@nocobase/app
<video width="100%" controls> <source src="https://github.com/user-attachments/assets/4d11a87b-00e2-48f3-9bf7-389d21072d13" type="video/mp4"> </video>
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/client/p__index.1ee3fe49.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.ad8fa1a5.js | AI (source-diff): Network calls in UMI runtime bundle are expected SPA behavior; no dropper/loader indicators. | ai | |
| source-diff | obfuscated-file:dist/client/umi.ad8fa1a5.js | AI (source-diff): Standard UMI framework minified bundle; color palette and UI library code, not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.1ee3fe49.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a webpack SPA bundle; no malicious payload. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.05d44aa3.async.js | AI (source-diff): Nocobase app entry webpack bundle; minified but readable legitimate app code. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5de1583d.js | AI (source-diff): Standard umi framework bundle; minified Ant Design color utilities visible in sample. | ai | |
| source-diff | net-exec-file:dist/client/umi.5de1583d.js | AI (source-diff): Umi framework bundle with webpack module loader; legitimate SPA runtime. | ai | |
| source-diff | net-exec-file:dist/client/p__index.05d44aa3.async.js | AI (source-diff): API client setup and plugin loader in app bundle; expected pattern for this SPA framework. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.d7675732.async.js | AI (source-diff): Standard webpack-bundled client app entry; minification is expected for this frontend package. | ai | |
| source-diff | net-exec-file:dist/client/umi.193327e5.js | AI (source-diff): UMI runtime bundle; network+dynamic-import pattern is inherent to the framework. | ai | |
| source-diff | obfuscated-file:dist/client/umi.193327e5.js | AI (source-diff): UMI framework bundle; minified color-palette/UI code, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.d7675732.async.js | AI (source-diff): Network calls and dynamic imports are normal for a SPA app bundle; no malicious payload visible. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2d564012.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a React SPA bundle; no malicious payload visible. | ai | |
| source-diff | net-exec-file:dist/client/umi.128a2813.js | AI (source-diff): Network + dynamic execution in UMI runtime bundle is expected SPA behavior. | ai | |
| source-diff | obfuscated-file:dist/client/umi.128a2813.js | AI (source-diff): UMI framework bundle with Ant Design color utilities; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2d564012.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.82a66e14.js | AI (source-diff): UmiJS framework bundle; false positive for minified client code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.36236a86.async.js | AI (source-diff): Webpack-bundled page chunk; false positive for minified client app code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.d2920ce5.async.js | AI (source-diff): App entry chunk; API client setup is legitimate app behavior, not dropper malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.c67775a2.js | AI (source-diff): Umi framework chunk; false positive on webpack dynamic module loading pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.c67775a2.js | AI (source-diff): Umi framework bundle (antd color palette visible); standard minified build artifact. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.d2920ce5.async.js | AI (source-diff): NocoBase app entry point, webpack-minified; expected build artifact. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.6adf828a.async.js | AI (source-diff): Standard webpack-minified nocobase app entry; expected build artifact. | ai | |
| source-diff | net-exec-file:dist/client/umi.cce00dcd.js | AI (source-diff): Webpack bundle with antd/umi code; not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.cce00dcd.js | AI (source-diff): Standard webpack-minified umi framework bundle; expected build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.6adf828a.async.js | AI (source-diff): Webpack bundle with API client setup; not dropper malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.f9feeeff.async.js | AI (source-diff): App bootstrap makes API calls as expected; no dropper/loader pattern present. | ai | |
| source-diff | net-exec-file:dist/client/umi.5117b86a.js | AI (source-diff): Minified umi framework bundle; no actual dropper pattern, just webpack module system. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5117b86a.js | AI (source-diff): Webpack-minified umi/antd bundle; standard build output for this frontend package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.f9feeeff.async.js | AI (source-diff): Webpack-minified nocobase app entry; standard build output with recognizable app bootstrap code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.7b359002.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a webpack SPA bundle; no malicious payload evident. | ai | |
