← Home

@storybook/addon-docs

npm Repository Homepage
51
Versions
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

ndelangenshilmantmeasdayghengeveldwinkervsbecksyannbfkylegachjreinholdkasperpeulenvalentinpalkovicdomyenstorybook-bot

Keywords

docsdocumentationstorybookstorybook-addonessentialsorganizeMDXmarkdownautodocsstyleguidestyle guidecomponentcomponentsreactvueangularsvelteweb-components

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-DFFBXVX7.js AI (source-diff): esbuild-bundled output with CJS compat shim; long lines from Unicode regex in github-slugger. Stable for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-L47IITNQ.js AI (source-diff): Bundled rehype-slug + github-slugger Unicode regex; not obfuscation. Stable for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-B4J4ET76.js AI (source-diff): esbuild-bundled output with CJS compat banner; long lines from Unicode regex in github-slugger. Stable for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-2GL5KHLZ.js AI (source-diff): esbuild bundle output with inlined unicode regex from github-slugger; standard for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-ABS4Z5YB.js AI (source-diff): esbuild bundle output with CJS compat banner; long regex line from github-slugger triggers false positive. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-ZTKOIJFM.js AI (source-diff): esbuild-bundled CJS compat output; standard Storybook build artifact with long lines. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-4SZJIPPS.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; standard for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-YJ7EVY34.js AI (source-diff): esbuild-bundled chunk with CJS compat banner; standard Storybook build output. ai
publish-pattern rapid-publish AI (publish-pattern): Storybook monorepo publishes many packages in quick succession via CI. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-C24H44UB.js AI (source-diff): esbuild bundle output with CJS compat banner; standard Storybook build artifact. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-E3EIOKE5.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; standard for Storybook's build. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-YTJMAUYE.js AI (source-diff): esbuild-bundled CJS compat chunk with inlined unicode regex from github-slugger; standard build output. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-RVGEC5JJ.js AI (source-diff): esbuild bundle output with CJS compat banner; standard build artifact for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-3BTJNSEA.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-LXKE7C6D.js AI (source-diff): esbuild bundle output with CJS compat banner; long lines from unicode regex in github-slugger. Stable for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-UL4YTMVK.js AI (source-diff): esbuild bundle of rehype-slug/github-slugger; long regex line triggers rule. Stable for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-63USXA7M.js AI (source-diff): esbuild-bundled output with CJS compat banner; standard build artifact for Storybook. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-QCZ4HLLR.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-3L5YIQXE.js AI (source-diff): esbuild bundle output with inlined unicode regex from github-slugger; standard build artifact for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-EBWWWHXI.js AI (source-diff): esbuild-bundled output with CJS compat banner; long regex line from github-slugger. Standard for Storybook. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-JNZ6UDMN.js AI (source-diff): esbuild bundle output with CJS compat banner; long regex line from github-slugger. Standard build artifact. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-VAUWZYVZ.js AI (source-diff): esbuild bundle output with CJS compat banner; standard Storybook build artifact. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-JIS5UEVK.js AI (source-diff): esbuild bundle output with CJS compat banner; standard Storybook build artifact. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-BOXDCTUS.js AI (source-diff): esbuild bundle output with labeled CJS compat banner; stable pattern for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-7XE3GWQD.js AI (source-diff): Bundled esbuild output with inlined unicode regex from github-slugger; standard for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-5QKYFRLC.js AI (source-diff): esbuild-bundled output with CJS compat banner; standard build artifact for Storybook. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-PJE2H475.js AI (source-diff): esbuild-bundled output with CJS compat banner; long lines from inlined Unicode regex, not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-AOTVR2Q2.js AI (source-diff): esbuild bundle output with CJS compat banner; long lines from Unicode regex in github-slugger, not obfuscation. ai
