@blueking/monitor-trace-explore
蓝鲸监控 Trace 检索抽取出来的独立库,主要提供给 APM 等宿主使用
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:explore-trace-slider-DeAaMvUr.js | AI (source-diff): Standard Vite-bundled Vue component chunk; long lines are minified imports, not obfuscation. | ai | |
| source-diff | net-exec-file:monitor-trace-log-JnfIbK6L.js | AI (source-diff): Network calls are monitor-api module imports; normal for this APM UI package. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-JnfIbK6L.js | AI (source-diff): Standard Vite-bundled Vue component chunk; long lines are minified imports. | ai | |
| source-diff | net-exec-file:explore-trace-slider-DeAaMvUr.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity system — normal for this package. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-kDyerg5j.js | AI (source-diff): Mermaid sequence diagram parser bundled as minified JS; long lines are parser tables, not obfuscation. | ai | |
| source-diff | obfuscated-file:span-details-gxKsla0j.js | AI (source-diff): Standard Vite-bundled Vue component chunk; long lines are minified imports. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-NdFo-ipd.js | AI (source-diff): Standard Vite-bundled entry chunk; long lines are minified imports. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-NdFo-ipd.js | AI (source-diff): Network calls are monitor-api module imports; normal for this APM UI package. | ai | |
| source-diff | net-exec-file:sequence-graph-Cr2Yg7wO.js | AI (source-diff): Network calls are monitor-api/apm_trace imports; normal for this APM UI package. | ai | |
| source-diff | net-exec-file:explore-trace-slider-DyfbCV4o.js | AI (source-diff): Network calls are monitor-api imports; dynamic code is Vue reactivity system — standard bundle pattern. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-jX3rQkie.js | AI (source-diff): Network calls are monitor-api imports; standard bundle pattern. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-jX3rQkie.js | AI (source-diff): Minified Vite entry bundle; standard pattern for this package. | ai | |
| source-diff | obfuscated-file:span-details-DQ1HKxV7.js | AI (source-diff): Minified Vite bundle chunk; standard pattern for this package. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-C4sNLfRU.js | AI (source-diff): Minified mermaid sequence diagram parser; long lines are parser tables, not obfuscation. | ai | |
| source-diff | net-exec-file:sequence-graph-DEdd0v26.js | AI (source-diff): Network calls are monitor-api imports; standard bundle pattern. | ai | |
| source-diff | net-exec-file:monitor-trace-log-BZ5UYbCz.js | AI (source-diff): Network calls are monitor-api imports; standard bundle pattern. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-BZ5UYbCz.js | AI (source-diff): Minified Vite bundle chunk; same pattern as other chunks in this package. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-DyfbCV4o.js | AI (source-diff): Minified Vite bundle chunk; long lines are normal for bundled Vue components, not obfuscation. | ai | |
| source-diff | obfuscated-file:span-details-CSoht8O9.js | AI (source-diff): Standard Vite bundle with chart/table component imports; minification expected. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-rTsAbv20.js | AI (source-diff): Network calls are legitimate APM API modules; dynamic execution is Vue framework internals. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-rTsAbv20.js | AI (source-diff): Entry bundle with monitor-api, dayjs, Vue imports — normal build artifact for this package. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-BCRMIj3s.js | AI (source-diff): Mermaid sequence diagram parser — minified parser tables are expected, not obfuscation. | ai | |
| source-diff | net-exec-file:sequence-graph-ZhCFIz0z.js | AI (source-diff): traceDiagram API call is expected APM trace functionality; no malware indicators. | ai | |
| source-diff | net-exec-file:monitor-trace-log-BdIO0YHy.js | AI (source-diff): Same pattern as other chunks; monitor-api calls are legitimate APM log service calls. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-BdIO0YHy.js | AI (source-diff): Standard Vite bundle; imports are dayjs, Vue, and internal monitor-api — expected for this package. | ai | |
