
| source-diff | net-exec-file:dist/client/v/assets/2025-87ab227c.js | AI (source-diff): False positive: network+eval pattern in minified frontend bundle (fetch for data, dynamic imports for code splitting), not dropper malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.bdb918c9.async.js | AI (source-diff): Network calls are axios API client interceptors; dynamic execution is webpack module loading — normal SPA bundle pattern. | ai | |
| source-diff | net-exec-file:dist/client/umi.7b0c7dcd.js | AI (source-diff): Same pattern as p__index bundle — webpack module system with normal network/dynamic-import patterns for a SPA. | ai | |
| source-diff | obfuscated-file:dist/client/umi.7b0c7dcd.js | AI (source-diff): Standard UMI/webpack minified bundle containing Ant Design color utilities; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.bdb918c9.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.4aacb00e.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase SPA; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.1ec92792.js | AI (source-diff): UMI runtime with webpack module federation; network+exec pattern is expected for SPA framework. | ai | |
| source-diff | obfuscated-file:dist/client/umi.1ec92792.js | AI (source-diff): UMI framework bundle; minified but not obfuscated, consistent with normal build output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.4aacb00e.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a frontend app bundle; no dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/p__index.24480a06.async.js | AI (source-diff): App entry makes API calls via axios interceptors — legitimate app behavior, not dropper malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.2c1da8c0.js | AI (source-diff): Umi framework bundle; dynamic require() and network calls are framework-level, not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/umi.2c1da8c0.js | AI (source-diff): Standard webpack-minified umi framework bundle; expected build artifact. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.24480a06.async.js | AI (source-diff): Standard webpack-minified nocobase app entry; expected build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.bbeab33e.async.js | AI (source-diff): Webpack bundle with axios API client and dynamic imports; expected pattern for this SPA framework. | ai | |
| source-diff | net-exec-file:dist/client/umi.40f65749.js | AI (source-diff): UmiJS framework bundle; network+dynamic-import pattern is expected for SPA runtime. | ai | |
| source-diff | obfuscated-file:dist/client/umi.40f65749.js | AI (source-diff): Standard UmiJS/webpack minified bundle; Ant Design color palette code is clearly visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.bbeab33e.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase app; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.ce653041.async.js | AI (source-diff): API client calls and webpack dynamic imports in app bundle; expected for this SPA framework. | ai | |
| source-diff | net-exec-file:dist/client/umi.6d6fd9d0.js | AI (source-diff): UmiJS runtime with webpack module loader; not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/umi.6d6fd9d0.js | AI (source-diff): Minified UmiJS framework bundle; standard build artifact. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.ce653041.async.js | AI (source-diff): Minified NocoBase app entry point; standard webpack build output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.32513f5c.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.92359c8b.js | AI (source-diff): Same webpack bundle pattern; network+exec heuristic is a false positive for SPA framework bundles. | ai | |
| source-diff | obfuscated-file:dist/client/umi.92359c8b.js | AI (source-diff): UmiJS framework bundle; minified but clearly legitimate Ant Design color palette code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.32513f5c.async.js | AI (source-diff): Network calls and dynamic module loading are normal webpack chunk behavior in a frontend SPA bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.c7e89e88.async.js | AI (source-diff): Webpack-bundled NocoBase app entry; minification is expected for frontend dist assets. | ai | |
| source-diff | net-exec-file:dist/client/umi.1efc8953.js | AI (source-diff): UMI framework bundle; false positive on bundled frontend framework code. | ai | |
| source-diff | obfuscated-file:dist/client/umi.1efc8953.js | AI (source-diff): UMI framework bundle; minified frontend code, not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.c7e89e88.async.js | AI (source-diff): App entry chunk making API calls via axios interceptors; legitimate NocoBase application code. | ai | |
| source-diff | obfuscated-file:dist/client/umi.b5bd2b24.js | AI (source-diff): UMI framework bundle; minification is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.895a0523.async.js | AI (source-diff): Standard webpack-bundled frontend asset for NocoBase app; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.b5bd2b24.js | AI (source-diff): Network calls and dynamic imports are normal for a SPA frontend bundle; no malicious payload evident. | ai | |
| source-diff | net-exec-file:dist/client/p__index.895a0523.async.js | AI (source-diff): Network calls and dynamic imports are normal for a SPA frontend bundle; no malicious payload evident. | ai | |
| source-diff | net-exec-file:dist/client/umi.10a53d21.js | AI (source-diff): Webpack bundle with dynamic imports; not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.10a53d21.js | AI (source-diff): Standard webpack-minified umi framework bundle; expected in NocoBase frontend. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.82e5e95a.async.js | AI (source-diff): Standard webpack-minified NocoBase app entry; expected frontend bundle. | ai | |
