← Home

@everymatrix/casino-challenges-player-history

npm
51
Versions
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

clokzeoleksandr.v.stepanovtaras.maksymivnatalya.anisimovaemfe_releasemariana.gheorgheadrian.priponandriizadvirnyiraulvasileemstrulea.sebastianstefan.vladgoe.sutadragos.bodeamaria.bumbarstefanaotong.woodtikarncatalinpoclidliviuclement.everymatrixmihaibalanfrankie24

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-6b3eef26.js AI (source-diff): CJS build output matching ESM counterpart; standard minification. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-4eb420df.js AI (source-diff): ESM build output with full readable source; no malicious patterns. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-4eb420df.js AI (source-diff): Standard Stencil/Rollup minified bundle; readable ESM counterpart confirms benign widget code. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-0b72d1de.js AI (source-diff): Standard minified Stencil bundle output; consistent with this package's established build pattern. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-dd714e91.js AI (source-diff): Standard minified Stencil bundle output; consistent with this package's established build pattern. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js AI (source-diff): Standard minified Stencil bundle output; consistent with this package's established build pattern. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-2beb1518.js AI (source-diff): Standard Stencil.js ESM minified bundle; no malicious patterns in sampled code. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-c2b8b466.js AI (source-diff): Standard Stencil.js CJS minified bundle; no malicious patterns in sampled code. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-2beb1518.js AI (source-diff): Standard Stencil.js minified bundle output; consistent with this package's established build pattern. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-f04fd681.js AI (source-diff): Standard Stencil minified build output; no obfuscation or malicious payload. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-f04fd681.js AI (source-diff): Standard Stencil minified build output; no obfuscation or malicious payload. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-b731ef11.js AI (source-diff): Standard Stencil minified build output; no obfuscation or malicious payload. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-eef54e8f.js AI (source-diff): Standard Rollup/Stencil minified bundle for this widget; not obfuscated malware. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-15f8b817.js AI (source-diff): Standard Rollup/Stencil minified bundle for this widget; not obfuscated malware. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-eef54e8f.js AI (source-diff): Standard Rollup/Stencil minified bundle for this widget; not obfuscated malware. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-13840096.js AI (source-diff): Standard Rollup/Stencil minified bundle for a UI widget; no malicious payload in sampled code. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-99f318ba.js AI (source-diff): Standard Rollup/Stencil minified bundle for a UI widget; no malicious payload in sampled code. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-99f318ba.js AI (source-diff): Standard Rollup/Stencil minified bundle for a UI widget; no malicious payload in sampled code. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-25320a8a.js AI (source-diff): Standard Rollup/Stencil minified bundle for this widget; consistent with all other @everymatrix packages. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/index-2238a5a2.js AI (source-diff): Stencil runtime bundle; minified but not obfuscated, standard for this package family. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-72319c4f.js AI (source-diff): CJS build output; same pattern as other @everymatrix widget bundles. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-25320a8a.js AI (source-diff): ESM build output with full JSDoc comments; not obfuscated, just minified. ai
source-diff obfuscated-file:dist/esm/casino-challenges-player-history-63f25fa4.js AI (source-diff): Standard Stencil.js minified bundle; ESM sample confirms readable source with JSDoc comments, not obfuscation. ai
source-diff obfuscated-file:dist/cjs/casino-challenges-player-history-fd7918e9.js AI (source-diff): Standard Stencil.js CJS minified bundle; sample confirms readable source with JSDoc comments, not obfuscation. ai
source-diff obfuscated-file:dist/casino-challenges-player-history/casino-challenges-player-history-63f25fa4.js AI (source-diff): Standard Stencil.js minified bundle; ESM sample confirms readable source with JSDoc comments, not obfuscation. ai
bogus-package bogus-package AI (bogus-package): Established @everymatrix scoped component library with 228 versions; sparse metadata is typical for internal widget packages. ai
provenance no-provenance AI (provenance): Published via JFrog Artifactory; provenance attestation not expected for internal registry workflows. ai
npm-metadata no-description AI (npm-metadata): Corporate internal package; missing description is consistent across the entire @everymatrix package family. ai

Versions (showing 51 of 135)

