@cloudflare/kumo
Kumo - Cloudflare's component library for building modern web applications
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| provenance | missing-githead | AI (provenance): SLSA provenance attestation present; gitHead absence is superseded by Sigstore attestation for this package. | ai | |
| source-diff | obfuscated-file:dist/chunks/github-light-ulev8flhimfg79ob.js | AI (source-diff): Frozen JSON.parse of shiki GitHub Light theme color data; not malicious. | ai | |
| source-diff | obfuscated-file:dist/chunks/html-kl304jmqj4jxj777.js | AI (source-diff): Frozen JSON.parse of shiki HTML TextMate grammar; minified syntax definition. | ai | |
| source-diff | obfuscated-file:dist/chunks/javascript-hhx3avh9uv2o27ay.js | AI (source-diff): Frozen JSON.parse of shiki JavaScript TextMate grammar; minified syntax definition. | ai | |
| source-diff | obfuscated-file:dist/chunks/jsonc-jbkkgjer6ispw2u3.js | AI (source-diff): Frozen JSON.parse of shiki JSONC TextMate grammar; minified syntax definition. | ai | |
| source-diff | obfuscated-file:dist/chunks/jsx-ij885l2li2lzfoss.js | AI (source-diff): Frozen JSON.parse of shiki JSX TextMate grammar; minified syntax definition. | ai | |
| source-diff | obfuscated-file:dist/chunks/bash-g5z23u7me5rx7bzt.js | AI (source-diff): Frozen JSON.parse of shiki TextMate grammar data; minified syntax definition, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/chunks/cloudflare-logo-bgts2jgsdh7sslw4.js | AI (source-diff): Cloudflare SVG logo path data as inline constants; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/chunks/css-d1mi3wy1sl3fzekh.js | AI (source-diff): Frozen JSON.parse of shiki CSS TextMate grammar; minified syntax definition. | ai | |
| source-diff | obfuscated-file:dist/chunks/graphql-ft2h47erta7isqn4.js | AI (source-diff): Frozen JSON.parse of shiki GraphQL TextMate grammar; minified syntax definition. | ai | |
| source-diff | obfuscated-file:dist/chunks/hcl-hcu7d6ja6t540ijn.js | AI (source-diff): Frozen JSON.parse of shiki HCL TextMate grammar; minified syntax definition. | ai | |
| phantom-deps | phantom-dep:tailwind-merge | AI (phantom-deps): Listed as runtime dependency; used via config files rather than direct import. | ai | |
| phantom-deps | phantom-dep:@shikijs/themes | AI (phantom-deps): Listed as runtime dependency; used via config files rather than direct import. | ai | |
| phantom-deps | phantom-dep:@shikijs/langs | AI (phantom-deps): Listed as runtime dependency; used via config files rather than direct import. | ai | |
| semgrep | semgrep:new-function-constructor | AI (semgrep): Build-time variant parser operating on controlled source file content; not user-supplied input. | ai |
Versions (showing 19 of 19)
| Version | Deps | Published |
|---|---|---|
| 2.5.0 | 8 / 32 | |
| 2.4.1 | 8 / 32 | |
| 2.4.0 | 8 / 32 | |
| 2.3.1 | 8 / 32 | |
| 2.3.0 | 8 / 32 | |
| 2.2.2 | 8 / 32 | |
| 2.2.1 | 8 / 32 | |
| 2.2.0 | 8 / 32 | |
| 2.1.0 | 8 / 32 | |
| 2.0.5 | 8 / 32 | |
| 2.0.4 | 8 / 32 | |
| 2.0.3 | 8 / 32 | |
| 2.0.2 | 8 / 32 | |
| 2.0.1 | 8 / 32 | |
| 2.0.0 | 8 / 32 | |
| 1.19.0 | 8 / 32 | |
| 1.18.0 | 8 / 32 | |
| 1.17.0 | 8 / 32 | |
| 1.0.0 | 3 / 30 |
v2.5.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.4.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.4.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.3.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.3.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.2.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.2.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.2.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.1.0
2 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: GitHub Actions.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.0.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.0.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.0.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.0.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.0.1
2 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: GitHub Actions.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.0.0
2 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: GitHub Actions.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.18.0
13 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: GitHub Actions.
This version was published by a different npm account than previous versions on 2026-04-08. This could indicate a legitimate maintainer transition or an account compromise.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.17.0
13 findingsThis version has no gitHead field linking it to a source commit, but previous versions did. This suggests the publish environment changed. Published by: GitHub Actions.
This version was published by a different npm account than previous versions on 2026-04-03. This could indicate a legitimate maintainer transition or an account compromise.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.0.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.