| source-diff | net-exec-file:dist/client/p__index.82e5e95a.async.js | AI (source-diff): Webpack bundle with axios/API client setup; not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.c0ea2958.js | AI (source-diff): Standard UMI framework webpack bundle; minified but not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.48f3f10e.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.48f3f10e.async.js | AI (source-diff): Network calls are axios API client calls; dynamic execution is webpack module loading — normal SPA pattern. | ai | |
| source-diff | net-exec-file:dist/client/umi.c0ea2958.js | AI (source-diff): Network + dynamic execution pattern is normal for UMI/webpack SPA runtime bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.1952990f.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.f23df76a.js | AI (source-diff): Network calls in UmiJS runtime bundle are expected framework behavior, not dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.f23df76a.js | AI (source-diff): Standard UmiJS/webpack-minified bundle; Ant Design color palette code is clearly benign. | ai | |
| source-diff | net-exec-file:dist/client/p__index.1952990f.async.js | AI (source-diff): Network calls and dynamic module loading are normal webpack bundle behavior for a frontend app. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.ffb380fc.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend; content matches expected app initialization code. | ai | |
| source-diff | net-exec-file:dist/client/umi.2dc6d581.js | AI (source-diff): Network + dynamic execution pattern is inherent to UMI/webpack runtime; no dropper behavior visible. | ai | |
| source-diff | obfuscated-file:dist/client/umi.2dc6d581.js | AI (source-diff): UMI framework bundle; content shows Ant Design color palette code — standard minified frontend output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.ffb380fc.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a webpack SPA bundle; no malicious payload visible. | ai | |
| source-diff | net-exec-file:dist/client/umi.4d3b9713.js | AI (source-diff): Umi framework bundle with webpack module loader; not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.4d3b9713.js | AI (source-diff): Standard webpack-minified umi framework bundle; stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/p__index.dfb86586.async.js | AI (source-diff): App bootstrap code using nocobase Application API; not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.dfb86586.async.js | AI (source-diff): Standard webpack-minified app entry bundle; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.1ee3fe49.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.1ee3fe49.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a webpack SPA bundle; no malicious payload. | ai | |
| source-diff | obfuscated-file:dist/client/umi.ad8fa1a5.js | AI (source-diff): Standard UMI framework minified bundle; color palette and UI library code, not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.ad8fa1a5.js | AI (source-diff): Network calls in UMI runtime bundle are expected SPA behavior; no dropper/loader indicators. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.05d44aa3.async.js | AI (source-diff): Nocobase app entry webpack bundle; minified but readable legitimate app code. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5de1583d.js | AI (source-diff): Standard umi framework bundle; minified Ant Design color utilities visible in sample. | ai | |
| source-diff | net-exec-file:dist/client/p__index.05d44aa3.async.js | AI (source-diff): API client setup and plugin loader in app bundle; expected pattern for this SPA framework. | ai | |
| source-diff | net-exec-file:dist/client/umi.5de1583d.js | AI (source-diff): Umi framework bundle with webpack module loader; legitimate SPA runtime. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.d7675732.async.js | AI (source-diff): Standard webpack-bundled client app entry; minification is expected for this frontend package. | ai | |
| source-diff | net-exec-file:dist/client/umi.193327e5.js | AI (source-diff): UMI runtime bundle; network+dynamic-import pattern is inherent to the framework. | ai | |
| source-diff | obfuscated-file:dist/client/umi.193327e5.js | AI (source-diff): UMI framework bundle; minified color-palette/UI code, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.d7675732.async.js | AI (source-diff): Network calls and dynamic imports are normal for a SPA app bundle; no malicious payload visible. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2d564012.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.128a2813.js | AI (source-diff): UMI framework bundle with Ant Design color utilities; standard minified output. | ai | |
| source-diff | net-exec-file:dist/client/umi.128a2813.js | AI (source-diff): Network + dynamic execution in UMI runtime bundle is expected SPA behavior. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2d564012.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a React SPA bundle; no malicious payload visible. | ai | |
| source-diff | net-exec-file:dist/client/umi.82a66e14.js | AI (source-diff): UmiJS framework bundle; false positive for minified client code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.36236a86.async.js | AI (source-diff): Webpack-bundled page chunk; false positive for minified client app code. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.d2920ce5.async.js | AI (source-diff): NocoBase app entry point, webpack-minified; expected build artifact. | ai | |
| source-diff | net-exec-file:dist/client/umi.c67775a2.js | AI (source-diff): Umi framework chunk; false positive on webpack dynamic module loading pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.c67775a2.js | AI (source-diff): Umi framework bundle (antd color palette visible); standard minified build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.d2920ce5.async.js | AI (source-diff): App entry chunk; API client setup is legitimate app behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.cce00dcd.js | AI (source-diff): Standard webpack-minified umi framework bundle; expected build artifact. | ai | |