| source-diff | net-exec-file:explore-trace-slider-BGvtYrmR.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity system — no malware pattern. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-BGvtYrmR.js | AI (source-diff): Standard Vite bundle chunk with readable Vue/lodash imports; minification is expected for this UI component library. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-h2KdGj_f.js | AI (source-diff): Minified Vite/webpack bundle chunk; imports are standard Vue/UI library symbols, no malicious content. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-CrLlzrVD.js | AI (source-diff): Network calls are monitor-api module imports; consistent with legitimate monitoring UI library. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-CrLlzrVD.js | AI (source-diff): Main entry bundle with monitor-api/monitor-pc/dayjs imports; standard Blueking monitoring library pattern. | ai | |
| source-diff | obfuscated-file:span-details-CrTvLWIM.js | AI (source-diff): Minified Vue component bundle with standard chart/UI imports; no malicious content. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-BwLhhyJA.js | AI (source-diff): Mermaid sequence diagram parser bundle; minified parser tables are expected, not obfuscation. | ai | |
| source-diff | net-exec-file:sequence-graph-BH5YuXd4.js | AI (source-diff): Imports traceDiagram from monitor-api; standard UI component pattern, not dropper behavior. | ai | |
| source-diff | net-exec-file:monitor-trace-log-C8VcUEOS.js | AI (source-diff): Network calls are monitor-api module imports; consistent with legitimate monitoring UI library. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-C8VcUEOS.js | AI (source-diff): Minified bundle chunk with standard dayjs/Vue/monitor-api imports; no malicious payload. | ai | |
| source-diff | net-exec-file:explore-trace-slider-h2KdGj_f.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity system, not dropper behavior. | ai | |
| source-diff | net-exec-file:explore-trace-slider-B9cwbpYZ.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity system — normal for this package. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-B79ifV76.js | AI (source-diff): Network calls are monitor-api module imports; consistent with legitimate APM component library. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-B79ifV76.js | AI (source-diff): Entry bundle for APM trace explore; imports are all from monitor-* and dayjs namespaces. | ai | |
| source-diff | obfuscated-file:span-details-CCm3l8au.js | AI (source-diff): Minified Vite bundle with Vue/chart component imports; no malicious indicators. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-DpPmiQY7.js | AI (source-diff): Minified mermaid sequence diagram parser — known minified library output pattern. | ai | |
| source-diff | net-exec-file:sequence-graph-BoocFC2H.js | AI (source-diff): Imports traceDiagram from monitor-api; standard APM component network usage. | ai | |
| source-diff | net-exec-file:monitor-trace-log-TV6nkORu.js | AI (source-diff): Network calls are monitor-api imports; no dropper behavior evident in sample. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-TV6nkORu.js | AI (source-diff): Minified bundle; imports dayjs, monitor-api, Vue — standard component library output. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-B9cwbpYZ.js | AI (source-diff): Minified Vite/Rollup bundle output; imports are standard Vue/monitor-api internals, no malicious content. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-Cn0Ryjck.js | AI (source-diff): Mermaid sequence diagram parser bundle; minified parser tables are expected. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-CRqXZFGx.js | AI (source-diff): Network calls are internal monitor-api module imports; no exfiltration pattern. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-CRqXZFGx.js | AI (source-diff): Main entry bundle with monitor-api/monitor-pc/monitor-common imports; legitimate APM library. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-BUcPqp8K.js | AI (source-diff): Standard Vite-bundled Vue component chunk; long lines are minified imports, not obfuscation. | ai | |
| source-diff | obfuscated-file:span-details-BunrrP7v.js | AI (source-diff): Bundled Vue chart/span-detail component; long import lines are normal for bundled output. | ai | |
