@voidzero-dev/vite-plus-test MIT 18 versions

@voidzero-dev/vite-plus-test

npm Repository Homepage

The Unified Toolchain for the Web

18

Versions

MIT

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

yyx990803vitebotbroooooklynboshen

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:obug	AI (dependencies): obug is a debugging utility; expected in a test framework package. No security concern.	ai	2026/04/27
dependencies	unvetted-dep:@types/chai	AI (dependencies): @types/chai is the standard TypeScript types for chai assertions; entirely expected in a test framework.	ai	2026/04/27
npm-metadata	no-description	AI (npm-metadata): VoidZero automated build package; missing description is a metadata gap, not a security signal given 260k downloads and 117 versions.	ai	2026/04/27
phantom-deps	phantom-dep:tinyexec	AI (phantom-deps): Bundled test framework re-exports deps to consumers; phantom detection is expected for this package type.	ai	2026/04/23
phantom-deps	phantom-dep:tinybench	AI (phantom-deps): Bundled test framework re-exports deps to consumers; phantom detection is expected for this package type.	ai	2026/04/23
phantom-deps	phantom-dep:es-module-lexer	AI (phantom-deps): Bundled test framework re-exports deps to consumers; phantom detection is expected for this package type.	ai	2026/04/23
phantom-deps	phantom-dep:tinyglobby	AI (phantom-deps): Bundled test framework re-exports deps to consumers; phantom detection is expected for this package type.	ai	2026/04/23
phantom-deps	phantom-dep:@types/chai	AI (phantom-deps): TypeScript type package used by framework consumers; phantom detection is a known false positive for this pattern.	ai	2026/04/23
phantom-deps	phantom-dep:pixelmatch	AI (phantom-deps): Bundled test framework re-exports deps to consumers; phantom detection is expected for this package type.	ai	2026/04/23
bogus-package	bogus-package	AI (bogus-package): The spam-publisher signal fires on yyx990803 (Evan You, Vue/Vite creator) and vitebot (official Vite automation bot) — both are highly legitimate npm publishers. False positive for this package.	ai	2026/04/23
phantom-deps	phantom-dep:obug	AI (phantom-deps): Bundled test framework re-exports deps to consumers; phantom detection is expected for this package type.	ai	2026/04/23

Versions (showing 18 of 118)

Hide prereleases

Version	Deps	Published
0.0.0-8a22e149.20260207-1117	13 / 26	2026-02-07
0.0.0-88feb9c9.20260222-0840	13 / 26	2026-02-22
0.0.0-88c8bdd71344c6d38f5f11fb41e9070034598d79	12 / 26	2026-01-23
0.0.0-833c515fa25cef20905a7f9affb156dfa6f151ab	13 / 26	2026-01-30
0.0.0-6c768303.20260221-0820	13 / 26	2026-02-21
0.0.0-6bf6b4c1b360fa4f7f1cee975103c16c21053c72	12 / 25	2026-01-15
0.0.0-569bd560c8521f4cacc62e99477f14c99ca44a38	12 / 26	2026-01-22
0.0.0-4fd98a46.20260222-0623	13 / 26	2026-02-22
0.0.0-4d2367587d11c412d283847253d95e4e36ace419	12 / 26	2026-01-23
0.0.0-40918e094cfc5866505c7c99ca8187c4793b88f6	13 / 26	2026-01-29
0.0.0-4068290689f7e29f7972511b8bc50d187152190e	13 / 26	2026-02-02
0.0.0-32ded18247339464f32bf5eb5c42cd98b0fb172c	13 / 26	2026-01-30
0.0.0-3262bda4.20260210-0221	13 / 26	2026-02-10
0.0.0-3011d615.20260209-1527	13 / 26	2026-02-09
0.0.0-26b2cbb0.20260207-0932	13 / 26	2026-02-07
0.0.0-2165a922.20260205-1645	13 / 26	2026-02-05
0.0.0-16aec32c4c6c33501bb58784baab9de3ce44c0c4	13 / 26	2026-02-04
0.0.0-0bfcc90f.20260209-0731	13 / 26	2026-02-09