| source-diff | net-exec-file:dist/client/umi.cce00dcd.js | AI (source-diff): Webpack bundle with antd/umi code; not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.6adf828a.async.js | AI (source-diff): Standard webpack-minified nocobase app entry; expected build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.6adf828a.async.js | AI (source-diff): Webpack bundle with API client setup; not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5117b86a.js | AI (source-diff): Webpack-minified umi/antd bundle; standard build output for this frontend package. | ai | |
| source-diff | net-exec-file:dist/client/umi.5117b86a.js | AI (source-diff): Minified umi framework bundle; no actual dropper pattern, just webpack module system. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.f9feeeff.async.js | AI (source-diff): Webpack-minified nocobase app entry; standard build output with recognizable app bootstrap code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.f9feeeff.async.js | AI (source-diff): App bootstrap makes API calls as expected; no dropper/loader pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.7b359002.async.js | AI (source-diff): Standard webpack-bundled frontend asset for NocoBase app; minification is expected in dist output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.7b359002.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a webpack SPA bundle; no malicious payload evident. | ai | |
| source-diff | net-exec-file:dist/client/umi.fa368f58.js | AI (source-diff): Network calls and dynamic module loading are normal for a UMI/webpack SPA bundle; no malicious payload evident. | ai | |
| source-diff | obfuscated-file:dist/client/umi.fa368f58.js | AI (source-diff): UMI framework bundle with Ant Design color utilities; minification is expected in dist output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.f72f77a1.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend; content matches expected app initialization code. | ai | |
| source-diff | net-exec-file:dist/client/umi.92946f90.js | AI (source-diff): Network calls in UMI framework bundle are expected SPA behavior; no malicious payload in sample. | ai | |
| source-diff | obfuscated-file:dist/client/umi.92946f90.js | AI (source-diff): Standard UMI framework minified bundle; content shows Ant Design color utilities, not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.f72f77a1.async.js | AI (source-diff): Network calls and dynamic imports are expected in a SPA webpack bundle; no malicious payload in sample. | ai | |
| source-diff | net-exec-file:dist/client/umi.48c7e957.js | AI (source-diff): Webpack runtime bundle; dynamic require() is standard module loading, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.72e4bcb5.async.js | AI (source-diff): Minified NocoBase app entry point; readable structure, no obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.72e4bcb5.async.js | AI (source-diff): App bootstrap code using axios interceptors; expected for a frontend app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.48c7e957.js | AI (source-diff): Standard umi/antd design-token bundle; minified but not obfuscated. | ai | |
| source-diff | obfuscated-file:dist/client/umi.643e6e09.js | AI (source-diff): Standard webpack-minified UmiJS framework bundle; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.cce613ff.async.js | AI (source-diff): Standard webpack-minified NocoBase app entry point; stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/p__index.cce613ff.async.js | AI (source-diff): Webpack bundle; API client calls are expected app behavior, not dropper malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.643e6e09.js | AI (source-diff): UmiJS framework bundle with dynamic require(); no malicious network+exec pattern. | ai | |
| source-diff | net-exec-file:dist/client/p__index.45b73311.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a frontend SPA bundle. | ai | |
| source-diff | net-exec-file:dist/client/umi.85707054.js | AI (source-diff): Network calls in UMI framework bundle are expected SPA behavior, not dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.85707054.js | AI (source-diff): Standard UMI/webpack minified bundle; Ant Design color utilities visible in sample. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.45b73311.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.b16725d2.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.d1997bf2.js | AI (source-diff): Browser framework bundle; network+exec pattern is normal for a SPA runtime. | ai | |
| source-diff | obfuscated-file:dist/client/umi.d1997bf2.js | AI (source-diff): Standard webpack-minified UMI framework bundle; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.b16725d2.async.js | AI (source-diff): Browser app bundle with API client calls; network+exec pattern is normal for a SPA framework. | ai | |
| source-diff | net-exec-file:dist/client/umi.5295b683.js | AI (source-diff): UMI framework bundle; network calls are standard frontend HTTP client patterns. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2cef202d.async.js | AI (source-diff): Webpack bundle with API client calls; expected pattern for a frontend app package. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5295b683.js | AI (source-diff): UMI framework minified bundle; Ant Design color utilities visible in sample — not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2cef202d.async.js | AI (source-diff): Standard webpack minified client bundle for NocoBase frontend; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.f10310e5.async.js | AI (source-diff): Standard webpack-minified nocobase app entry; code is readable nocobase Application bootstrap. | ai | |
