@dathomir/plugin MPL-2.0 9 versions

@dathomir/plugin

npm Repository Homepage

dathomir plugin package

9

Versions

MPL-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

takuma-ru

Keywords

dathomirframeworkfrontendjavascripttypescript

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@babel/core	AI (phantom-deps): Babel packages are runtime deps used by convention in a build plugin context (unplugin-based); not directly imported but loaded via API. Stable pattern for this package.	ai	2026/04/25
phantom-deps	phantom-dep:@babel/preset-typescript	AI (phantom-deps): Babel preset loaded by convention in plugin/transform context; not a security concern for this package.	ai	2026/04/25
phantom-deps	phantom-dep:@babel/plugin-transform-react-jsx	AI (phantom-deps): Babel plugin loaded by convention in plugin/transform context; not a security concern for this package.	ai	2026/04/25

Versions (showing 9 of 9)

Version	Deps	Published
0.0.12	5 / 6	2026-04-22
0.0.11	5 / 6	2026-03-13
0.0.10	5 / 6	2026-03-04
0.0.9	5 / 6	2026-02-25
0.0.8	5 / 6	2026-02-25
0.0.7	5 / 6	2026-02-25
0.0.5	5 / 6	2026-02-24
0.0.4	5 / 6	2026-02-24
0.0.3	5 / 6	2026-02-24

v0.0.12

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.11

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.10

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.9

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.8

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.7

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.5

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.0.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.