@posthog/nuxt MIT 82 versions

@posthog/nuxt

npm Repository Homepage

Nuxt module for Posthog 🦔

82

Versions

MIT

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

watilotwixesfuziontechmariusandraben-posthogtimglrafael_posthogfraserhoppermanoelposthogrobbie-cdustinbyrnefeliperalmeidalucasheriquesfrankposthogtom-posthogadamleithpcat-phsarahxsanderspeterkirkhamposthogioannisjjoshuasnyderhuguespouillot

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
typosquat	typosquat.levenshtein:next	AI (typosquat): @posthog/nuxt is a legitimate PostHog-org Nuxt module; Levenshtein match to 'next' is coincidental.	ai	2026/05/21
phantom-deps	phantom-dep:@posthog/cli	AI (phantom-deps): Same org scope; @posthog/cli is a build-time tool dependency, not a runtime import.	ai	2026/05/21

Versions (showing 82 of 283)

Version	Deps	Published
1.4.31	5 / 7	2026-01-16
1.4.30	5 / 7	2026-01-16
1.4.29	5 / 7	2026-01-15
1.4.28	5 / 7	2026-01-15
1.4.27	5 / 7	2026-01-15
1.4.26	5 / 7	2026-01-15
1.4.25	5 / 7	2026-01-15
1.4.24	5 / 7	2026-01-14
1.4.23	5 / 7	2026-01-14
1.4.22	5 / 7	2026-01-14
1.4.21	5 / 7	2026-01-14
1.4.20	5 / 7	2026-01-13
1.4.19	5 / 7	2026-01-13
1.4.18	5 / 7	2026-01-13
1.4.17	5 / 7	2026-01-12
1.4.16	5 / 7	2026-01-12
1.4.15	5 / 7	2026-01-10
1.4.14	5 / 7	2026-01-09
1.4.13	5 / 7	2026-01-09
1.4.12	5 / 7	2026-01-09
1.4.11	5 / 7	2026-01-09
1.4.10	5 / 7	2026-01-08
1.4.9	5 / 7	2026-01-07
1.4.8	5 / 7	2026-01-06
1.4.7	5 / 7	2026-01-06
1.4.6	5 / 7	2026-01-01
1.4.5	5 / 7	2025-12-31
1.4.4	5 / 7	2025-12-30
1.4.3	5 / 7	2025-12-29
1.4.2	5 / 7	2025-12-29
1.4.1	5 / 7	2025-12-23
1.4.0	5 / 7	2025-12-22
1.3.25	5 / 7	2025-12-17
1.3.24	5 / 7	2025-12-17
1.3.23	5 / 7	2025-12-17
1.3.22	5 / 7	2025-12-16
1.3.21	5 / 7	2025-12-16
1.3.20	5 / 7	2025-12-16
1.3.19	5 / 7	2025-12-15
1.3.18	5 / 7	2025-12-13
1.3.17	5 / 7	2025-12-12
1.3.16	5 / 7	2025-12-11
1.3.15	5 / 7	2025-12-10
1.3.14	5 / 7	2025-12-10
1.3.13	5 / 7	2025-12-10
1.3.12	5 / 7	2025-12-05
1.3.11	5 / 7	2025-12-05
1.3.10	5 / 7	2025-12-05
1.3.9	5 / 7	2025-12-04
1.3.8	5 / 7	2025-12-04
1.3.7	5 / 7	2025-12-04
1.3.6	5 / 7	2025-12-04
1.3.5	5 / 7	2025-12-03
1.3.4	5 / 7	2025-12-03
1.3.3	5 / 7	2025-12-01
1.3.2	5 / 7	2025-11-28
1.3.1	5 / 7	2025-11-26
1.3.0	5 / 7	2025-11-24
1.2.10	5 / 7	2025-11-24
1.2.8	5 / 7	2025-11-20
1.2.7	5 / 7	2025-11-20
1.2.6	5 / 7	2025-11-19
1.2.5	5 / 7	2025-11-19
1.2.4	5 / 7	2025-11-19
1.2.3	5 / 7	2025-11-19
1.2.2	5 / 7	2025-11-18
1.2.1	5 / 7	2025-11-17
1.2.0	5 / 7	2025-11-15
1.1.5	5 / 7	2025-11-12
1.1.4	5 / 7	2025-11-12
1.1.3	5 / 7	2025-11-10
1.1.2	5 / 7	2025-11-07
1.1.1	5 / 7	2025-11-06
1.1.0	5 / 7	2025-11-06
1.0.3	5 / 7	2025-11-05
1.0.2	5 / 7	2025-11-05
1.0.1	5 / 7	2025-11-05
1.0.0	5 / 7	2025-11-05
0.0.27	5 / 7	2025-11-04
0.0.26	5 / 7	2025-11-03
0.0.25	5 / 7	2025-11-01
0.0.24	5 / 7	2025-10-31

v1.4.31

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.30

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.29

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.28

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.27

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.26

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.25

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.24

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.23

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.22

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.21

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.20

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.19

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.18

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.17

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.16

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.15

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.14

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.13

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.12

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.11

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.10

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.9

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.8

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.7

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.6

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.5

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.4

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.4.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.25

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.24

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.23

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.22

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.21

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.20

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.19

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.18

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.17

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.16

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.15

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.14

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.13

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.12

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.11

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.10

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.9

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.8

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.7

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.6

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.5

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.4

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.3.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.10

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.8

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.7

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.6

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.5

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.4

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.2.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.1.5

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.1.4

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.1.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.1.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.1.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.1.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.3

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.2

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.1

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.0

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.27

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.26

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.25

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.24

2 findings

HIGH typosquat.levenshtein: Possible typosquat of 'next' typosquat

Package name '@posthog/nuxt' is 1 edit(s) away from popular package 'next'.

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.