| source-diff | net-exec-file:dist/client/p__index.f10310e5.async.js | AI (source-diff): axios interceptors and websocket setup are normal app networking; no dropper pattern. | ai | |
| source-diff | net-exec-file:dist/client/umi.d64acd97.js | AI (source-diff): Webpack dynamic imports in umi bundle; no actual network+exec dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.d64acd97.js | AI (source-diff): Standard webpack-minified antd/umi bundle; color palette generation code is recognizable. | ai | |
| source-diff | net-exec-file:dist/client/p__index.fcb44564.async.js | AI (source-diff): App bootstrap code using axios interceptors; expected for a web app framework. | ai | |
| source-diff | obfuscated-file:dist/client/umi.671d747b.js | AI (source-diff): Minified UmiJS framework bundle; standard build output. | ai | |
| source-diff | net-exec-file:dist/client/umi.671d747b.js | AI (source-diff): UmiJS runtime bundle; webpack module loader pattern, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.fcb44564.async.js | AI (source-diff): Minified NocoBase app entry point; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.607c539d.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.59dace06.js | AI (source-diff): Standard umi framework minified bundle; color palette code visible in sample confirms legitimate content. | ai | |
| source-diff | net-exec-file:dist/client/umi.59dace06.js | AI (source-diff): Umi framework bundle with standard HTTP client usage; no malicious patterns in sample. | ai | |
| source-diff | net-exec-file:dist/client/p__index.607c539d.async.js | AI (source-diff): Webpack chunk with axios API calls and dynamic imports; normal SPA pattern for NocoBase. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.d5a03695.async.js | AI (source-diff): Webpack-bundled nocobase app entry point; minification is expected for this build. | ai | |
| source-diff | net-exec-file:dist/client/p__index.d5a03695.async.js | AI (source-diff): App entry makes API calls to its own backend; no exfiltration or dropper behavior visible. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5d2baca2.js | AI (source-diff): Standard webpack-minified umi framework bundle; expected output for this build pipeline. | ai | |
| source-diff | net-exec-file:dist/client/umi.5d2baca2.js | AI (source-diff): Umi framework bundle with module loader; no malicious network/exec pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.0cca9e6b.async.js | AI (source-diff): Standard webpack-minified client bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.40a24185.js | AI (source-diff): Network + dynamic execution in UMI runtime bundle is expected framework behavior. | ai | |
| source-diff | obfuscated-file:dist/client/umi.40a24185.js | AI (source-diff): UMI framework bundle; minified but not obfuscated, standard build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.0cca9e6b.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a frontend SPA bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.33b14b6c.js | AI (source-diff): UMI framework minified bundle; Ant Design color palette code visible in sample — not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2b9b1c13.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2b9b1c13.async.js | AI (source-diff): Network calls and dynamic imports are normal browser app behavior in this webpack bundle. | ai | |
| source-diff | net-exec-file:dist/client/umi.33b14b6c.js | AI (source-diff): Network calls in UMI framework bundle are expected frontend behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.367a558e.async.js | AI (source-diff): Webpack-bundled NocoBase app entry; minified but clearly legitimate application code. | ai | |
| source-diff | net-exec-file:dist/client/umi.982e53e7.js | AI (source-diff): Umi framework chunk; webpack module loader pattern, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.982e53e7.js | AI (source-diff): Umi framework bundle with Ant Design color utilities; standard minified frontend build output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.367a558e.async.js | AI (source-diff): NocoBase Application bootstrap with API client config; standard SPA pattern. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.fb92dd24.async.js | AI (source-diff): Standard webpack minified client bundle for NocoBase frontend; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.07f6e313.js | AI (source-diff): Same UMI bundle; network+exec pattern is webpack module federation, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.07f6e313.js | AI (source-diff): UMI framework bundle; minified but clearly legitimate Ant Design/color palette code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.fb92dd24.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a webpack SPA bundle; no dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.fd508f37.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.9afe2296.js | AI (source-diff): Network calls and dynamic execution are normal UMI/webpack runtime patterns in a frontend bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.9afe2296.js | AI (source-diff): Standard UMI framework minified bundle; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.fd508f37.async.js | AI (source-diff): Network calls and dynamic module loading are normal webpack chunk patterns in a frontend SPA bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.25f15299.async.js | AI (source-diff): Standard webpack bundle for NocoBase frontend; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.c4d4cdeb.js | AI (source-diff): Network calls in UMI bundle are standard SPA behavior; no malicious payload present. | ai | |