| source-diff | net-exec-file:explore-trace-slider-BUcPqp8K.js | AI (source-diff): Network calls are monitor-api imports; dynamic code is Vue reactivity. No dropper pattern. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-DtiMu4c3.js | AI (source-diff): Minified bundle chunk with dayjs/Vue imports; not obfuscated malware. | ai | |
| source-diff | net-exec-file:monitor-trace-log-DtiMu4c3.js | AI (source-diff): API calls to monitor-api/modules/apm_log; consistent with legitimate APM library. | ai | |
| source-diff | net-exec-file:sequence-graph-BF9oK9uh.js | AI (source-diff): Uses traceDiagram from monitor-api; standard APM trace visualization component. | ai | |
| source-diff | net-exec-file:monitor-trace-log-MxBO7NC0.js | AI (source-diff): Network calls are internal monitor-api module imports; no exfiltration or dropper pattern. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-B_Kv5JHP.js | AI (source-diff): Standard minified Vite bundle chunk; Vue 3 component imports visible in sample, no malicious payload. | ai | |
| source-diff | net-exec-file:explore-trace-slider-B_Kv5JHP.js | AI (source-diff): Network calls are internal monitor-api module imports; dynamic execution is Vue runtime rendering, not dropper behavior. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-MxBO7NC0.js | AI (source-diff): Minified bundle chunk with dayjs and monitor-api imports; consistent with legitimate APM trace library. | ai | |
| source-diff | net-exec-file:sequence-graph-BaaARX6A.js | AI (source-diff): Imports traceDiagram from monitor-api; standard APM trace diagram component, not malware. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-Cmapx3wn.js | AI (source-diff): Mermaid sequence diagram parser bundle; minified parser tables are expected, not obfuscation. | ai | |
| source-diff | obfuscated-file:span-details-CB__kKbQ.js | AI (source-diff): Minified Vue component bundle with chart/table imports; consistent with legitimate APM span detail UI. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-DXHJwdnz.js | AI (source-diff): Main entry bundle with monitor-api, dayjs, and blueking internal imports; standard build output. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-DXHJwdnz.js | AI (source-diff): Network calls are internal monitor-api imports; no external exfiltration or code injection. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-DiyE7SEN.js | AI (source-diff): Mermaid sequence diagram parser bundled as minified output; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:span-details-CQY4hFfw.js | AI (source-diff): Minified Vue 3 component bundle with chart/table utilities; no malicious indicators. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-BBIXmIEo.js | AI (source-diff): Entry bundle importing monitor-api, dayjs, and monitor-common utilities; standard build artifact. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-BBIXmIEo.js | AI (source-diff): API imports and Vue runtime; consistent with legitimate APM UI library entry point. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-D4sGsCUW.js | AI (source-diff): Standard minified Vite bundle for a Vue 3 component library; not obfuscated malware. | ai | |
| source-diff | net-exec-file:explore-trace-slider-D4sGsCUW.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue runtime rendering — normal for bundled UI components. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-DuhX9hWm.js | AI (source-diff): Minified Vite bundle; imports are dayjs, monitor-api, and Vue internals — no malicious indicators. | ai | |
| source-diff | net-exec-file:monitor-trace-log-DuhX9hWm.js | AI (source-diff): Same pattern as other bundles; monitor-api calls and Vue rendering, not dropper behavior. | ai | |
| source-diff | net-exec-file:sequence-graph-C0vsXnkz.js | AI (source-diff): traceDiagram API call and mermaid rendering; consistent with a trace visualization component. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-BXfpbXK1.js | AI (source-diff): Mermaid sequence diagram parser — minified parser tables are expected; no malicious patterns. | ai | |
