@penclipai/ui
Prebuilt Paperclip board UI assets.
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/assets/_baseUniq-CUx9E8q4.js | AI (source-diff): Standard Vite/Rollup minified bundle of lodash utility; not obfuscation. | ai | |
| source-diff | net-exec-file:dist/assets/index-BOX51yfE.js | AI (source-diff): Network call is fetch polyfill; dynamic execution is Mermaid renderer — no dropper pattern. | ai | |
| source-diff | obfuscated-file:dist/assets/index-BOX51yfE.js | AI (source-diff): Main Mermaid bundle; minified open-source library code. | ai | |
| source-diff | obfuscated-file:dist/assets/dagre-6UL2VRFP-XwjIVmZD.js | AI (source-diff): Dagre graph layout bundle; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/assets/cose-bilkent-S5V4N54A-BcBNmMIZ.js | AI (source-diff): Cytoscape cose-bilkent layout bundle; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/assets/c4Diagram-YG6GDRKO-DVjZIqCD.js | AI (source-diff): Mermaid C4 diagram bundle; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/assets/browser-ponyfill-DsatNpG8.js | AI (source-diff): Fetch browser ponyfill; standard minified polyfill. | ai | |
| source-diff | obfuscated-file:dist/assets/blockDiagram-VD42YOAC-DLECI2U8.js | AI (source-diff): Mermaid block diagram parser bundle; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/assets/architectureDiagram-VXUJARFQ-B6dEwowg.js | AI (source-diff): Mermaid architecture diagram bundle; standard minified output. | ai | |
| source-diff | obfuscated-file:dist/assets/arc-D1G6EiD8.js | AI (source-diff): Minified d3-shape arc code; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/erDiagram-Q2GNP2WA-CZE46wF6.js | AI (source-diff): Minified mermaid ER diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/arc-Dnd1NxEM.js | AI (source-diff): Minified d3-arc code; recognizable open-source library output. | ai | |
| source-diff | obfuscated-file:dist/assets/architectureDiagram-VXUJARFQ-DY47Q_Ra.js | AI (source-diff): Minified mermaid architecture diagram bundle; recognizable open-source library output. | ai | |
| source-diff | obfuscated-file:dist/assets/blockDiagram-VD42YOAC-DBaG3flc.js | AI (source-diff): Minified mermaid block diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/browser-ponyfill-DWjj-gdn.js | AI (source-diff): Minified whatwg-fetch browser ponyfill; recognizable open-source library output. | ai | |
| source-diff | obfuscated-file:dist/assets/c4Diagram-YG6GDRKO-DsruW0Ga.js | AI (source-diff): Minified mermaid C4 diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/cose-bilkent-S5V4N54A-Bhxq7NG1.js | AI (source-diff): Minified cose-bilkent cytoscape layout; recognizable open-source library output. | ai | |
| source-diff | obfuscated-file:dist/assets/dagre-6UL2VRFP-BJkp0Qmi.js | AI (source-diff): Minified dagre graph layout library; recognizable open-source library output. | ai | |
| source-diff | obfuscated-file:dist/assets/diagram-PSM6KHXK-DAqDqhBw.js | AI (source-diff): Minified mermaid diagram bundle; stable pattern for this dist-only package. | ai | |
| source-diff | obfuscated-file:dist/assets/diagram-QEK2KX5R-CmNZhiMM.js | AI (source-diff): Minified mermaid diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/diagram-S2PKOQOG-DMWKfJy6.js | AI (source-diff): Minified mermaid diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/flowDiagram-NV44I4VS-DZe1ZaEE.js | AI (source-diff): Minified mermaid flow diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/ganttDiagram-JELNMOA3-Cz4BRf6e.js | AI (source-diff): Minified mermaid Gantt diagram bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/gitGraphDiagram-V2S2FVAM-mU7OH5zA.js | AI (source-diff): Minified mermaid git graph bundle. | ai | |
| source-diff | obfuscated-file:dist/assets/graph-DC1HAs0A.js | AI (source-diff): Minified graphlib bundle; recognizable open-source library output. | ai | |