| source-diff | obfuscated-file:dist/client/umi.c4d4cdeb.js | AI (source-diff): UMI framework bundle; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/p__index.25f15299.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a webpack-bundled SPA; no malicious payload present. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.8ead710c.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; consistent with prior releases. | ai | |
| source-diff | net-exec-file:dist/client/p__index.8ead710c.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a webpack SPA bundle; no malicious payload. | ai | |
| source-diff | obfuscated-file:dist/client/umi.13be04e2.js | AI (source-diff): Standard webpack/umi-bundled frontend asset; Ant Design color utilities visible in sample. | ai | |
| source-diff | net-exec-file:dist/client/umi.13be04e2.js | AI (source-diff): Same webpack bundle pattern; no dropper/loader indicators in sampled code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.c85887ca.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a frontend SPA bundle; no malicious payload. | ai | |
| source-diff | net-exec-file:dist/client/umi.9b9af60a.js | AI (source-diff): Same bundle; network+dynamic-exec pattern is expected for a frontend framework bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.9b9af60a.js | AI (source-diff): Standard webpack/umi minified bundle; sample shows Ant Design palette utilities, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.c85887ca.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.3d3b2e00.async.js | AI (source-diff): Webpack module system + axios API client in a SPA bundle. Network calls are to the NocoBase API; dynamic execution is webpack's require() mechanism. Not malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.5efc66dc.js | AI (source-diff): Same pattern as p__index bundle — webpack module loading + UI library network calls. Consistent with legitimate NocoBase frontend build artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5efc66dc.js | AI (source-diff): Standard UMI framework + Ant Design bundle. Minified long lines are expected for this frontend framework build. Content is identifiable as @ant-design/colors and related UI utilities. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.3d3b2e00.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend app entry point. Long lines are minification artifacts, not obfuscation. Expected for this package's client build output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.b6bde6bf.async.js | AI (source-diff): Network calls + dynamic imports are normal for a web application framework bundle. Content shows legitimate NocoBase API client and plugin loading, not dropper/loader malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.bfe60a28.js | AI (source-diff): Network + dynamic execution pattern is inherent to UMI framework bundles. Content is legitimate frontend framework code, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.bfe60a28.js | AI (source-diff): Standard UMI framework minified bundle. Content shows Ant Design color palette utilities and standard webpack module patterns, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.b6bde6bf.async.js | AI (source-diff): Standard webpack/UMI minified frontend bundle for NocoBase app. Content is readable legitimate application code, not obfuscation. Hash-named chunks are expected for this build system. | ai | |
| source-diff | obfuscated-file:dist/client/umi.a07c97f2.js | AI (source-diff): Standard UMI framework bundle containing Ant Design color utilities. Minified variable names are terser output, not intentional obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.a07c97f2.js | AI (source-diff): Webpack module system in a client bundle; network calls are standard browser API requests, not malicious code execution. | ai | |
| source-diff | net-exec-file:dist/client/p__index.521df76e.async.js | AI (source-diff): Webpack module loading pattern (self.webpackChunk*) combined with API client setup is standard SPA behavior, not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.521df76e.async.js | AI (source-diff): Standard webpack/UMI minified client bundle for NocoBase app. Code samples confirm legitimate application bootstrap code, not obfuscation for malicious purposes. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Version diff compares 1.x branch against 2.x branch; large file count difference is expected across major version branches for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.701dd645.js | AI (source-diff): UmiJS framework bundle; net+exec pattern is webpack/umi runtime module loading, not malicious. | ai | |
| source-diff | net-exec-file:dist/client/p__index.458bc91e.async.js | AI (source-diff): Webpack page chunk; net+exec pattern is webpack module loading, not a dropper. Expected in nocobase frontend build. | ai | |
| source-diff | net-exec-file:dist/client/npm.lodash.9096a2d1.async.js | AI (source-diff): Webpack chunk of lodash; net+exec pattern is webpack's __webpack_require__ dynamic loading, not malware. | ai | |
