← Home

@baloise/ds-core

npm Repository Homepage

The Baloise Design-System is an open source project for styling awesome web applications that follow the Baloise corporate styling guidelines.

3
Versions
Apache-2.0
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

yannickholzenkampthomasseyssenstpobaopsohirsch88nobilose-aperto-commladenplaninicicteam_mortalmadalina.iacobmontakasparsoneassistentenitch

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff large-new-source-files AI (source-diff): Large number of new files is expected for a design system adding new components across multiple build targets. ai
source-diff obfuscated-file:dist/cjs/bal-check_7.cjs.entry.js AI (source-diff): Standard Stencil.js minified component bundle; consistent with this package's established build output. ai
source-diff obfuscated-file:dist/esm/bal-check_7.entry.js AI (source-diff): Standard Stencil.js minified component bundle. ai
source-diff obfuscated-file:dist/esm-es5/bal-check_7.entry.js AI (source-diff): Standard Stencil.js minified component bundle. ai
source-diff obfuscated-file:dist/cjs/bal-radio_3.cjs.entry.js AI (source-diff): Standard Stencil.js minified component bundle. ai
source-diff obfuscated-file:dist/esm/bal-radio_3.entry.js AI (source-diff): Standard Stencil.js minified component bundle. ai
source-diff obfuscated-file:dist/esm-es5/bal-radio_3.entry.js AI (source-diff): Standard Stencil.js minified component bundle. ai
source-diff obfuscated-file:dist/esm-es5/breakpoints.subject-PxavGndB.js AI (source-diff): Standard Stencil.js minified utility bundle. ai
source-diff obfuscated-file:components/bal-switch2.js AI (source-diff): Standard Stencil.js minified component bundle. ai
dependencies unvetted-dep:lodash.isnan AI (dependencies): Standard lodash utility; stable false positive for this package. ai
dependencies unvetted-dep:contactjs AI (dependencies): Legitimate touch/gesture library; consistent with a UI component library's needs across versions. ai
dependencies unvetted-dep:lottie-colorify AI (dependencies): Lottie animation utility; consistent with design system animation features. ai
dependencies unvetted-dep:@baloise/web-app-utils AI (dependencies): Same org scope (@baloise); stable internal utility dependency across versions. ai
phantom-deps phantom-dep:contactjs AI (phantom-deps): Referenced in config files per finding; stable false positive for this package. ai
phantom-deps phantom-dep:@baloise/ds-icons AI (phantom-deps): Same-org sibling package; phantom-dep heuristic is a stable false positive for this monorepo. ai
phantom-deps phantom-dep:@baloise/ds-styles AI (phantom-deps): Same-org sibling package; phantom-dep heuristic is a stable false positive for this monorepo. ai

Versions (showing 3 of 3)

Version Deps Published
19.9.5 21 / 8
19.9.4 21 / 8
19.9.3 21 / 8

v19.9.5

41 findings
HIGH New obfuscated file: dist/cjs/bal-check_7.cjs.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm-es5/bal-check_7.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/bal-check_7.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/cjs/bal-radio_3.cjs.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm-es5/bal-radio_3.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/bal-radio_3.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: components/bal-switch2.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm-es5/breakpoints.subject-PxavGndB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-1bb5b8696e.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-1d7406989c.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-3850595dd0.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-43dd693355.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-477359bbf9.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-59129fb1d1.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-607125007c.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-64d45da025.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-68baccfba9.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-68f77714ab.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-6c3d087d59.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-74fe27789f.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-8268d61dd6.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-8e3412d465.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-af05694fd5.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-b670d9cae9.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-b6e82651ef.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-bac3d30df3.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-bbeeefc31a.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-c31dc8146b.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-c4a244b558.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-c5ae87f18e.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-c8b853074f.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-d21134a60b.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-d5bd821ab7.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-d9349f5eb0.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-DLLNm5Gs.system.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-DxnFuP0T.system.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-e6f03ecdd0.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-eb2f5b22de.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-f2435a528c.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/baloise-design-system/p-fa728470a3.system.entry.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v19.9.3

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.