| source-diff | net-exec-file:dist/client/umi.fa368f58.js | AI (source-diff): Network calls and dynamic module loading are normal for a UMI/webpack SPA bundle; no malicious payload evident. | ai | |
| source-diff | obfuscated-file:dist/client/umi.fa368f58.js | AI (source-diff): UMI framework bundle with Ant Design color utilities; minification is expected in dist output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.7b359002.async.js | AI (source-diff): Standard webpack-bundled frontend asset for NocoBase app; minification is expected in dist output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.f72f77a1.async.js | AI (source-diff): Network calls and dynamic imports are expected in a SPA webpack bundle; no malicious payload in sample. | ai | |
| source-diff | net-exec-file:dist/client/umi.92946f90.js | AI (source-diff): Network calls in UMI framework bundle are expected SPA behavior; no malicious payload in sample. | ai | |
| source-diff | obfuscated-file:dist/client/umi.92946f90.js | AI (source-diff): Standard UMI framework minified bundle; content shows Ant Design color utilities, not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.f72f77a1.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend; content matches expected app initialization code. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.72e4bcb5.async.js | AI (source-diff): Minified NocoBase app entry point; readable structure, no obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.48c7e957.js | AI (source-diff): Webpack runtime bundle; dynamic require() is standard module loading, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.48c7e957.js | AI (source-diff): Standard umi/antd design-token bundle; minified but not obfuscated. | ai | |
| source-diff | net-exec-file:dist/client/p__index.72e4bcb5.async.js | AI (source-diff): App bootstrap code using axios interceptors; expected for a frontend app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.643e6e09.js | AI (source-diff): Standard webpack-minified UmiJS framework bundle; stable pattern for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.643e6e09.js | AI (source-diff): UmiJS framework bundle with dynamic require(); no malicious network+exec pattern. | ai | |
| source-diff | net-exec-file:dist/client/p__index.cce613ff.async.js | AI (source-diff): Webpack bundle; API client calls are expected app behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.cce613ff.async.js | AI (source-diff): Standard webpack-minified NocoBase app entry point; stable pattern for this package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.45b73311.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.45b73311.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a frontend SPA bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.85707054.js | AI (source-diff): Standard UMI/webpack minified bundle; Ant Design color utilities visible in sample. | ai | |
| source-diff | net-exec-file:dist/client/umi.85707054.js | AI (source-diff): Network calls in UMI framework bundle are expected SPA behavior, not dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.b16725d2.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.d1997bf2.js | AI (source-diff): Browser framework bundle; network+exec pattern is normal for a SPA runtime. | ai | |
| source-diff | obfuscated-file:dist/client/umi.d1997bf2.js | AI (source-diff): Standard webpack-minified UMI framework bundle; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.b16725d2.async.js | AI (source-diff): Browser app bundle with API client calls; network+exec pattern is normal for a SPA framework. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2cef202d.async.js | AI (source-diff): Webpack bundle with API client calls; expected pattern for a frontend app package. | ai | |
| source-diff | net-exec-file:dist/client/umi.5295b683.js | AI (source-diff): UMI framework bundle; network calls are standard frontend HTTP client patterns. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5295b683.js | AI (source-diff): UMI framework minified bundle; Ant Design color utilities visible in sample — not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2cef202d.async.js | AI (source-diff): Standard webpack minified client bundle for NocoBase frontend; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.f10310e5.async.js | AI (source-diff): axios interceptors and websocket setup are normal app networking; no dropper pattern. | ai | |
| source-diff | net-exec-file:dist/client/umi.d64acd97.js | AI (source-diff): Webpack dynamic imports in umi bundle; no actual network+exec dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.d64acd97.js | AI (source-diff): Standard webpack-minified antd/umi bundle; color palette generation code is recognizable. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.f10310e5.async.js | AI (source-diff): Standard webpack-minified nocobase app entry; code is readable nocobase Application bootstrap. | ai | |
