← Home

@paperclipai/ui

npm Repository Homepage

Prebuilt Paperclip board UI assets.

8
Versions
MIT
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

dottadevinfoley

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/assets/index-lmXzxmTa.js AI (source-diff): Minified mermaid.js bundle; large minified output is expected for this UI asset package. ai
source-diff obfuscated-file:dist/assets/_baseUniq-dJHPUSv0.js AI (source-diff): Standard minified lodash utility chunk from Vite build; stable pattern for this UI asset package. ai
source-diff net-exec-file:dist/assets/index-lmXzxmTa.js AI (source-diff): Mermaid's dynamic diagram renderer uses fetch + eval-like patterns; not dropper behavior in this context. ai
source-diff obfuscated-file:dist/assets/graph-D-KTNXAP.js AI (source-diff): Minified graphlib chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/gitGraphDiagram-V2S2FVAM-OKduyFcw.js AI (source-diff): Minified mermaid git graph chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/ganttDiagram-JELNMOA3-BC-UKhOH.js AI (source-diff): Minified mermaid Gantt diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/flowDiagram-NV44I4VS-NZze6TQm.js AI (source-diff): Minified mermaid flow diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/erDiagram-Q2GNP2WA-Civ8rmlh.js AI (source-diff): Minified mermaid ER diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/diagram-S2PKOQOG-sxwUD9OK.js AI (source-diff): Minified mermaid diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/diagram-QEK2KX5R-4UZ3WEZ6.js AI (source-diff): Minified mermaid diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/diagram-PSM6KHXK-BbbLyIag.js AI (source-diff): Minified mermaid diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/dagre-6UL2VRFP-BWd4zNBg.js AI (source-diff): Minified dagre graph layout chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/cose-bilkent-S5V4N54A-pGV0_xSX.js AI (source-diff): Minified cose-bilkent layout algorithm chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/c4Diagram-YG6GDRKO-LowkTEHO.js AI (source-diff): Minified mermaid C4 diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/blockDiagram-VD42YOAC-3_2SqCAf.js AI (source-diff): Minified mermaid block diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/architectureDiagram-VXUJARFQ-Cq2NAh6N.js AI (source-diff): Minified mermaid architecture diagram chunk; expected Vite output. ai
source-diff obfuscated-file:dist/assets/_baseUniq-ClX8Mu1q.js AI (source-diff): Minified lodash utility chunk from Vite build; stable pattern for this UI assets package. ai
source-diff obfuscated-file:dist/assets/arc-Bv_UViE1.js AI (source-diff): Minified d3-arc chunk from Vite build; expected for this UI assets package. ai
source-diff net-exec-file:dist/assets/index-DKYfatQR.js AI (source-diff): Frontend bundle with ESM imports; network+exec pattern is false positive for bundled UI code with SLSA provenance. ai
source-diff obfuscated-file:dist/assets/index-DKYfatQR.js AI (source-diff): Main Vite bundle entry; minification is expected for this prebuilt UI assets package. ai
source-diff obfuscated-file:dist/assets/gitGraphDiagram-V2S2FVAM-CeBN25F5.js AI (source-diff): Minified mermaid git graph chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/_baseUniq-DgpBAaut.js AI (source-diff): Standard minified lodash/mermaid bundle chunk; not obfuscated malware. ai
source-diff obfuscated-file:dist/assets/arc-CPdmDzu0.js AI (source-diff): Minified d3-shape arc code; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/architectureDiagram-VXUJARFQ-DTrffbJV.js AI (source-diff): Minified mermaid architecture diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/blockDiagram-VD42YOAC-DbWQBhYJ.js AI (source-diff): Minified mermaid block diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/c4Diagram-YG6GDRKO-B4WQiWwB.js AI (source-diff): Minified mermaid C4 diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/cose-bilkent-S5V4N54A-D0pm_m8v.js AI (source-diff): Minified cose-bilkent layout algorithm; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/dagre-6UL2VRFP-CNiXULrM.js AI (source-diff): Minified dagre graph layout chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/diagram-PSM6KHXK-OhnectLX.js AI (source-diff): Minified mermaid diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/diagram-QEK2KX5R-B8K4Us7K.js AI (source-diff): Minified mermaid diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/diagram-S2PKOQOG-CDyd-3Mj.js AI (source-diff): Minified mermaid diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/erDiagram-Q2GNP2WA-Bf9Xrn9N.js AI (source-diff): Minified mermaid ER diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/flowDiagram-NV44I4VS-il8rXTUK.js AI (source-diff): Minified mermaid flow diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/ganttDiagram-JELNMOA3-BHDci85M.js AI (source-diff): Minified mermaid Gantt diagram chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/graph-DyKyk0iW.js AI (source-diff): Minified graphlib chunk; legitimate build artifact. ai