| source-diff | obfuscated-file:span-details-BgQ0TRD2.js | AI (source-diff): Minified Vue component bundle with chart/table imports; consistent with legitimate build output. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-CxdHwvAq.js | AI (source-diff): Entry bundle importing monitor-api, monitor-pc, monitor-common — all internal org modules, no malicious patterns. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-CxdHwvAq.js | AI (source-diff): Network calls are internal monitor-api imports; dynamic execution is Vue framework patterns. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-BjkhXcQZ.js | AI (source-diff): Standard minified Vite/webpack bundle for a Vue UI component library; imports are all legitimate framework deps. | ai | |
| source-diff | net-exec-file:explore-trace-slider-BjkhXcQZ.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity system — no dropper pattern. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-BC5afHuQ.js | AI (source-diff): Minified bundle with dayjs, Vue, monitor-api imports; consistent with legitimate UI library build output. | ai | |
| source-diff | net-exec-file:monitor-trace-log-BC5afHuQ.js | AI (source-diff): Network calls are monitor-api module imports; no exfiltration or shell execution patterns present. | ai | |
| source-diff | net-exec-file:sequence-graph-0qBc8Tpo.js | AI (source-diff): Imports traceDiagram from monitor-api; standard UI component network usage, not dropper behavior. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-BCZI72IL.js | AI (source-diff): Minified Vite bundle chunk; imports are Vue/lodash/internal monitor APIs, no malicious content. | ai | |
| source-diff | obfuscated-file:span-details-BfmAwYKk.js | AI (source-diff): Minified Vite bundle of span detail components; imports are all internal monitor/bkui-vue APIs. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-Ck5LOxXe.js | AI (source-diff): Main entry bundle; imports are monitor-api, monitor-pc, dayjs — legitimate APM library. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-Ck5LOxXe.js | AI (source-diff): Network calls are monitor-api module imports; no exfiltration or arbitrary code execution. | ai | |
| source-diff | net-exec-file:sequence-graph-Icw2rI75.js | AI (source-diff): Imports traceDiagram from monitor-api; dynamic code is mermaid parser/renderer, not malware. | ai | |
| source-diff | net-exec-file:monitor-trace-log-CmBDG0mb.js | AI (source-diff): Network calls are monitor-api service calls; no exfiltration or shell execution patterns. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-CmBDG0mb.js | AI (source-diff): Minified Vite bundle; imports dayjs, monitor-api, Vue internals — legitimate monitoring component. | ai | |
| source-diff | net-exec-file:explore-trace-slider-BCZI72IL.js | AI (source-diff): Network calls are internal monitor-api module imports; dynamic execution is Vue rendering, not dropper behavior. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-CEmp_8oN.js | AI (source-diff): Mermaid sequence diagram parser — minified grammar tables are expected, not obfuscation. | ai | |
| source-diff | net-exec-file:explore-trace-slider-ufC3cZHp.js | AI (source-diff): Network calls are monitor-api module imports; dynamic code is Vue reactivity — no dropper pattern. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-BQClD0QQ.js | AI (source-diff): Network calls are monitor-api module imports; no malicious dropper pattern. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-BQClD0QQ.js | AI (source-diff): Main entry bundle chunk; imports are all internal monitor-* and dayjs — normal build output. | ai | |
| source-diff | obfuscated-file:span-details-cHd-wdpQ.js | AI (source-diff): Minified Vite bundle chunk with Vue/chart imports; normal build artifact. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-Bx22sg22.js | AI (source-diff): Minified mermaid sequence diagram parser; expected bundled output. | ai | |
| source-diff | net-exec-file:sequence-graph-BoZoKAHo.js | AI (source-diff): Network calls are monitor-api/apm_trace imports; dynamic code is standard JS — no dropper pattern. | ai | |
| source-diff | net-exec-file:monitor-trace-log-CDk4sxRH.js | AI (source-diff): Network calls are monitor-api module imports; no malicious dropper pattern. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-CDk4sxRH.js | AI (source-diff): Minified Vite bundle chunk; normal for this package's build output. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-ufC3cZHp.js | AI (source-diff): Minified Vite bundle chunk; normal for this package's build output. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-DS6uGhyZ.js | AI (source-diff): Main entry bundle with monitor-api, dayjs, Vue imports; legitimate APM trace library. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-DS6uGhyZ.js | AI (source-diff): Network calls are monitor-api module imports; legitimate UI bundle. | ai | |