| source-diff | net-exec-file:dist/client/8908.00634f36.async.js | AI (source-diff): Webpack module loader pattern triggers net+exec heuristic; no malicious URLs or payloads in samples. Expected for a frontend app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/8908.00634f36.async.js | AI (source-diff): Standard webpack-bundled client chunk for nocobase frontend; minified not obfuscated, content is legitimate color/UI library code. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2c31343b.async.js | AI (source-diff): Standard webpack bundle for NocoBase frontend app; minification is expected for this build artifact, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.48fe736f.js | AI (source-diff): Network calls and dynamic module loading are standard UMI/webpack patterns; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/umi.48fe736f.js | AI (source-diff): UMI framework bundle with Ant Design color palette code; minification is expected for this build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2c31343b.async.js | AI (source-diff): Network calls are legitimate API client setup; dynamic code is webpack module system, not dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/umi.5bbca703.js | AI (source-diff): UMI framework bundle for a frontend SPA; network and dynamic import capabilities are expected in any modern frontend framework bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5bbca703.js | AI (source-diff): UMI framework + Ant Design bundle. Sample shows color palette generation code; minification causes long lines, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.3900cec6.async.js | AI (source-diff): NocoBase frontend legitimately uses axios for API calls and dynamic plugin loading. These are core platform features, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.3900cec6.async.js | AI (source-diff): NocoBase app bootstrap code bundled by UMI/webpack. Long lines are minification artifacts; code is clearly NocoBase plugin/router/API client initialization. | ai | |
| source-diff | obfuscated-file:dist/client/umi.7173f8d9.js | AI (source-diff): UmiJS framework bundle with Ant Design. Standard minified output for NocoBase's frontend stack. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.b2b83db2.async.js | AI (source-diff): NocoBase app entry point bundled by webpack/UmiJS. Sample confirms legitimate application bootstrap code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.b2b83db2.async.js | AI (source-diff): Browser SPA bundle with API client and WebSocket setup. Expected for NocoBase frontend; not a dropper. | ai | |
| source-diff | net-exec-file:dist/client/umi.7173f8d9.js | AI (source-diff): UmiJS/Ant Design browser bundle. Network calls and dynamic imports are expected in any SPA framework bundle. | ai | |
| source-diff | net-exec-file:dist/client/npm.lodash.0332f651.async.js | AI (source-diff): Webpack bundle naturally contains network calls and dynamic require(). This is standard client-side app behavior, not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:dist/client/npm.lodash.0332f651.async.js | AI (source-diff): Standard webpack-minified lodash bundle. Long lines are expected in webpack output; not obfuscation. Stable false positive for this client-side web app package. | ai | |
| source-diff | net-exec-file:dist/client/umi.a8e9e68a.js | AI (source-diff): UmiJS framework bundle naturally contains network and dynamic module loading. Standard client-side framework behavior. | ai | |
| source-diff | obfuscated-file:dist/client/umi.a8e9e68a.js | AI (source-diff): Standard webpack-minified UmiJS framework bundle with Ant Design UI code. Long lines are expected minification output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.6b0991c3.async.js | AI (source-diff): Network calls are legitimate API client setup (axios interceptors). Dynamic execution is webpack module system. Standard React/UmiJS app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.6b0991c3.async.js | AI (source-diff): Standard webpack-minified NocoBase app entry point. Long lines are expected minification output, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2b4ab8e6.async.js | AI (source-diff): Network calls (axios API client) and dynamic module loading (webpack require) are normal for a NocoBase frontend SPA bundle. Not dropper/loader behavior. | ai | |
| source-diff | net-exec-file:dist/client/umi.a6718cce.js | AI (source-diff): UmiJS framework bundle; network + dynamic module patterns are standard for this frontend framework. Not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/umi.a6718cce.js | AI (source-diff): Standard UmiJS framework bundle with Ant Design color utilities. Minified but not obfuscated — well-known open-source framework output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2b4ab8e6.async.js | AI (source-diff): Standard webpack/UmiJS minified frontend bundle for NocoBase SPA. Not obfuscated — readable variable names and recognizable patterns. Expected artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/p__index.88c08264.async.js | AI (source-diff): Axios interceptors and webpack dynamic imports trigger this rule; no malicious network+exec pattern. Standard SPA bootstrap behavior for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.1cb7b3d8.js | AI (source-diff): UMI framework bundle triggers net+exec heuristic via webpack module system; no actual dropper behavior. Stable false positive for this package. | ai | |
| source-diff | obfuscated-file:dist/client/umi.1cb7b3d8.js | AI (source-diff): UMI framework bundle with Ant Design color utilities; minified webpack output. Stable false positive for this package's frontend build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.88c08264.async.js | AI (source-diff): Standard UMI-built NocoBase client entrypoint; minified webpack output with long lines is expected. Content is clearly NocoBase Application bootstrap code. | ai | |
| source-diff | net-exec-file:dist/client/npm.lodash.e5baa144.async.js | AI (source-diff): Webpack module system + lodash utilities trigger net+exec heuristic; no actual dropper behavior. Stable false positive for this package's client build artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/npm.lodash.e5baa144.async.js | AI (source-diff): Standard webpack-minified lodash bundle; long lines are expected minification output, not obfuscation. Pattern is stable for this package's UMI build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.e35a9de1.async.js | AI (source-diff): Standard webpack/UMI minified frontend bundle for NocoBase SPA. Content-hashed filenames are expected build artifacts; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/umi.e1a4ce37.js | AI (source-diff): Standard UMI framework bundle (Ant Design color utilities, etc.). Minified output is expected; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.e1a4ce37.js | AI (source-diff): Webpack module system in UMI bundle triggers false positive. No malicious network+exec pattern present. | ai | |
