@hoptrendy/web-dashboard
Standalone web dashboard for HopCode — session browser, chat viewer, cost tracking
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/client/assets/index-n1H5qkP6.js | AI (source-diff): Standard Vite/React minified bundle; long lines are expected build output, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-BkmvTSsa.js | AI (source-diff): Standard Vite/React minified bundle output; not obfuscated malware. Pattern is stable for this package. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-C7lw88kF.js | AI (source-diff): Standard Vite/React minified bundle output; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-vxRceqQ4.js | AI (source-diff): Standard Vite-minified React bundle; license headers and readable structure confirm legitimate build output. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-KEJC3EmX.js | AI (source-diff): Standard Vite/React minified bundle; long lines are minification artifacts, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-BDi2n53O.js | AI (source-diff): Standard Vite/React build output; minified bundle is expected for a web dashboard package. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-CA29dlCJ.js | AI (source-diff): Standard Vite/React minified bundle output; not obfuscated malware. Stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-D1HJnV0H.js | AI (source-diff): File is standard Vite-minified React bundle output (content-hashed filename, recognizable React JSX runtime code). Long lines are from minification, not obfuscation. Expected artifact for this web dashboard package. | ai | |
| source-diff | obfuscated-file:dist/client/assets/index-Cjcr-O56.js | AI (source-diff): File is standard Vite-minified React bundle output, not obfuscated malware. Contains recognizable React JSX runtime with Meta license headers. This pattern is expected for every build of this web dashboard package. | ai |
Versions (showing 51 of 62)
| Version | Deps | Published |
|---|---|---|
| 0.30.1 | 5 / 10 | |
| 0.30.0 | 5 / 10 | |
| 0.27.10 | 5 / 10 | |
| 0.27.9 | 5 / 10 | |
| 0.27.8 | 5 / 10 | |
| 0.27.7 | 5 / 10 | |
| 0.27.6 | 5 / 10 | |
| 0.27.5 | 5 / 10 | |
| 0.27.1 | 5 / 10 | |
| 0.27.0 | 5 / 10 | |
| 0.26.5 | 5 / 10 | |
| 0.26.4 | 5 / 10 | |
| 0.26.2 | 5 / 10 | |
| 0.26.0 | 5 / 10 | |
| 0.25.2 | 5 / 10 | |
| 0.25.1 | 5 / 10 | |
| 0.24.6 | 5 / 10 | |
| 0.24.5 | 5 / 10 | |
| 0.24.4 | 5 / 10 | |
| 0.24.2 | 5 / 10 | |
| 0.24.0 | 5 / 10 | |
| 0.23.0 | 5 / 10 | |
| 0.21.3 | 5 / 10 | |
| 0.21.2 | 5 / 10 | |
| 0.21.1 | 5 / 10 | |
| 0.21.0 | 5 / 10 | |
| 0.20.0 | 5 / 10 | |
| 0.19.9 | 5 / 10 | |
| 0.19.7 | 5 / 10 | |
| 0.19.6 | 5 / 10 | |
| 0.19.5 | 5 / 10 | |
| 0.19.4 | 5 / 10 | |
| 0.19.3 | 5 / 10 | |
| 0.19.2 | 5 / 10 | |
| 0.19.1 | 5 / 10 | |
| 0.19.0 | 5 / 10 | |
| 0.18.9 | 5 / 10 | |
| 0.18.8 | 5 / 10 | |
| 0.18.6 | 5 / 10 | |
| 0.18.5 | 5 / 10 | |
| 0.18.4 | 5 / 10 | |
| 0.18.3 | 5 / 10 | |
| 0.18.2 | 5 / 10 | |
| 0.18.1 | 5 / 10 | |
| 0.18.0 | 5 / 10 | |
| 0.17.13 | 5 / 10 | |
| 0.17.12 | 5 / 10 | |
| 0.17.11 | 5 / 10 | |
| 0.17.10 | 5 / 10 | |
| 0.17.9 | 5 / 10 | |
| 0.17.8 | 5 / 10 |
v0.30.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.30.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.10
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.8
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.7
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.6
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.5
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.27.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.26.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.26.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.26.2
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.26.0
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.25.2
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.25.1
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.24.6
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.24.5
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.24.4
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.24.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.24.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.23.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.21.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.21.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.20.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.7
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.6
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.19.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.8
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.6
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.18.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.17.13
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.17.12
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.17.11
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.17.10
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.17.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v0.17.8
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.