| source-diff | obfuscated-file:span-details-cGS-ylbR.js | AI (source-diff): Minified Vite bundle chunk with chart/table components; legitimate UI bundle. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-Cj5YvJBQ.js | AI (source-diff): Minified mermaid sequence diagram parser; standard build output. | ai | |
| source-diff | net-exec-file:sequence-graph-ZGshM0rS.js | AI (source-diff): traceDiagram API import and mermaid sequence diagram rendering; legitimate UI bundle. | ai | |
| source-diff | net-exec-file:monitor-trace-log-DHobI_k2.js | AI (source-diff): Network calls are monitor-api module imports; legitimate UI bundle. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-DHobI_k2.js | AI (source-diff): Minified Vite bundle chunk; Vue/dayjs imports, no malicious patterns. | ai | |
| source-diff | net-exec-file:explore-trace-slider-C_EKxscJ.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity system. Legitimate UI bundle. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-C_EKxscJ.js | AI (source-diff): Minified Vite bundle chunk; Vue component code, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-SaPCPNwZ.js | AI (source-diff): Standard minified Vite/webpack bundle output for a Vue component library; not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-C8VMN2Za.js | AI (source-diff): Entry bundle for the library; imports are all from known internal monitor-* and dayjs packages. | ai | |
| source-diff | obfuscated-file:span-details-BJ3-9Bqc.js | AI (source-diff): Standard minified Vue component bundle with chart/table utilities; no malicious pattern. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-Ybd_vOnP.js | AI (source-diff): Mermaid sequence diagram parser bundled/minified; standard build artifact. | ai | |
| source-diff | net-exec-file:sequence-graph-DOTOAh0w.js | AI (source-diff): Imports traceDiagram from monitor-api; standard component bundle, not dropper. | ai | |
| source-diff | net-exec-file:monitor-trace-log-D1e1qwhn.js | AI (source-diff): Same pattern as other bundles; internal API calls only. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-C8VMN2Za.js | AI (source-diff): Internal monitor-api calls in a UI library entry point; consistent with legitimate APM monitoring library. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-D1e1qwhn.js | AI (source-diff): Standard minified bundle; imports are dayjs, Vue internals, and internal monitor-api — no malicious pattern. | ai | |
| source-diff | net-exec-file:explore-trace-slider-SaPCPNwZ.js | AI (source-diff): Network calls are to internal monitor-api modules; dynamic code is Vue reactivity runtime, not dropper behavior. | ai | |
| source-diff | net-exec-file:explore-trace-slider-DLQQsfew.js | AI (source-diff): Network calls are internal monitor-api imports; dynamic code execution is standard Vue reactivity runtime, not dropper behavior. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-e33eJt29.js | AI (source-diff): Network calls are internal BlueKing API module imports; no malicious execution pattern. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-e33eJt29.js | AI (source-diff): Entry bundle with monitor-api/monitor-pc/monitor-common imports; legitimate BlueKing monitoring library output. | ai | |
| source-diff | obfuscated-file:span-details-6zgUw1M2.js | AI (source-diff): Minified Vite bundle for span detail components; standard bundler output. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-DzMnYsbQ.js | AI (source-diff): Mermaid sequence diagram parser bundled output; long lines are parser tables, not obfuscation. | ai | |
| source-diff | net-exec-file:sequence-graph-BVfQM8j1.js | AI (source-diff): Imports from monitor-api/modules/apm_trace and internal utilities; standard bundled component library pattern. | ai | |