source-diff obfuscated-file:dist/assets/index-DSX_VYii.js AI (source-diff): Main mermaid bundle; minified but recognizable library code. ai
source-diff net-exec-file:dist/assets/index-DSX_VYii.js AI (source-diff): Mermaid's dynamic diagram loader pattern; not dropper/malware behavior. ai
source-diff obfuscated-file:dist/assets/c4Diagram-YG6GDRKO-K70xb5mr.js AI (source-diff): Mermaid C4 diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/blockDiagram-VD42YOAC-BZrWzsaQ.js AI (source-diff): Mermaid block diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/architectureDiagram-VXUJARFQ-CJbZZ2-Q.js AI (source-diff): Mermaid architecture diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/arc-BmEXk1ih.js AI (source-diff): d3-shape arc code, standard minified bundle. ai
source-diff obfuscated-file:dist/assets/_baseUniq-B1mECqAt.js AI (source-diff): Standard Vite bundle output; lodash utility code, not obfuscation. ai
source-diff obfuscated-file:dist/assets/graph-BvKrKxUP.js AI (source-diff): Graphlib bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/gitGraphDiagram-V2S2FVAM-CWNvhkCn.js AI (source-diff): Mermaid git graph bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/ganttDiagram-JELNMOA3-CQO7Ie1Y.js AI (source-diff): Mermaid Gantt diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/flowDiagram-NV44I4VS-DEJDa2Ft.js AI (source-diff): Mermaid flow diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/index-BWGhimVr.js AI (source-diff): Main Vite bundle for UI library, standard minified output. ai
source-diff net-exec-file:dist/assets/index-BWGhimVr.js AI (source-diff): False positive; mermaid rendering in a UI bundle, not dropper/loader malware. ai
source-diff large-new-source-files AI (source-diff): Package ships prebuilt Vite/mermaid UI assets; large file count is expected for this package type. ai
publish-pattern rapid-publish AI (publish-pattern): Automated CI/CD release pipeline with SLSA provenance; rapid publishes are expected. ai
source-diff obfuscated-file:dist/assets/erDiagram-Q2GNP2WA-CMXi_pC3.js AI (source-diff): Mermaid ER diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/diagram-S2PKOQOG-BKxSKrT5.js AI (source-diff): Mermaid diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/diagram-QEK2KX5R-BCOKMA7T.js AI (source-diff): Mermaid diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/diagram-PSM6KHXK-BgZZoTAY.js AI (source-diff): Mermaid diagram bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/dagre-6UL2VRFP-Bd0xrMJx.js AI (source-diff): Dagre graph layout bundle, standard minified output. ai
source-diff obfuscated-file:dist/assets/cose-bilkent-S5V4N54A-CW9yDL7n.js AI (source-diff): Cytoscape cose-bilkent layout bundle, standard minified output. ai
bogus-package bogus-package AI (bogus-package): UI asset distribution package with no runtime deps and minimal README is expected; SLSA provenance and active versioning confirm legitimacy. ai
typosquat typosquat.levenshtein:uuid AI (typosquat): Scoped package @paperclipai/ui is not a typosquat of uuid; Levenshtein match is a false positive on a short unscoped name vs. a scoped package. ai
typosquat typosquat.levenshtein:joi AI (typosquat): Scoped package @paperclipai/ui is not a typosquat of joi; Levenshtein match is a false positive on a short unscoped name vs. a scoped package. ai
typosquat typosquat.levenshtein:qs AI (typosquat): Scoped package @paperclipai/ui is not a typosquat of qs; trivial edit distance on a 2-char package name is not meaningful. ai
typosquat typosquat.levenshtein:pg AI (typosquat): Scoped package @paperclipai/ui is not a typosquat of pg; trivial edit distance on a 2-char package name is not meaningful. ai
typosquat typosquat.levenshtein:yup AI (typosquat): Scoped package @paperclipai/ui is not a typosquat of yup; Levenshtein match is a false positive on a short unscoped name vs. a scoped package. ai