| source-diff | net-exec-file:dist/client/p__index.fcb44564.async.js | AI (source-diff): App bootstrap code using axios interceptors; expected for a web app framework. | ai | |
| source-diff | net-exec-file:dist/client/umi.671d747b.js | AI (source-diff): UmiJS runtime bundle; webpack module loader pattern, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.671d747b.js | AI (source-diff): Minified UmiJS framework bundle; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.fcb44564.async.js | AI (source-diff): Minified NocoBase app entry point; standard build output. | ai | |
| source-diff | obfuscated-file:dist/client/umi.59dace06.js | AI (source-diff): Standard umi framework minified bundle; color palette code visible in sample confirms legitimate content. | ai | |
| source-diff | net-exec-file:dist/client/umi.59dace06.js | AI (source-diff): Umi framework bundle with standard HTTP client usage; no malicious patterns in sample. | ai | |
| source-diff | net-exec-file:dist/client/p__index.607c539d.async.js | AI (source-diff): Webpack chunk with axios API calls and dynamic imports; normal SPA pattern for NocoBase. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.607c539d.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.d5a03695.async.js | AI (source-diff): Webpack-bundled nocobase app entry point; minification is expected for this build. | ai | |
| source-diff | net-exec-file:dist/client/umi.5d2baca2.js | AI (source-diff): Umi framework bundle with module loader; no malicious network/exec pattern present. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5d2baca2.js | AI (source-diff): Standard webpack-minified umi framework bundle; expected output for this build pipeline. | ai | |
| source-diff | net-exec-file:dist/client/p__index.d5a03695.async.js | AI (source-diff): App entry makes API calls to its own backend; no exfiltration or dropper behavior visible. | ai | |
| source-diff | obfuscated-file:dist/client/umi.40a24185.js | AI (source-diff): UMI framework bundle; minified but not obfuscated, standard build artifact. | ai | |
| source-diff | net-exec-file:dist/client/umi.40a24185.js | AI (source-diff): Network + dynamic execution in UMI runtime bundle is expected framework behavior. | ai | |
| source-diff | net-exec-file:dist/client/p__index.0cca9e6b.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a frontend SPA bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.0cca9e6b.async.js | AI (source-diff): Standard webpack-minified client bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2b9b1c13.async.js | AI (source-diff): Network calls and dynamic imports are normal browser app behavior in this webpack bundle. | ai | |
| source-diff | net-exec-file:dist/client/umi.33b14b6c.js | AI (source-diff): Network calls in UMI framework bundle are expected frontend behavior, not dropper malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2b9b1c13.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.33b14b6c.js | AI (source-diff): UMI framework minified bundle; Ant Design color palette code visible in sample — not malicious. | ai | |
| source-diff | obfuscated-file:dist/client/umi.982e53e7.js | AI (source-diff): Umi framework bundle with Ant Design color utilities; standard minified frontend build output. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.367a558e.async.js | AI (source-diff): Webpack-bundled NocoBase app entry; minified but clearly legitimate application code. | ai | |
| source-diff | net-exec-file:dist/client/umi.982e53e7.js | AI (source-diff): Umi framework chunk; webpack module loader pattern, not dropper malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.367a558e.async.js | AI (source-diff): NocoBase Application bootstrap with API client config; standard SPA pattern. | ai | |
| source-diff | net-exec-file:dist/client/umi.07f6e313.js | AI (source-diff): Same UMI bundle; network+exec pattern is webpack module federation, not malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.fb92dd24.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a webpack SPA bundle; no dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/client/umi.07f6e313.js | AI (source-diff): UMI framework bundle; minified but clearly legitimate Ant Design/color palette code. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.fb92dd24.async.js | AI (source-diff): Standard webpack minified client bundle for NocoBase frontend; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.9afe2296.js | AI (source-diff): Standard UMI framework minified bundle; not obfuscated malware. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.fd508f37.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.fd508f37.async.js | AI (source-diff): Network calls and dynamic module loading are normal webpack chunk patterns in a frontend SPA bundle. | ai | |
