← Home

@adguard/dnr-rulesets

npm

Utility to create AdGuard DNR rulesets for mv3 extensions

100
Versions
GPL-3.0-only
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

ameshkovmaximtopblakhard

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/filters/local_script_rules.js AI (source-diff): This file contains AdGuard scriptlet filter rules — minified JS strings mapped to expanded implementations. This is expected content for an ad-blocking DNR ruleset package, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/chromium-mv3/local_script_rules.js AI (source-diff): These files contain AdGuard's scriptlet lookup tables — minified ad-blocking JS used as object keys with expanded implementations as values. This is the package's documented design, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/opera-mv3/local_script_rules.js AI (source-diff): Same as chromium-mv3 variant: AdGuard scriptlet lookup tables with minified keys and readable implementations. Expected build artifact for this package. ai
publish-pattern rapid-publish AI (publish-pattern): Package has 13,351 versions with timestamp-based version numbers, indicating a fully automated filter-list update pipeline. Rapid publishing is the normal operating mode for this package. ai
phantom-deps phantom-dep:chokidar AI (phantom-deps): CLI tool legitimately uses chokidar for file watching; declared in dependencies and referenced in config files. ai
dependencies unvetted-dep:@adguard/agtree AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
phantom-deps phantom-dep:@adguard/re2-wasm AI (phantom-deps): First-party AdGuard dependency declared in package.json; phantom-dep flag is a false positive for same-org packages. ai
phantom-deps phantom-dep:commander AI (phantom-deps): CLI tool legitimately uses commander for CLI argument parsing; declared in dependencies. ai
dependencies unvetted-dep:@adguard/logger AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/re2-wasm AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/tsurlfilter AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai

Versions (showing 100 of 9632)

Version Deps Published
3.3.20260227230049 10 / 29
3.3.20260227220047 10 / 29
3.3.20260227210045 10 / 29
3.3.20260227200055 10 / 29
3.3.20260227190049 10 / 29
3.3.20260227180051 10 / 29
3.3.20260227170053 10 / 29
3.3.20260227150148 10 / 29
3.3.20260227140104 10 / 29
3.3.20260227130058 10 / 29
3.3.20260227110152 10 / 29
3.3.20260227090106 10 / 29
3.3.20260227060112 10 / 29
3.3.20260227050108 10 / 29
3.3.20260227040042 10 / 29
3.3.20260227020043 10 / 29
3.3.20260227010042 10 / 29
3.3.20260227000141 10 / 29
3.3.20260226220045 10 / 29
3.3.20260226210048 10 / 29
3.3.20260226200105 10 / 29
3.3.20260226190055 10 / 29
3.3.20260226180056 10 / 29
3.3.20260226170043 10 / 29
3.3.20260226160048 10 / 29
3.3.20260226150058 10 / 29
3.3.20260226140141 10 / 29
3.3.20260226110049 10 / 29
3.3.20260226100054 10 / 29
3.3.20260226090043 10 / 29
3.3.20260226080125 10 / 29
3.3.20260226070136 10 / 29
3.3.20260226060056 10 / 29
3.3.20260226050118 10 / 29
3.3.20260226030048 10 / 29
3.3.20260226010046 10 / 29
3.3.20260225230056 10 / 29
3.3.20260225220051 10 / 29
3.3.20260225200051 10 / 29
3.3.20260225190101 10 / 29
3.3.20260225180050 10 / 29
3.3.20260225170052 10 / 29
3.3.20260225160107 10 / 29
3.3.20260225140050 10 / 29
3.3.20260225130058 10 / 29
3.3.20260225120059 10 / 29
3.3.20260225110103 10 / 29
3.3.20260225090104 10 / 29
3.3.20260225080055 10 / 29
3.3.20260225070053 10 / 29
3.3.20260225050101 10 / 29
3.3.20260225040051 10 / 29
3.3.20260225020049 10 / 29
3.3.20260225000108 10 / 29
3.3.20260224230101 10 / 29
3.3.20260224220052 10 / 29
3.3.20260224210054 10 / 29
3.3.20260224200110 10 / 29
3.3.20260224180049 10 / 29
3.3.20260224170102 10 / 29
3.3.20260224160057 10 / 29
3.3.20260224140046 10 / 29
3.3.20260224120058 10 / 29
3.3.20260224110054 10 / 29
3.3.20260224090118 10 / 29
3.3.20260224070110 10 / 29
3.3.20260224060122 10 / 29
3.3.20260224050055 10 / 29
3.3.20260224040051 10 / 29
3.3.20260224030056 10 / 29
3.3.20260224020045 10 / 29
3.3.20260224010042 10 / 29
3.3.20260223230057 10 / 29
3.3.20260223220140 10 / 29
3.3.20260223210054 10 / 29
3.3.20260223200051 10 / 29
3.3.20260223190050 10 / 29
3.3.20260223150058 10 / 29
3.3.20260223140047 10 / 29
3.3.20260223130048 10 / 29
3.3.20260223110058 10 / 29
3.3.20260223100058 10 / 29
3.3.20260223090046 10 / 29
3.3.20260223070052 10 / 29
3.3.20260223060052 10 / 29
3.3.20260223050053 10 / 29
3.3.20260223040040 10 / 29
3.3.20260223030043 10 / 29
3.3.20260223020050 10 / 29
3.3.20260223010041 10 / 29
3.3.20260223000124 10 / 29
3.3.20260222230051 10 / 29
3.3.20260222220052 10 / 29
3.3.20260222210052 10 / 29
3.3.20260222200051 10 / 29
3.3.20260222190054 10 / 29
3.3.20260222180051 10 / 29
3.3.20260222170051 10 / 29
3.3.20260222160057 10 / 29
3.3.20260222150057 10 / 29
Showing 100 of 9632 Next page →

v3.3.20260226210048

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260226160048

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260225220051

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260225190101

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260225040051

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260224020045

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260223200051

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260223130048

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260222150057

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.