Versions (showing 8 of 8)

Version Deps Published
2026.529.0 0 / 0
2026.525.0 0 / 0
2026.517.0 0 / 0
2026.513.0 0 / 0
2026.512.0 0 / 0
2026.428.0 0 / 0
2026.427.0 0 / 0
2026.416.0 0 / 0

v2026.529.0

37 findings
HIGH New obfuscated file: dist/assets/_baseUniq-dJHPUSv0.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/arc-CtH2CgKF.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/architectureDiagram-VXUJARFQ-DCrIA2M9.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/blockDiagram-VD42YOAC-DwGQlH4Q.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/c4Diagram-YG6GDRKO-CxQ57CU2.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/cose-bilkent-S5V4N54A-D84ykvZH.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/dagre-6UL2VRFP-DRyzorVF.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-PSM6KHXK-C5wAgyx6.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-QEK2KX5R-CsvnTkVp.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-S2PKOQOG-Br9wqTRd.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/erDiagram-Q2GNP2WA-De9pfq6t.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/flowDiagram-NV44I4VS-DvpUOaBO.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/ganttDiagram-JELNMOA3-DEN8e2N4.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/gitGraphDiagram-V2S2FVAM-B6ykMCWZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/graph-CIjNMTg5.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B-7NLaC_.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B7tc1Gsm.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BJTuScfN.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BQG3y5iX.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BVrF5LCL.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BW8cVFID.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C2ybdFaK.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C5IuP2_1.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CBgD2e-L.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CjbsnQEI.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CP_aXt53.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CuxdjvHM.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D4-4-4PT.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DbkwKO1Z.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Dim4Fhke.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Dm_8JsFk.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-lmXzxmTa.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/assets/index-lmXzxmTa.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

HIGH New obfuscated file: dist/assets/index-LZBbo_xD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Tn2KzsEq.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Ws6WWOnQ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2026.525.0

37 findings
HIGH New obfuscated file: dist/assets/_baseUniq-B1mECqAt.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/arc-BmEXk1ih.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/architectureDiagram-VXUJARFQ-CJbZZ2-Q.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/blockDiagram-VD42YOAC-BZrWzsaQ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/c4Diagram-YG6GDRKO-K70xb5mr.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/cose-bilkent-S5V4N54A-CW9yDL7n.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/dagre-6UL2VRFP-Bd0xrMJx.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-PSM6KHXK-BgZZoTAY.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-QEK2KX5R-BCOKMA7T.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-S2PKOQOG-BKxSKrT5.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/erDiagram-Q2GNP2WA-CMXi_pC3.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/flowDiagram-NV44I4VS-DEJDa2Ft.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/ganttDiagram-JELNMOA3-CQO7Ie1Y.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/gitGraphDiagram-V2S2FVAM-CWNvhkCn.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/graph-BvKrKxUP.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-_OK6cs8Q.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-8hsqVG7j.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B-8V2Foc.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B8Q_uGSc.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BGoL6leX.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BLmrJNco.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BP_dqfhL.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BtlzKlu2.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BWGhimVr.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/assets/index-BWGhimVr.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

HIGH New obfuscated file: dist/assets/index-BWiACil5.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BXRzkXa-.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Cj2t1iFQ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CJ9HjiVO.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CVxBwKAz.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D_1-5nbD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D5xmd9F0.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DEQEXbaZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DgsG1b65.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DoVKLNXG.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-kps5mWG-.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2026.517.0

37 findings
HIGH New obfuscated file: dist/assets/_baseUniq-ClX8Mu1q.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/arc-Bv_UViE1.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/architectureDiagram-VXUJARFQ-Cq2NAh6N.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/blockDiagram-VD42YOAC-3_2SqCAf.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/c4Diagram-YG6GDRKO-LowkTEHO.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/cose-bilkent-S5V4N54A-pGV0_xSX.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/dagre-6UL2VRFP-BWd4zNBg.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-PSM6KHXK-BbbLyIag.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-QEK2KX5R-4UZ3WEZ6.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-S2PKOQOG-sxwUD9OK.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/erDiagram-Q2GNP2WA-Civ8rmlh.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/flowDiagram-NV44I4VS-NZze6TQm.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/ganttDiagram-JELNMOA3-BC-UKhOH.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/gitGraphDiagram-V2S2FVAM-OKduyFcw.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/graph-D-KTNXAP.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B05aWZOB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B2D6qGjy.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Bd50oJ8B.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BuO6Rm1m.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BWfb1Dvg.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C2rGoQ5U.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C7xwPDEk.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CbXmIf_6.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CDAZnonQ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Cpzyolvf.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D3TxQELm.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D5syTv-u.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DKYfatQR.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/assets/index-DKYfatQR.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

HIGH New obfuscated file: dist/assets/index-DMYB2ZNr.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DoMACCn_.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DPtgEK41.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-JsvAPoZ9.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-sU9-AbrK.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-V22ELCh7.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-XEN_Jo1k.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2026.513.0