| source-diff | net-exec-file:dist/client/umi.9afe2296.js | AI (source-diff): Network calls and dynamic execution are normal UMI/webpack runtime patterns in a frontend bundle. | ai | |
| source-diff | net-exec-file:dist/client/p__index.25f15299.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a webpack-bundled SPA; no malicious payload present. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.25f15299.async.js | AI (source-diff): Standard webpack bundle for NocoBase frontend; minification is expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.c4d4cdeb.js | AI (source-diff): Network calls in UMI bundle are standard SPA behavior; no malicious payload present. | ai | |
| source-diff | obfuscated-file:dist/client/umi.c4d4cdeb.js | AI (source-diff): UMI framework bundle; minification is expected for this package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.8ead710c.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app; consistent with prior releases. | ai | |
| source-diff | net-exec-file:dist/client/p__index.8ead710c.async.js | AI (source-diff): Network calls and dynamic module loading are expected in a webpack SPA bundle; no malicious payload. | ai | |
| source-diff | obfuscated-file:dist/client/umi.13be04e2.js | AI (source-diff): Standard webpack/umi-bundled frontend asset; Ant Design color utilities visible in sample. | ai | |
| source-diff | net-exec-file:dist/client/umi.13be04e2.js | AI (source-diff): Same webpack bundle pattern; no dropper/loader indicators in sampled code. | ai | |
| source-diff | obfuscated-file:dist/client/umi.9b9af60a.js | AI (source-diff): Standard webpack/umi minified bundle; sample shows Ant Design palette utilities, not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.9b9af60a.js | AI (source-diff): Same bundle; network+dynamic-exec pattern is expected for a frontend framework bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.c85887ca.async.js | AI (source-diff): Standard webpack minified frontend bundle for NocoBase app; not obfuscated malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.c85887ca.async.js | AI (source-diff): Network calls and dynamic module loading are normal for a frontend SPA bundle; no malicious payload. | ai | |
| source-diff | net-exec-file:dist/client/p__index.3d3b2e00.async.js | AI (source-diff): Webpack module system + axios API client in a SPA bundle. Network calls are to the NocoBase API; dynamic execution is webpack's require() mechanism. Not malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.5efc66dc.js | AI (source-diff): Same pattern as p__index bundle — webpack module loading + UI library network calls. Consistent with legitimate NocoBase frontend build artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5efc66dc.js | AI (source-diff): Standard UMI framework + Ant Design bundle. Minified long lines are expected for this frontend framework build. Content is identifiable as @ant-design/colors and related UI utilities. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.3d3b2e00.async.js | AI (source-diff): Standard webpack minified bundle for NocoBase frontend app entry point. Long lines are minification artifacts, not obfuscation. Expected for this package's client build output. | ai | |
| source-diff | net-exec-file:dist/client/p__index.b6bde6bf.async.js | AI (source-diff): Network calls + dynamic imports are normal for a web application framework bundle. Content shows legitimate NocoBase API client and plugin loading, not dropper/loader malware. | ai | |
| source-diff | net-exec-file:dist/client/umi.bfe60a28.js | AI (source-diff): Network + dynamic execution pattern is inherent to UMI framework bundles. Content is legitimate frontend framework code, not malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.bfe60a28.js | AI (source-diff): Standard UMI framework minified bundle. Content shows Ant Design color palette utilities and standard webpack module patterns, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.b6bde6bf.async.js | AI (source-diff): Standard webpack/UMI minified frontend bundle for NocoBase app. Content is readable legitimate application code, not obfuscation. Hash-named chunks are expected for this build system. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.521df76e.async.js | AI (source-diff): Standard webpack/UMI minified client bundle for NocoBase app. Code samples confirm legitimate application bootstrap code, not obfuscation for malicious purposes. | ai | |
| source-diff | net-exec-file:dist/client/umi.a07c97f2.js | AI (source-diff): Webpack module system in a client bundle; network calls are standard browser API requests, not malicious code execution. | ai | |