| source-diff | net-exec-file:dist/client/p__index.e35a9de1.async.js | AI (source-diff): Webpack module loading and API client config in a SPA bundle triggers this rule as false positive. No actual dropper/loader behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.91052636.async.js | AI (source-diff): Standard webpack/UmiJS frontend bundle for NocoBase app. Minification is expected for production frontend builds of this open-source no-code platform. | ai | |
| provenance | no-provenance | AI (provenance): NocoBase does not use Sigstore provenance attestation; consistent across all prior approved versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.d139f85e.js | AI (source-diff): Network calls and dynamic execution in UmiJS bundle are standard frontend framework patterns, not malicious dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/umi.d139f85e.js | AI (source-diff): Standard UmiJS/Ant Design bundled output. Contains Ant Design color palette code — well-known library, minification is expected. | ai | |
| source-diff | net-exec-file:dist/client/p__index.91052636.async.js | AI (source-diff): Network calls are legitimate API client setup (axios interceptors to /api/). Dynamic module loading is standard webpack chunk loading. No malicious patterns. | ai | |
| bogus-package | bogus-package | AI (bogus-package): @nocobase/app is a monorepo sub-package; sparse README linking to main project docs and no keywords are standard for this pattern, not spam indicators. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.61b819d7.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app. Long lines are expected minification artifacts, not obfuscation. Pattern is stable for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.fda11463.js | AI (source-diff): UmiJS framework bundle; network/exec pattern is standard SPA framework behavior. No malicious indicators. Stable false positive for this package. | ai | |
| source-diff | obfuscated-file:dist/client/umi.fda11463.js | AI (source-diff): Standard UmiJS framework bundle with Ant Design components. Minified for production delivery. Benign and expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/p__index.61b819d7.async.js | AI (source-diff): Network calls are NocoBase's own API client (axios) and WebSocket setup; dynamic execution is UmiJS plugin loading. No malicious payload. Stable false positive for this frontend app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.9c6acad0.async.js | AI (source-diff): Standard webpack-minified NocoBase client bundle. Long lines are minification artifacts, not obfuscation. Expected pattern for this frontend application package. | ai | |
| source-diff | net-exec-file:dist/client/umi.af20f784.js | AI (source-diff): Network + dynamic execution pattern is inherent to the UmiJS framework bundle. No malicious indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/umi.af20f784.js | AI (source-diff): Standard UmiJS/Ant Design framework bundle. Contains color palette utilities and UI components. Minified, not obfuscated maliciously. | ai | |
| source-diff | net-exec-file:dist/client/p__index.9c6acad0.async.js | AI (source-diff): Network calls and dynamic imports are inherent to the NocoBase SPA client bundle. No malicious payload; code reads from window globals for API configuration. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.3191fd65.async.js | AI (source-diff): Standard UmiJS/webpack minified build artifact for NocoBase frontend. Long lines are minification, not obfuscation. Content is clearly legitimate app initialization code. | ai | |
| source-diff | net-exec-file:dist/client/umi.525ffe98.js | AI (source-diff): Network calls and dynamic module loading are standard UmiJS/webpack SPA runtime behavior, not malicious dropper patterns. | ai | |
| source-diff | obfuscated-file:dist/client/umi.525ffe98.js | AI (source-diff): Standard UmiJS runtime bundle — minified, not obfuscated. Content shows Ant Design color palette and UI framework code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.3191fd65.async.js | AI (source-diff): Network calls are axios API client requests; code execution is webpack module system. Normal frontend SPA behavior, not dropper/loader malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.5b735c52.async.js | AI (source-diff): Frontend SPA bundle legitimately combines network calls (API client) and dynamic module execution (webpack runtime). Not dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/umi.5e3a7209.js | AI (source-diff): UmiJS framework bundle legitimately combines network calls and dynamic module execution. Standard SPA pattern, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5e3a7209.js | AI (source-diff): Standard UmiJS framework bundle — minified UI library code (Ant Design color utilities, etc.). Long lines are expected minification artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.5b735c52.async.js | AI (source-diff): Standard webpack/UmiJS minified frontend bundle for NocoBase SPA. Long lines are expected minification artifacts, not obfuscation. | ai | |
| typosquat | typosquat.levenshtein:ajv | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'ajv' is a false positive. | ai | |
| semgrep | semgrep:shady-links-raw-ip | AI (semgrep): Raw IP 127.0.0.1 is a localhost health-check URL in a test file. Standard integration test pattern, not an exfiltration endpoint. | ai | |