| source-diff | net-exec-file:monitor-trace-log-z2ek95j2.js | AI (source-diff): Network calls are monitor-api module imports; no exfiltration or dropper pattern present. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-z2ek95j2.js | AI (source-diff): Same pattern: minified Vite bundle with Vue/dayjs imports, not malicious obfuscation. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-DLQQsfew.js | AI (source-diff): Minified Vite bundle output for a Vue component library; long lines are normal bundler output, not obfuscation. | ai | |
| source-diff | obfuscated-file:monitor-trace-log-BHuORAaw.js | AI (source-diff): Minified Vite bundle; imports are from dayjs, monitor-api, and Vue — no malicious indicators. | ai | |
| source-diff | obfuscated-file:explore-trace-slider-BpqSdKdK.js | AI (source-diff): Standard Vite bundle output for a Vue component library; long lines are minified imports, not obfuscation. | ai | |
| source-diff | net-exec-file:trace-explore-apm-entry-hKQYP_-F.js | AI (source-diff): API calls are to internal monitor-api modules; standard Vue app bundle pattern. | ai | |
| source-diff | obfuscated-file:trace-explore-apm-entry-hKQYP_-F.js | AI (source-diff): Main entry bundle; imports are all from known internal monitor-* and dayjs packages. | ai | |
| source-diff | obfuscated-file:span-details-B4Idi7-b.js | AI (source-diff): Minified Vue component bundle with chart/table utilities; no malicious indicators. | ai | |
| source-diff | obfuscated-file:sequenceDiagram-ac5dcea9-Bh2d0k01.js | AI (source-diff): Mermaid sequence diagram parser bundled as minified output; not obfuscation. | ai | |
| source-diff | net-exec-file:sequence-graph-DLDEOovI.js | AI (source-diff): Imports traceDiagram from monitor-api; standard component bundle pattern. | ai | |
| source-diff | net-exec-file:monitor-trace-log-BHuORAaw.js | AI (source-diff): Same pattern as other bundles; API calls are to internal monitor-api modules. | ai | |
| source-diff | net-exec-file:explore-trace-slider-BpqSdKdK.js | AI (source-diff): Network calls are monitor-api module imports; dynamic execution is Vue reactivity runtime — normal for this package. | ai | |
| phantom-deps | phantom-dep:vue-tippy | AI (phantom-deps): vue-tippy is a peer/host dependency for a Vue component library; not directly imported in library code by design. | ai | |
| phantom-deps | phantom-dep:vue | AI (phantom-deps): vue is a peer/host dependency for a Vue component library; not directly imported in library code by design. | ai | |
| phantom-deps | phantom-dep:@blueking/tdesign-ui | AI (phantom-deps): Same-org scoped dependency; phantom-dep heuristic is unreliable for component libraries with config-only references. | ai | |
| phantom-deps | phantom-dep:bkui-vue | AI (phantom-deps): bkui-vue is a peer/host dependency for a Vue component library; not directly imported in library code by design. | ai |
Versions (showing 20 of 20)
| Version | Deps | Published |
|---|---|---|
| 0.0.20 | 5 / 0 | |
| 0.0.19 | 5 / 0 | |
| 0.0.18 | 5 / 0 | |
| 0.0.17 | 5 / 0 | |
| 0.0.16 | 5 / 0 | |
| 0.0.15 | 5 / 0 | |
| 0.0.14 | 5 / 0 | |
| 0.0.13 | 5 / 0 | |
| 0.0.12 | 5 / 0 | |
| 0.0.11 | 5 / 0 | |
| 0.0.10 | 5 / 0 | |
| 0.0.9 | 5 / 0 | |
| 0.0.8 | 5 / 0 | |
| 0.0.7 | 5 / 0 | |
| 0.0.6 | 5 / 0 | |
| 0.0.5 | 5 / 0 | |
| 0.0.4 | 5 / 0 | |
| 0.0.3 | 5 / 0 | |
| 0.0.2 | 5 / 0 | |
| 0.0.1 | 5 / 0 |
v0.0.20
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.19
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.18
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.17
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.16
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.15
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.14
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.13
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.12
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.11
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.10
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.9
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.8
2 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.7
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.6
11 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: blueking-magicbox.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.5
10 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.3
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.2
10 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.0.1
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.