| source-diff | obfuscated-file:dist/client/umi.a07c97f2.js | AI (source-diff): Standard UMI framework bundle containing Ant Design color utilities. Minified variable names are terser output, not intentional obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.521df76e.async.js | AI (source-diff): Webpack module loading pattern (self.webpackChunk*) combined with API client setup is standard SPA behavior, not dropper/loader malware. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Version diff compares 1.x branch against 2.x branch; large file count difference is expected across major version branches for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.701dd645.js | AI (source-diff): UmiJS framework bundle; net+exec pattern is webpack/umi runtime module loading, not malicious. | ai | |
| source-diff | net-exec-file:dist/client/p__index.458bc91e.async.js | AI (source-diff): Webpack page chunk; net+exec pattern is webpack module loading, not a dropper. Expected in nocobase frontend build. | ai | |
| source-diff | net-exec-file:dist/client/npm.lodash.9096a2d1.async.js | AI (source-diff): Webpack chunk of lodash; net+exec pattern is webpack's __webpack_require__ dynamic loading, not malware. | ai | |
| source-diff | net-exec-file:dist/client/8908.00634f36.async.js | AI (source-diff): Webpack module loader pattern triggers net+exec heuristic; no malicious URLs or payloads in samples. Expected for a frontend app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/8908.00634f36.async.js | AI (source-diff): Standard webpack-bundled client chunk for nocobase frontend; minified not obfuscated, content is legitimate color/UI library code. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2c31343b.async.js | AI (source-diff): Standard webpack bundle for NocoBase frontend app; minification is expected for this build artifact, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.48fe736f.js | AI (source-diff): Network calls and dynamic module loading are standard UMI/webpack patterns; no dropper behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/umi.48fe736f.js | AI (source-diff): UMI framework bundle with Ant Design color palette code; minification is expected for this build artifact. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2c31343b.async.js | AI (source-diff): Network calls are legitimate API client setup; dynamic code is webpack module system, not dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/umi.5bbca703.js | AI (source-diff): UMI framework bundle for a frontend SPA; network and dynamic import capabilities are expected in any modern frontend framework bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5bbca703.js | AI (source-diff): UMI framework + Ant Design bundle. Sample shows color palette generation code; minification causes long lines, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/p__index.3900cec6.async.js | AI (source-diff): NocoBase frontend legitimately uses axios for API calls and dynamic plugin loading. These are core platform features, not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.3900cec6.async.js | AI (source-diff): NocoBase app bootstrap code bundled by UMI/webpack. Long lines are minification artifacts; code is clearly NocoBase plugin/router/API client initialization. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.b2b83db2.async.js | AI (source-diff): NocoBase app entry point bundled by webpack/UmiJS. Sample confirms legitimate application bootstrap code. | ai | |
| source-diff | net-exec-file:dist/client/umi.7173f8d9.js | AI (source-diff): UmiJS/Ant Design browser bundle. Network calls and dynamic imports are expected in any SPA framework bundle. | ai | |
| source-diff | obfuscated-file:dist/client/umi.7173f8d9.js | AI (source-diff): UmiJS framework bundle with Ant Design. Standard minified output for NocoBase's frontend stack. | ai | |
| source-diff | net-exec-file:dist/client/p__index.b2b83db2.async.js | AI (source-diff): Browser SPA bundle with API client and WebSocket setup. Expected for NocoBase frontend; not a dropper. | ai | |
| source-diff | net-exec-file:dist/client/umi.a8e9e68a.js | AI (source-diff): UmiJS framework bundle naturally contains network and dynamic module loading. Standard client-side framework behavior. | ai | |
| source-diff | obfuscated-file:dist/client/umi.a8e9e68a.js | AI (source-diff): Standard webpack-minified UmiJS framework bundle with Ant Design UI code. Long lines are expected minification output. | ai | |
| source-diff | net-exec-file:dist/client/npm.lodash.0332f651.async.js | AI (source-diff): Webpack bundle naturally contains network calls and dynamic require(). This is standard client-side app behavior, not dropper/loader malware. | ai | |
| source-diff | net-exec-file:dist/client/p__index.6b0991c3.async.js | AI (source-diff): Network calls are legitimate API client setup (axios interceptors). Dynamic execution is webpack module system. Standard React/UmiJS app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.6b0991c3.async.js | AI (source-diff): Standard webpack-minified NocoBase app entry point. Long lines are expected minification output, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/npm.lodash.0332f651.async.js | AI (source-diff): Standard webpack-minified lodash bundle. Long lines are expected in webpack output; not obfuscation. Stable false positive for this client-side web app package. | ai | |