| semgrep | semgrep:env-spread | AI (semgrep): process.env spread occurs only in test files (commands.test.ts) as a standard pattern for passing env to child processes in integration tests. Not a runtime or install-time risk. | ai | |
| typosquat | typosquat.levenshtein:pg | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'pg' is a false positive. | ai | |
| typosquat | typosquat.levenshtein:yup | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'yup' is a false positive. | ai | |
| typosquat | typosquat.levenshtein:hapi | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'hapi' is a false positive. | ai |
Versions (showing 51 of 127)
| Version | Deps | Published |
|---|---|---|
| 2.1.0 | 4 / 1 | |
| 2.0.62 | 3 / 1 | |
| 2.0.61 | 3 / 1 | |
| 2.0.60 | 3 / 1 | |
| 2.0.59 | 3 / 1 | |
| 2.0.58 | 3 / 1 | |
| 2.0.57 | 3 / 1 | |
| 2.0.56 | 3 / 1 | |
| 2.0.55 | 3 / 1 | |
| 2.0.54 | 3 / 1 | |
| 2.0.53 | 3 / 1 | |
| 2.0.52 | 3 / 1 | |
| 2.0.51 | 3 / 1 | |
| 2.0.50 | 3 / 1 | |
| 2.0.49 | 3 / 1 | |
| 2.0.48 | 3 / 1 | |
| 2.0.47 | 3 / 1 | |
| 2.0.46 | 3 / 1 | |
| 2.0.45 | 3 / 1 | |
| 2.0.44 | 3 / 1 | |
| 2.0.43 | 3 / 1 | |
| 2.0.42 | 3 / 1 | |
| 2.0.41 | 3 / 1 | |
| 2.0.40 | 3 / 1 | |
| 2.0.39 | 3 / 1 | |
| 2.0.38 | 3 / 1 | |
| 2.0.37 | 3 / 1 | |
| 2.0.36 | 3 / 1 | |
| 2.0.35 | 3 / 1 | |
| 2.0.34 | 3 / 1 | |
| 2.0.33 | 3 / 1 | |
| 2.0.32 | 3 / 1 | |
| 2.0.31 | 3 / 1 | |
| 2.0.30 | 3 / 1 | |
| 2.0.29 | 3 / 1 | |
| 2.0.28 | 3 / 1 | |
| 2.0.27 | 3 / 1 | |
| 2.0.26 | 3 / 1 | |
| 2.0.25 | 3 / 1 | |
| 2.0.24 | 3 / 1 | |
| 2.0.23 | 3 / 1 | |
| 2.0.22 | 3 / 1 | |
| 2.0.21 | 3 / 1 | |
| 2.0.20 | 3 / 1 | |
| 2.0.19 | 3 / 1 | |
| 2.0.18 | 3 / 1 | |
| 2.0.17 | 3 / 1 | |
| 2.0.16 | 3 / 1 | |
| 2.0.15 | 3 / 1 | |
| 2.0.14 | 3 / 1 | |
| 2.0.13 | 3 / 1 |
v2.1.0
13 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.62
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.61
45 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.60
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.59
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.58
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.57
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.56
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.55
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.54
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.53
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.52
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.51
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.50
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.49
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.48
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.47
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.45
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.44
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.43
8 findingsSpreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L57 55 | 56 | const run = (command, args, options) => { > 57 | return execa(command, args, { 58 | ...process.env, 59 | ...options,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L82 80 | console.log(process.env.DB_DIALECT, port); 81 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 82 | const env = { 83 | ...process.env, 84 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L111 109 | }); 110 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 111 | const env = { 112 | ...process.env, 113 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L141 139 | }); 140 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 141 | const env = { 142 | ...process.env, 143 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L167 165 | }); 166 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 167 | const env = { 168 | ...process.env, 169 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L197 195 | }); 196 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 197 | const env = { 198 | ...process.env, 199 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L222 220 | }); 221 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 222 | const env = { 223 | ...process.env, 224 | APP_PORT: `${port}`,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.42
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.41
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.40
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.39
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.38
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.37
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.36
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.35
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.34
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.33
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.32
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.31
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.30
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.29
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.28
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.27
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.26
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.25
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.24
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.23
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.22
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.21
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.20
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.19
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.18
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.17
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.16
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.15
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.14
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.13
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.