View all versions
Version Deps Published
0.17.29 0 / 0
0.17.28 0 / 0
0.17.27 0 / 0
0.17.26 0 / 0
0.17.25 0 / 0
0.17.24 0 / 0
0.17.23 0 / 0
0.17.22 0 / 0
0.17.21 0 / 0
0.17.20 0 / 0
0.17.19 0 / 0
0.17.18 0 / 0
0.17.17 0 / 0
0.17.16 0 / 0
0.17.15 0 / 0
0.17.9 0 / 0
0.17.8 0 / 0
0.17.7 0 / 0
0.17.6 0 / 0
0.17.5 0 / 0
0.17.4 0 / 0
0.17.3 0 / 0
0.17.2 0 / 0
0.17.1 0 / 0
0.17.0 0 / 0
0.16.15 0 / 0
0.16.14 0 / 0
0.16.13 0 / 0
0.16.12 0 / 0
0.16.11 0 / 0
0.16.10 0 / 0
0.16.9 0 / 0
0.16.8 0 / 0
0.16.7 0 / 0
0.16.6 0 / 0
0.16.5 0 / 0
0.16.4 0 / 0
0.16.3 0 / 0
0.16.2 0 / 0
0.16.1 0 / 0
0.16.0 0 / 0
0.15.8 0 / 0
0.15.7 0 / 0
0.15.6 0 / 0
0.15.5 0 / 0
0.15.4 0 / 0
0.15.3 0 / 0
0.15.2 0 / 0
0.15.1 0 / 0
0.15.0 0 / 0
0.14.2 0 / 0

v0.17.29

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.28

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.27

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.26

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.25

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.24

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.23

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.22

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.21

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.20

5 findings
HIGH New obfuscated file: dist/cjs/casino-challenges-player-history-0b72d1de.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

INFO Publisher changed: adrian.pripon → goe.suta (on 2026-05-29, known maintainer) provenance

This version was published by a different npm account (goe.suta) than the most recent previously approved version (adrian.pripon) on 2026-05-29, but goe.suta is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.17.19

5 findings
HIGH New obfuscated file: dist/cjs/casino-challenges-player-history-0b72d1de.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

INFO Publisher changed: adrian.pripon → goe.suta (on 2026-05-28, known maintainer) provenance

This version was published by a different npm account (goe.suta) than the most recent previously approved version (adrian.pripon) on 2026-05-28, but goe.suta is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.17.18

5 findings
HIGH New obfuscated file: dist/cjs/casino-challenges-player-history-0b72d1de.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

INFO Publisher changed: adrian.pripon → goe.suta (on 2026-05-28, known maintainer) provenance

This version was published by a different npm account (goe.suta) than the most recent previously approved version (adrian.pripon) on 2026-05-28, but goe.suta is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.17.17

5 findings
HIGH New obfuscated file: dist/cjs/casino-challenges-player-history-0b72d1de.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

INFO Publisher changed: adrian.pripon → goe.suta (on 2026-05-27, known maintainer) provenance

This version was published by a different npm account (goe.suta) than the most recent previously approved version (adrian.pripon) on 2026-05-27, but goe.suta is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.17.16

5 findings
HIGH New obfuscated file: dist/cjs/casino-challenges-player-history-0b72d1de.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

INFO Publisher changed: adrian.pripon → goe.suta (on 2026-05-26, known maintainer) provenance

This version was published by a different npm account (goe.suta) than the most recent previously approved version (adrian.pripon) on 2026-05-26, but goe.suta is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.17.15

5 findings
HIGH New obfuscated file: dist/cjs/casino-challenges-player-history-0b72d1de.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/casino-challenges-player-history/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/esm/casino-challenges-player-history-dd714e91.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

INFO Publisher changed: adrian.pripon → goe.suta (on 2026-05-26, known maintainer) provenance

This version was published by a different npm account (goe.suta) than the most recent previously approved version (adrian.pripon) on 2026-05-26, but goe.suta is listed as a maintainer on prior approved versions (matched on name). This looks like a manual publish by a known maintainer rather than a publisher change. Recorded as INFO for audit trail.

v0.17.9

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.8

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.7

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.6

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.5

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.4

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.3

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.2

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.1

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.17.0

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.15

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.14

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.13

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.12

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.11

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.10

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.9

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.8

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.7

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.6

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.5

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.2

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.1

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.16.0

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.8

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.7

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.6

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.5

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.4

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.3

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.2

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.1

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.15.0

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.14.2

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.