| source-diff | obfuscated-file:dist/client/umi.a6718cce.js | AI (source-diff): Standard UmiJS framework bundle with Ant Design color utilities. Minified but not obfuscated — well-known open-source framework output. | ai | |
| source-diff | net-exec-file:dist/client/umi.a6718cce.js | AI (source-diff): UmiJS framework bundle; network + dynamic module patterns are standard for this frontend framework. Not malicious. | ai | |
| source-diff | net-exec-file:dist/client/p__index.2b4ab8e6.async.js | AI (source-diff): Network calls (axios API client) and dynamic module loading (webpack require) are normal for a NocoBase frontend SPA bundle. Not dropper/loader behavior. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.2b4ab8e6.async.js | AI (source-diff): Standard webpack/UmiJS minified frontend bundle for NocoBase SPA. Not obfuscated — readable variable names and recognizable patterns. Expected artifact for this package. | ai | |
| source-diff | net-exec-file:dist/client/npm.lodash.e5baa144.async.js | AI (source-diff): Webpack module system + lodash utilities trigger net+exec heuristic; no actual dropper behavior. Stable false positive for this package's client build artifacts. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.88c08264.async.js | AI (source-diff): Standard UMI-built NocoBase client entrypoint; minified webpack output with long lines is expected. Content is clearly NocoBase Application bootstrap code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.88c08264.async.js | AI (source-diff): Axios interceptors and webpack dynamic imports trigger this rule; no malicious network+exec pattern. Standard SPA bootstrap behavior for this package. | ai | |
| source-diff | obfuscated-file:dist/client/umi.1cb7b3d8.js | AI (source-diff): UMI framework bundle with Ant Design color utilities; minified webpack output. Stable false positive for this package's frontend build pipeline. | ai | |
| source-diff | net-exec-file:dist/client/umi.1cb7b3d8.js | AI (source-diff): UMI framework bundle triggers net+exec heuristic via webpack module system; no actual dropper behavior. Stable false positive for this package. | ai | |
| source-diff | obfuscated-file:dist/client/npm.lodash.e5baa144.async.js | AI (source-diff): Standard webpack-minified lodash bundle; long lines are expected minification output, not obfuscation. Pattern is stable for this package's UMI build pipeline. | ai | |
| source-diff | obfuscated-file:dist/client/umi.e1a4ce37.js | AI (source-diff): Standard UMI framework bundle (Ant Design color utilities, etc.). Minified output is expected; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.e35a9de1.async.js | AI (source-diff): Standard webpack/UMI minified frontend bundle for NocoBase SPA. Content-hashed filenames are expected build artifacts; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.e1a4ce37.js | AI (source-diff): Webpack module system in UMI bundle triggers false positive. No malicious network+exec pattern present. | ai | |
| source-diff | net-exec-file:dist/client/p__index.e35a9de1.async.js | AI (source-diff): Webpack module loading and API client config in a SPA bundle triggers this rule as false positive. No actual dropper/loader behavior present. | ai | |
| source-diff | obfuscated-file:dist/client/umi.d139f85e.js | AI (source-diff): Standard UmiJS/Ant Design bundled output. Contains Ant Design color palette code — well-known library, minification is expected. | ai | |
| provenance | no-provenance | AI (provenance): NocoBase does not use Sigstore provenance attestation; consistent across all prior approved versions of this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.d139f85e.js | AI (source-diff): Network calls and dynamic execution in UmiJS bundle are standard frontend framework patterns, not malicious dropper behavior. | ai | |
| source-diff | net-exec-file:dist/client/p__index.91052636.async.js | AI (source-diff): Network calls are legitimate API client setup (axios interceptors to /api/). Dynamic module loading is standard webpack chunk loading. No malicious patterns. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.91052636.async.js | AI (source-diff): Standard webpack/UmiJS frontend bundle for NocoBase app. Minification is expected for production frontend builds of this open-source no-code platform. | ai | |
| bogus-package | bogus-package | AI (bogus-package): @nocobase/app is a monorepo sub-package; sparse README linking to main project docs and no keywords are standard for this pattern, not spam indicators. | ai | |
| source-diff | obfuscated-file:dist/client/umi.fda11463.js | AI (source-diff): Standard UmiJS framework bundle with Ant Design components. Minified for production delivery. Benign and expected for this package. | ai | |