| source-diff | obfuscated-file:dist/assets/index-2mFfesOh.js | AI (source-diff): Main Vite bundle for UI assets; standard minified output. | ai | |
| bogus-package | bogus-package | AI (bogus-package): Dist-only prebuilt asset package; no deps/keywords expected by design. | ai | |
| source-diff | obfuscated-file:dist/assets/_baseUniq-M6HSJJg4.js | AI (source-diff): Standard Vite/Rollup minified output of lodash/mermaid internals; stable pattern for this dist-only package. | ai | |
| source-diff | obfuscated-file:dist/assets/cose-bilkent-S5V4N54A-BKUvOYF6.js | AI (source-diff): Minified cose-bilkent cytoscape layout; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/dagre-6UL2VRFP-WsqrE2Pc.js | AI (source-diff): Minified dagre graph layout chunk; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/index-_KUQlngm.js | AI (source-diff): Minified mermaid core bundle; standard build output. | ai | |
| source-diff | net-exec-file:dist/assets/index-_KUQlngm.js | AI (source-diff): Network calls are mermaid's fetch polyfill; dynamic exec is mermaid's diagram renderer, not a dropper. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Large file count reflects mermaid/cytoscape/dagre bundle split; expected for a UI asset package. | ai | |
| source-diff | obfuscated-file:dist/assets/_baseUniq-CBdQF_pZ.js | AI (source-diff): Standard minified lodash utility chunk from Vite build; not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/assets/c4Diagram-YG6GDRKO-CK-wUYgy.js | AI (source-diff): Minified mermaid C4 diagram chunk; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/browser-ponyfill-BOw5ZZBp.js | AI (source-diff): Minified whatwg-fetch browser ponyfill; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/blockDiagram-VD42YOAC-DnzuPDiD.js | AI (source-diff): Minified mermaid block diagram chunk; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/architectureDiagram-VXUJARFQ-CJGJb5Rk.js | AI (source-diff): Minified mermaid architecture diagram chunk; standard build output. | ai | |
| source-diff | obfuscated-file:dist/assets/arc-De2twURv.js | AI (source-diff): Minified d3-shape arc module; standard build output. | ai | |
| typosquat | typosquat.levenshtein:uuid | AI (typosquat): Scoped package @penclipai/ui; not a typosquat of uuid, match is coincidental. | ai | |
| typosquat | typosquat.levenshtein:qs | AI (typosquat): Scoped package @penclipai/ui; not a typosquat of qs, match is coincidental. | ai | |
| typosquat | typosquat.levenshtein:pg | AI (typosquat): Scoped package @penclipai/ui; not a typosquat of pg, match is coincidental. | ai | |
| typosquat | typosquat.levenshtein:yup | AI (typosquat): Scoped package @penclipai/ui; not a typosquat of yup, match is coincidental. | ai | |
| typosquat | typosquat.levenshtein:joi | AI (typosquat): Scoped package @penclipai/ui; not a typosquat of joi, match is coincidental. | ai |
Versions (showing 7 of 7)
| Version | Deps | Published |
|---|---|---|
| 2026.514.0 | 0 / 0 | |
| 2026.511.1 | 0 / 0 | |
| 2026.426.0 | 0 / 0 | |
| 2026.410.0 | 0 / 0 | |
| 2026.406.0 | 0 / 0 | |
| 2026.404.0 | 0 / 0 | |
| 2026.401.0 | 0 / 0 |
v2026.514.0
37 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2026.511.1
37 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added file contains both network calls and dynamic code execution. This is a hallmark of dropper/loader malware.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2026.426.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2026.410.0
36 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2026.406.0
36 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v2026.404.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v2026.401.0
1 findingPackage was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.