← Home

@adguard/dnr-rulesets

npm

Utility to create AdGuard DNR rulesets for mv3 extensions

100
Versions
GPL-3.0-only
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

ameshkovmaximtopblakhard

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/filters/local_script_rules.js AI (source-diff): This file contains AdGuard scriptlet filter rules — minified JS strings mapped to expanded implementations. This is expected content for an ad-blocking DNR ruleset package, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/chromium-mv3/local_script_rules.js AI (source-diff): These files contain AdGuard's scriptlet lookup tables — minified ad-blocking JS used as object keys with expanded implementations as values. This is the package's documented design, not malicious obfuscation. ai
source-diff obfuscated-file:dist/filters/opera-mv3/local_script_rules.js AI (source-diff): Same as chromium-mv3 variant: AdGuard scriptlet lookup tables with minified keys and readable implementations. Expected build artifact for this package. ai
publish-pattern rapid-publish AI (publish-pattern): Package has 13,351 versions with timestamp-based version numbers, indicating a fully automated filter-list update pipeline. Rapid publishing is the normal operating mode for this package. ai
phantom-deps phantom-dep:chokidar AI (phantom-deps): CLI tool legitimately uses chokidar for file watching; declared in dependencies and referenced in config files. ai
dependencies unvetted-dep:@adguard/agtree AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
phantom-deps phantom-dep:@adguard/re2-wasm AI (phantom-deps): First-party AdGuard dependency declared in package.json; phantom-dep flag is a false positive for same-org packages. ai
phantom-deps phantom-dep:commander AI (phantom-deps): CLI tool legitimately uses commander for CLI argument parsing; declared in dependencies. ai
dependencies unvetted-dep:@adguard/logger AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/re2-wasm AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai
dependencies unvetted-dep:@adguard/tsurlfilter AI (dependencies): First-party AdGuard dependency in the same org scope; expected internal dependency for this package. ai

Versions (showing 100 of 9623)

Version Deps Published
3.3.20260310050050 10 / 29
3.3.20260310040120 10 / 29
3.3.20260310030055 10 / 29
3.3.20260310020051 10 / 29
3.3.20260310010051 10 / 29
3.3.20260310000105 10 / 29
3.3.20260309230050 10 / 29
3.3.20260309220050 10 / 29
3.3.20260309210046 10 / 29
3.3.20260309200050 10 / 29
3.3.20260309180053 10 / 29
3.3.20260309160047 10 / 29
3.3.20260309150045 10 / 29
3.3.20260309140058 10 / 29
3.3.20260309130046 10 / 29
3.3.20260309110054 10 / 29
3.3.20260309090044 10 / 29
3.3.20260309080059 10 / 29
3.3.20260309070050 10 / 29
3.3.20260309060103 10 / 29
3.3.20260309050044 10 / 29
3.3.20260309030045 10 / 29
3.3.20260309020038 10 / 29
3.3.20260309010047 10 / 29
3.3.20260309000057 10 / 29
3.3.20260308230044 10 / 29
3.3.20260308220053 10 / 29
3.3.20260308210055 10 / 29
3.3.20260308200051 10 / 29
3.3.20260308190053 10 / 29
3.3.20260308180041 10 / 29
3.3.20260308170049 10 / 29
3.3.20260308150048 10 / 29
3.3.20260308140050 10 / 29
3.3.20260308130047 10 / 29
3.3.20260308120051 10 / 29
3.3.20260308110050 10 / 29
3.3.20260308100054 10 / 29
3.3.20260308090046 10 / 29
3.3.20260308080042 10 / 29
3.3.20260308060044 10 / 29
3.3.20260308050055 10 / 29
3.3.20260308040040 10 / 29
3.3.20260308030041 10 / 29
3.3.20260308000058 10 / 29
3.3.20260307230052 10 / 29
3.3.20260307210051 10 / 29
3.3.20260307200048 10 / 29
3.3.20260307190048 10 / 29
3.3.20260307180047 10 / 29
3.3.20260307170050 10 / 29
3.3.20260307150044 10 / 29
3.3.20260307140047 10 / 29
3.3.20260307130050 10 / 29
3.3.20260307120044 10 / 29
3.3.20260307110045 10 / 29
3.3.20260307100051 10 / 29
3.3.20260307090052 10 / 29
3.3.20260307080048 10 / 29
3.3.20260307070050 10 / 29
3.3.20260307060048 10 / 29
3.3.20260307050053 10 / 29
3.3.20260307040052 10 / 29
3.3.20260307030052 10 / 29
3.3.20260307020052 10 / 29
3.3.20260307000102 10 / 29
3.3.20260306230047 10 / 29
3.3.20260306210056 10 / 29
3.3.20260306200047 10 / 29
3.3.20260306190048 10 / 29
3.3.20260306180109 10 / 29
3.3.20260306170057 10 / 29
3.3.20260306160059 10 / 29
3.3.20260306150058 10 / 29
3.3.20260306140102 10 / 29
3.3.20260306130104 10 / 29
3.3.20260306120203 10 / 29
3.3.20260306110051 10 / 29
3.3.20260306100059 10 / 29
3.3.20260306090126 10 / 29
3.3.20260306080104 10 / 29
3.3.20260306060124 10 / 29
3.3.20260306050101 10 / 29
3.3.20260306040048 10 / 29
3.3.20260306030110 10 / 29
3.3.20260306020050 10 / 29
3.3.20260306010043 10 / 29
3.3.20260305230051 10 / 29
3.3.20260305220051 10 / 29
3.3.20260305210103 10 / 29
3.3.20260305200102 10 / 29
3.3.20260305180058 10 / 29
3.3.20260305170222 10 / 29
3.3.20260305160051 10 / 29
3.3.20260305130152 10 / 29
3.3.20260305120106 10 / 29
3.3.20260305110447 10 / 29
3.3.20260305100048 10 / 29
3.3.20260305090049 10 / 29
3.3.20260305080107 10 / 29
Showing 100 of 9623 Next page →

v3.3.20260309210046

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260309140058

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260309000057

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260308110050

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260308080042

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260307150044

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260306190048

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.20260306010043

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.