| source-diff | net-exec-file:dist/client/umi.fda11463.js | AI (source-diff): UmiJS framework bundle; network/exec pattern is standard SPA framework behavior. No malicious indicators. Stable false positive for this package. | ai | |
| source-diff | net-exec-file:dist/client/p__index.61b819d7.async.js | AI (source-diff): Network calls are NocoBase's own API client (axios) and WebSocket setup; dynamic execution is UmiJS plugin loading. No malicious payload. Stable false positive for this frontend app bundle. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.61b819d7.async.js | AI (source-diff): Standard webpack-minified frontend bundle for NocoBase app. Long lines are expected minification artifacts, not obfuscation. Pattern is stable for this package. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.9c6acad0.async.js | AI (source-diff): Standard webpack-minified NocoBase client bundle. Long lines are minification artifacts, not obfuscation. Expected pattern for this frontend application package. | ai | |
| source-diff | net-exec-file:dist/client/umi.af20f784.js | AI (source-diff): Network + dynamic execution pattern is inherent to the UmiJS framework bundle. No malicious indicators in the sample. | ai | |
| source-diff | obfuscated-file:dist/client/umi.af20f784.js | AI (source-diff): Standard UmiJS/Ant Design framework bundle. Contains color palette utilities and UI components. Minified, not obfuscated maliciously. | ai | |
| source-diff | net-exec-file:dist/client/p__index.9c6acad0.async.js | AI (source-diff): Network calls and dynamic imports are inherent to the NocoBase SPA client bundle. No malicious payload; code reads from window globals for API configuration. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.3191fd65.async.js | AI (source-diff): Standard UmiJS/webpack minified build artifact for NocoBase frontend. Long lines are minification, not obfuscation. Content is clearly legitimate app initialization code. | ai | |
| source-diff | net-exec-file:dist/client/umi.525ffe98.js | AI (source-diff): Network calls and dynamic module loading are standard UmiJS/webpack SPA runtime behavior, not malicious dropper patterns. | ai | |
| source-diff | obfuscated-file:dist/client/umi.525ffe98.js | AI (source-diff): Standard UmiJS runtime bundle — minified, not obfuscated. Content shows Ant Design color palette and UI framework code. | ai | |
| source-diff | net-exec-file:dist/client/p__index.3191fd65.async.js | AI (source-diff): Network calls are axios API client requests; code execution is webpack module system. Normal frontend SPA behavior, not dropper/loader malware. | ai | |
| source-diff | obfuscated-file:dist/client/umi.5e3a7209.js | AI (source-diff): Standard UmiJS framework bundle — minified UI library code (Ant Design color utilities, etc.). Long lines are expected minification artifacts. | ai | |
| source-diff | net-exec-file:dist/client/p__index.5b735c52.async.js | AI (source-diff): Frontend SPA bundle legitimately combines network calls (API client) and dynamic module execution (webpack runtime). Not dropper behavior. | ai | |
| source-diff | obfuscated-file:dist/client/p__index.5b735c52.async.js | AI (source-diff): Standard webpack/UmiJS minified frontend bundle for NocoBase SPA. Long lines are expected minification artifacts, not obfuscation. | ai | |
| source-diff | net-exec-file:dist/client/umi.5e3a7209.js | AI (source-diff): UmiJS framework bundle legitimately combines network calls and dynamic module execution. Standard SPA pattern, not malware. | ai | |
| semgrep | semgrep:env-spread | AI (semgrep): process.env spread occurs only in test files (commands.test.ts) as a standard pattern for passing env to child processes in integration tests. Not a runtime or install-time risk. | ai | |
| typosquat | typosquat.levenshtein:pg | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'pg' is a false positive. | ai | |
| typosquat | typosquat.levenshtein:hapi | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'hapi' is a false positive. | ai | |
| typosquat | typosquat.levenshtein:ajv | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'ajv' is a false positive. | ai | |
| typosquat | typosquat.levenshtein:yup | AI (typosquat): @nocobase/app is a scoped package from the established NocoBase org; Levenshtein match to 'yup' is a false positive. | ai | |
| semgrep | semgrep:shady-links-raw-ip | AI (semgrep): Raw IP 127.0.0.1 is a localhost health-check URL in a test file. Standard integration test pattern, not an exfiltration endpoint. | ai |
Versions (showing 51 of 107)
| Version | Deps | Published |
|---|---|---|
| 2.0.60 | 3 / 1 | |
| 2.0.59 | 3 / 1 | |
| 2.0.56 | 3 / 1 | |
| 2.0.52 | 3 / 1 | |
| 2.0.51 | 3 / 1 | |
| 2.0.50 | 3 / 1 | |
| 2.0.48 | 3 / 1 | |
| 2.0.46 | 3 / 1 | |
| 2.0.45 | 3 / 1 | |
| 2.0.44 | 3 / 1 | |
| 2.0.43 | 3 / 1 | |
| 2.0.41 | 3 / 1 | |
| 2.0.38 | 3 / 1 | |
| 2.0.37 | 3 / 1 | |
| 2.0.36 | 3 / 1 | |
| 2.0.35 | 3 / 1 | |
| 2.0.34 | 3 / 1 | |
| 2.0.33 | 3 / 1 | |
| 2.0.32 | 3 / 1 | |
| 2.0.31 | 3 / 1 | |
