@vitejs/devtools-rolldown
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/public/_nuxt/BZbl9b6M.js | AI (source-diff): Standard Vite/Nuxt minified production bundle for devtools UI; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Q0g2p3Tn.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/KGWAKIjl.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DpwellRX.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DPbQuX9J.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/diff.worker-CjOQCDrL.js | AI (source-diff): Nuxt-bundled minified web worker. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DHF6DbDV.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Dc_O_zZb.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CWXuMikD.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CJF5NhpB.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CE_-BS6_.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BydIxJFY.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Bq4MVFqu.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BGZZhyQu.js | AI (source-diff): Nuxt-bundled minified frontend asset (fuse.js search). | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/BCw50qmU.js | AI (source-diff): Frontend bundle with DOM/fetch calls; not server-side dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BCw50qmU.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BbKimAk2.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Ba09nynh.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/B_J3ZfKi.js | AI (source-diff): Nuxt-bundled minified frontend asset (floating-ui). | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/5bJuVons.js | AI (source-diff): Nuxt-bundled minified frontend asset. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/0O2Pj8hl.js | AI (source-diff): Nuxt-bundled minified frontend asset; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BxiRKmyC.js | AI (source-diff): Vite/Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Cn7bMz0c2.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/fdFrOGYe.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/DXL3SCKY.js | AI (source-diff): Bundled UI framework runtime with fetch + dynamic imports; not malicious. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DXL3SCKY.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DkA3R_W8.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/C0aRgtmJ.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Bv5LSOyE2.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BO4_45PC.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/B5qpg37n.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/006NdgFm.js | AI (source-diff): Nuxt production bundle output; minified UI assets are expected for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/ClI9EQhu.js | AI (source-diff): Nuxt production build chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BkDUEabV.js | AI (source-diff): Nuxt production build chunk; minified frontend UI code. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/gzfwXX0r.js | AI (source-diff): Nuxt production build chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/JqkF4g2X.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DIY3Np8j.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/DGzTCPXE.js | AI (source-diff): Large Nuxt bundle with fetch + eval patterns typical of framework runtime; not malicious. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DGzTCPXE.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DGp5TtxR.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DfB5JIVQ.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DAfG6Q5x.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D1igyLjg.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Cm8gy9GJ.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CCApufKY2.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BWhQiJfC2.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BT76Oq15.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BQdCEVtN.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BM8UMmvc.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Bi5REHPk.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/B7_BsZam2.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BgSZqMub.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BDcpuUbg.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/qNFXE2Qb.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/qKmu99_C.js | AI (source-diff): Nuxt-bundled minified Vue UI components; stable pattern for this devtools package. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Nuxt build output regenerates all chunk filenames each build; expected churn. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/B6PLDwAm.js | AI (source-diff): Nuxt production build bundle; minified frontend assets are expected for this devtools UI package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BNZzKgvO.js | AI (source-diff): Nuxt production build bundle; minified frontend assets are expected. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/_z5g9W2Q.js | AI (source-diff): Nuxt production build bundle; d3-hierarchy code minified as expected. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BGfhRWSX.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BNrUSHd9.js | AI (source-diff): Nuxt production build bundle; floating-ui DOM code minified. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/C4TkllWS.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/C9xBafiu.js | AI (source-diff): Nuxt production build bundle; fuse.js minified as expected. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CGpzF1Fi.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CiUxnt4q.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CSmrzcuw.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CtfgqrR6.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CZ4Hed_B.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D2fxAMpL.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D7E3leYJ.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DS9O9jUU.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DYWABjKK.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/I45WLXVn.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/WhNLRjQY.js | AI (source-diff): Nuxt production build bundle; minified frontend assets. | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/B6PLDwAm.js | AI (source-diff): Bundled frontend UI code; fetch + dynamic imports are normal in Nuxt builds. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D-_8YzYd.js | AI (source-diff): Nuxt entry chunk with modulepreload boilerplate; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BfyZ1e0k.js | AI (source-diff): Nuxt production build output (minified Vue components); stable for this package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D-3DnbGi2.js | AI (source-diff): Minified Vue component bundle; stable false positive. | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/BfyZ1e0k.js | AI (source-diff): Minified Vue UI bundle with standard fetch/dynamic-import patterns; not malicious. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/TJfS2wQy2.js | AI (source-diff): Minified Vue component (ChunksFlatList/Graph); build artifact. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/PxFTarMZ.js | AI (source-diff): Minified Vue component (SessionSelector); build artifact. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/LlZteMOS.js | AI (source-diff): Minified Vue component (PathSelectorItem etc.); build artifact. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D4Y_zfdP.js | AI (source-diff): Bundled d3 tree/hierarchy code; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CPRbmyEw.js | AI (source-diff): Nuxt entry bundle with module preload; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/dmap9D-O.js | AI (source-diff): Nuxt-bundled minified Vue UI components; standard build output. | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/ChjPWTWV.js | AI (source-diff): Frontend bundle with fetch + eval patterns typical of Monaco/devtools UI. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/ChjPWTWV.js | AI (source-diff): Large minified Nuxt chunk; expected for devtools UI. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Cc25hvIa.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CbQbsbZd.js | AI (source-diff): Minified d3-hierarchy bundle chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CAMw8o6X.js | AI (source-diff): Nuxt error-404 page component bundle. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/C5iGLYf8.js | AI (source-diff): Minified Nuxt chunk with path utilities. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BTfiKBAm.js | AI (source-diff): Minified Vue runtime DOM operations bundle. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BQIt7f6-2.js | AI (source-diff): Minified Nuxt chunk with Vue component code. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BqiFImA_.js | AI (source-diff): Minified Nuxt chunk; content is file-type detection utilities. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BdFYEjeH.js | AI (source-diff): Nuxt-built frontend bundle; minified output is expected for this devtools UI package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/BleX7Loz.js | AI (source-diff): Nuxt entry bundle with standard modulepreload pattern. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/jP7hav2h.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DRDotB3_.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D8ugdtv-.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D355zo8J.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/D_SWqqpX.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CxYeQaBW.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CUBdwZVs.js | AI (source-diff): Minified Vue runtime core bundle. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CK6Xn-O82.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CJdYjM__.js | AI (source-diff): Minified Nuxt chunk. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/3TymDptH.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output for this devtools package. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/RFQ9kWkc.js | AI (source-diff): Nuxt-bundled minified JS; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DpW0qpWn.js | AI (source-diff): Nuxt-bundled minified Vue runtime; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/Dg9zMuGl2.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/DeejVvnS.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CXhLP-Vi2.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CAonW3eZ.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/CA0N7And.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output. | ai | |
| source-diff | net-exec-file:dist/public/_nuxt/A14j6IXQ.js | AI (source-diff): False positive on bundled UI code with fetch calls and Vue template compilation. | ai | |
| source-diff | obfuscated-file:dist/public/_nuxt/A14j6IXQ.js | AI (source-diff): Nuxt-bundled minified Vue components; standard build output for this devtools package. | ai | |
| phantom-deps | phantom-dep:ohash | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| dependencies | unvetted-dep:@rolldown/debug | AI (dependencies): @rolldown/debug is from the official Rolldown org (VoidZero Inc.), same parent org as @vitejs. Pre-release version expected for Rolldown devtools. | ai | |
| phantom-deps | phantom-dep:@pnpm/read-project-manifest | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:structured-clone-es | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:@floating-ui/dom | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:unconfig | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:d3-shape | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:p-limit | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:mrmime | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:birpc | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:h3 | AI (phantom-deps): Package bundles many deps into dist output; phantom deps are expected for this bundled devtools package under the official @vitejs scope. | ai | |
| phantom-deps | phantom-dep:ws | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:cac | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:mlly | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:sirv | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:ansis | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:get-port-please | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:tinyglobby | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:unstorage | AI (phantom-deps): Bundled devtools package; declared deps consumed via bundled dist, not direct imports. Official @vitejs scope with SLSA provenance. | ai | |
| phantom-deps | phantom-dep:publint | AI (phantom-deps): Declared in package.json but bundled/inlined; phantom-dep false positive for this build-tool monorepo package with explicit inlinedDependencies. | ai | |
| phantom-deps | phantom-dep:@rolldown/debug | AI (phantom-deps): Legitimate Rolldown org dependency declared but consumed indirectly; false positive for this build-tool package. | ai | |
| phantom-deps | phantom-dep:@vitejs/devtools-rpc | AI (phantom-deps): Sibling package in the same @vitejs org; phantom-dep flag is expected for monorepo cross-package references. | ai | |
| phantom-deps | phantom-dep:vue-virtual-scroller | AI (phantom-deps): Legitimate Vue ecosystem package; phantom-dep false positive for this build-tool package with inlined/bundled deps. | ai | |
| provenance | slsa-provenance | AI (provenance): SLSA provenance attestation confirms official CI/CD build from vitejs/devtools repo; strong supply chain integrity signal. | ai |
Versions (showing 24 of 24)
| Version | Deps | Published |
|---|---|---|
| 0.2.0 | 22 / 20 | |
| 0.1.24 | 23 / 21 | |
| 0.1.23 | 23 / 21 | |
| 0.1.22 | 23 / 21 | |
| 0.1.21 | 27 / 21 | |
| 0.1.20 | 27 / 21 | |
| 0.1.19 | 27 / 21 | |
| 0.1.18 | 27 / 21 | |
| 0.1.17 | 27 / 21 | |
| 0.1.16 | 27 / 21 | |
| 0.1.15 | 27 / 21 | |
| 0.1.14 | 27 / 23 | |
| 0.1.13 | 26 / 23 | |
| 0.1.12 | 26 / 23 | |
| 0.1.11 | 26 / 23 | |
| 0.1.10 | 26 / 23 | |
| 0.1.9 | 26 / 23 | |
| 0.1.8 | 26 / 23 | |
| 0.1.5 | 26 / 23 | |
| 0.1.4 | 26 / 24 | |
| 0.1.3 | 26 / 24 | |
| 0.1.2 | 26 / 24 | |
| 0.1.1 | 26 / 24 | |
| 0.1.0 | 26 / 24 |
v0.2.0
22 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.24
20 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.23
20 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.22
24 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.21
25 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.20
25 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.19
11 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.18
11 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.17
11 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.16
24 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.15
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.14
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.13
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.12
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.10
11 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.3
9 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.2
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.1.1
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.