37 findings
HIGH New obfuscated file: dist/assets/_baseUniq-BiKo_T7Z.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/arc-CkjNBU9-.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/architectureDiagram-VXUJARFQ-CnRGt6cZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/blockDiagram-VD42YOAC-B_DcjZaJ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/c4Diagram-YG6GDRKO-B3PD9c_R.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/cose-bilkent-S5V4N54A-DBD_6-uV.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/dagre-6UL2VRFP-B0ZXplS0.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-PSM6KHXK-MU8wNkAz.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-QEK2KX5R-CCfNbWCb.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-S2PKOQOG-DdMr7I_J.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/erDiagram-Q2GNP2WA-DtFKSehU.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/flowDiagram-NV44I4VS-B_pFIF4i.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/ganttDiagram-JELNMOA3-a-qWQK-M.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/gitGraphDiagram-V2S2FVAM-C4hbS94c.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/graph-BtgDnY40.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index--WRNmWMh.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-AgtIQi_5.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BaAVco-d.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BB_z2YqG.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Bd-T6qiC.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BMlfLDqD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/assets/index-BMlfLDqD.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

HIGH New obfuscated file: dist/assets/index-BPlouvTT.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BVgnExhc.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CCWg46e1.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CG2nnKb-.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CJf2oog-.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-ClSpZadR.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CVMCSDya.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-cxW3Rqeg.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D4eBzxSF.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DirEFlKZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DQ9JLA32.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DT6dSYEd.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DvdrMxk6.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-erysj30P.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2026.512.0

37 findings
HIGH New obfuscated file: dist/assets/_baseUniq-DgpBAaut.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/arc-CPdmDzu0.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/architectureDiagram-VXUJARFQ-DTrffbJV.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/blockDiagram-VD42YOAC-DbWQBhYJ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/c4Diagram-YG6GDRKO-B4WQiWwB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/cose-bilkent-S5V4N54A-D0pm_m8v.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/dagre-6UL2VRFP-CNiXULrM.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-PSM6KHXK-OhnectLX.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-QEK2KX5R-B8K4Us7K.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-S2PKOQOG-CDyd-3Mj.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/erDiagram-Q2GNP2WA-Bf9Xrn9N.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/flowDiagram-NV44I4VS-il8rXTUK.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/ganttDiagram-JELNMOA3-BHDci85M.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/gitGraphDiagram-V2S2FVAM-CeBN25F5.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/graph-DyKyk0iW.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B-ptSMFV.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B5kqiubZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B8WJBOWl.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BaQ0dYFw.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BInCNQnw.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-c_Hnsga5.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C-5N2t-a.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CdtTSVs9.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CgBOTlLd.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CGhEPslk.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CMXVYUkM.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-D2i3lY36.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DbEOzLOG.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DCSK19ue.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DFALWt8v.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Dhu0zn6S.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Dr975FwP.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DSX_VYii.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/assets/index-DSX_VYii.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

HIGH New obfuscated file: dist/assets/index-DzUb-cJ1.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-mOm9hF2q.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2026.427.0

37 findings
HIGH New obfuscated file: dist/assets/_baseUniq-BvUCLYYD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/arc-CQmTfzW4.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/architectureDiagram-VXUJARFQ-qjFoIvLC.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/blockDiagram-VD42YOAC-DfAU1Emh.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/c4Diagram-YG6GDRKO-CZCymm5_.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/cose-bilkent-S5V4N54A-nUti4lML.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/dagre-6UL2VRFP-mMlsphhT.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-PSM6KHXK-QWv2R1Q7.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-QEK2KX5R-fzfoDYwN.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/diagram-S2PKOQOG-D5z_tsND.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/erDiagram-Q2GNP2WA-StcHe_Vx.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/flowDiagram-NV44I4VS-DlZ4rmPP.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/ganttDiagram-JELNMOA3-BPrAF9Bt.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/gitGraphDiagram-V2S2FVAM-DbXvOnZi.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/graph-CrheRCBt.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-9T7VraJA.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B3tomICE.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B6Vnkokj.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-B9J9ArEi.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-BAlkLej7.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Bg38ro6X.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-Bmu62ei1.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C2eP8xWs.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C2FPIp_d.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-C3tbtjQ3.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New file with network + code execution: dist/assets/index-C3tbtjQ3.js source-diff

Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.

HIGH New obfuscated file: dist/assets/index-CDfO8fDN.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CMi6ABMJ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CmYi46i3.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CN95Wgpb.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CpO8W987.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CSfTM_wz.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CYa6UStV.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-CzPbeSe9.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DEw7_Cjr.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/assets/index-DXeCdfTi.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v2026.416.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.