| 2.0.30 | 3 / 1 | |
| 2.0.29 | 3 / 1 | |
| 2.0.28 | 3 / 1 | |
| 2.0.27 | 3 / 1 | |
| 2.0.26 | 3 / 1 | |
| 2.0.25 | 3 / 1 | |
| 2.0.24 | 3 / 1 | |
| 2.0.23 | 3 / 1 | |
| 2.0.22 | 3 / 1 | |
| 2.0.21 | 3 / 1 | |
| 2.0.20 | 3 / 1 | |
| 2.0.19 | 3 / 1 | |
| 2.0.18 | 3 / 1 | |
| 2.0.17 | 3 / 1 | |
| 2.0.16 | 3 / 1 | |
| 2.0.13 | 3 / 1 | |
| 2.0.12 | 3 / 1 | |
| 2.0.11 | 3 / 1 | |
| 2.0.9 | 3 / 1 | |
| 2.0.8 | 3 / 1 | |
| 2.0.7 | 3 / 1 | |
| 2.0.6 | 3 / 1 | |
| 2.0.5 | 3 / 1 | |
| 2.0.3 | 3 / 1 | |
| 2.0.2 | 3 / 1 | |
| 2.0.1 | 3 / 1 | |
| 2.0.0 | 3 / 1 | |
| 1.9.61 | 3 / 1 | |
| 1.9.60 | 3 / 1 | |
| 1.9.59 | 3 / 1 | |
| 1.9.58 | 3 / 1 |
v2.0.60
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.59
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.56
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.52
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.51
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.50
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.48
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.45
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.44
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.43
8 findingsSpreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L57 55 | 56 | const run = (command, args, options) => { > 57 | return execa(command, args, { 58 | ...process.env, 59 | ...options,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L82 80 | console.log(process.env.DB_DIALECT, port); 81 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 82 | const env = { 83 | ...process.env, 84 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L111 109 | }); 110 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 111 | const env = { 112 | ...process.env, 113 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L141 139 | }); 140 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 141 | const env = { 142 | ...process.env, 143 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L167 165 | }); 166 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 167 | const env = { 168 | ...process.env, 169 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L197 195 | }); 196 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 197 | const env = { 198 | ...process.env, 199 | APP_PORT: `${port}`,
Spreading entire process.env into an object — may capture all secrets Source: https://github.com/nocobase/nocobase/blob/bc149659b06c5e9a4f55e707f735125801b508be/src/__tests__/commands.test.ts#L222 220 | }); 221 | const dbFile = `storage/tests/db/nocobase-${uid()}.sqlite`; > 222 | const env = { 223 | ...process.env, 224 | APP_PORT: `${port}`,
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.41
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.38
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.37
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.36
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.35
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.34
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.33
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.32
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.31
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.30
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.29
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.28
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.27
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.26
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.25
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.24
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.23
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.22
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.21
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.20
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.19
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.18
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.17
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.16
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.13
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.12
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.11
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.9
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.8
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.7
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.6
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.5
5 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2.0.3
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.2
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.1
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2.0.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v1.9.61
44 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.9.60
44 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.9.59
44 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v1.9.58
44 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.