eslint-plugin-sukka No license 24 versions

eslint-plugin-sukka

npm Repository

24

Versions

—

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

sukkaw

Keywords

eslinteslint-pluginsukkasukkaweslint-plugin-sukkaeslint-config-sukka

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
email-domain	unclaimed-email:https://skk.moe	AI (email-domain): Author field contains a URL (https://skk.moe), not an email address; domain is the maintainer's known personal site.	ai	2026/05/15

Versions (showing 24 of 24)

Version	Deps	Published
9.5.0	3 / 15	2026-05-16
9.4.0	3 / 16	2026-04-29
9.3.4	3 / 16	2026-04-21
9.3.3	4 / 16	2026-04-20
9.3.2	4 / 16	2026-04-20
9.3.1	4 / 16	2026-04-20
9.3.0	4 / 16	2026-04-16
9.2.0	4 / 16	2026-04-03
9.1.0	4 / 16	2026-03-21
9.0.3	4 / 16	2026-02-07
9.0.2	4 / 16	2026-02-03
9.0.1	4 / 16	2026-02-03
9.0.0	4 / 16	2026-02-03
8.6.1	5 / 2	2026-02-02
8.6.0	5 / 2	2026-02-02
8.5.0	5 / 2	2026-02-02
8.4.0	5 / 2	2026-01-30
8.3.0	5 / 2	2026-01-20
8.2.0	5 / 2	2026-01-16
8.1.0	5 / 2	2026-01-09
8.0.6	5 / 2	2025-12-14
8.0.5	5 / 2	2025-11-19
8.0.4	5 / 2	2025-11-13
8.0.3	5 / 2	2025-11-11

v9.5.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.4.0

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.3.4

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.3.3

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.3.2

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.3.1

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.3.0

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.2.0

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.1.0

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.0.3

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.0.2

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.0.1

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v9.0.0

2 findings

HIGH Unclaimed maintainer email domain: https://skk.moe email-domain

Maintainer email 'https://skk.moe' uses domain 'https://skk.moe' which has no DNS records. An attacker could register this domain to hijack the maintainer identity.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.6.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.6.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.5.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.4.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.3.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.2.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.1.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.0.6

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.0.5

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.0.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v8.0.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.