source-diff obfuscated-file:dist/mdx-loader.mjs AI (source-diff): Bundled MDX loader with inlined micromark HTML entities; standard build output for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-DHKQA5WB.js AI (source-diff): esbuild bundle output with CJS compat banner; long regex line from github-slugger triggers false positive. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-XVFMD3TD.js AI (source-diff): esbuild bundle output with CJS compat banner and inlined unicode regex from github-slugger; not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-4XSJZOLT.js AI (source-diff): esbuild-bundled output with inlined unicode regex from github-slugger; standard for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-3FMIO2AU.js AI (source-diff): esbuild bundle output with CJS compat banner; long lines from inlined Unicode regex, not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-TQBSQBRQ.js AI (source-diff): esbuild-bundled chunk with long Unicode regex from github-slugger; standard Storybook build output. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-ZFPIR3L6.js AI (source-diff): esbuild-bundled CJS compat output for rehype-slug; standard Storybook build artifact. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-SPX3TUGT.js AI (source-diff): esbuild bundle output with CJS compat shim and unicode regex from github-slugger; not obfuscation. ai
phantom-deps phantom-dep:@storybook/preview-api AI (phantom-deps): Same-org peer dep re-exported or used transitively; stable pattern for @storybook packages. ai
phantom-deps phantom-dep:@storybook/components AI (phantom-deps): Same-org peer dep re-exported or used transitively; stable pattern for @storybook packages. ai
phantom-deps phantom-dep:@storybook/theming AI (phantom-deps): Same-org peer dep re-exported or used transitively; stable pattern for @storybook packages. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-7IJLGGAJ.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; standard for this package's build. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-ZQNLTEFW.js AI (source-diff): esbuild bundle output with CJS compat banner; long lines from Unicode regex in github-slugger, not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-SWZMHUUR.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-QMVSHJMP.js AI (source-diff): esbuild bundle of rehype-slug + github-slugger; long Unicode regex triggers false positive. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-U26YELH3.js AI (source-diff): esbuild-bundled chunk with CJS compat banner; long regex line from github-slugger. Standard build output. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-LE5AS6RC.js AI (source-diff): esbuild-bundled chunk with CJS compat banner; long lines from Unicode regex in github-slugger, not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-NERL3ZEL.js AI (source-diff): esbuild bundle output with CJS compat banner; long line is Unicode regex from github-slugger. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-GOFA2OQH.js AI (source-diff): esbuild-bundled output with CJS compat shim; long lines from Unicode regex in github-slugger. Stable pattern. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-76X5TKO7.js AI (source-diff): esbuild bundle output with CJS compat banner; long lines from inlined Unicode regex, not obfuscation. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-3QS5AFJH.js AI (source-diff): esbuild bundle output with long Unicode regex from github-slugger; standard for Storybook's build. ai
phantom-deps phantom-dep:react-dom AI (phantom-deps): react-dom is declared as a runtime dependency; phantom-dep is a false positive. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-INWKXDTS.js AI (source-diff): esbuild-bundled output with CJS compat banner; long regex line from github-slugger. Stable for this package. ai
source-diff obfuscated-file:dist/blocks.mjs AI (source-diff): Bundled build output (memoizerific UMD, React components); stable for this package. ai
source-diff net-exec-file:dist/blocks.mjs AI (source-diff): UMD boilerplate (typeof global/define.amd) triggers heuristic; no real net+exec. ai
source-diff obfuscated-file:dist/Color-AVL7NMMY.mjs AI (source-diff): Bundled build output with long lines (color-name map); stable pattern for this package. ai
source-diff obfuscated-file:dist/_node-chunks/rehype-slug-CJTBZTTB.js AI (source-diff): esbuild bundle output with CJS compat banner and inlined unicode regex from github-slugger; not obfuscation. ai
provenance no-provenance AI (provenance): Storybook publishes via GitHub Actions CI without Sigstore attestation; consistent across all versions. ai

Versions (showing 51 of 65)

View all versions
Version Deps Published
10.4.5 7 / 19
10.4.4 7 / 19
10.4.3 7 / 19
10.4.2 7 / 19
10.4.1 7 / 19
10.4.0 7 / 19
10.3.5 7 / 19
10.3.4 7 / 19
10.3.3 7 / 19
10.3.2 7 / 19
10.3.1 7 / 19
10.3.0 7 / 19
10.2.19 7 / 19
10.2.18 7 / 19
10.2.17 7 / 19
10.2.16 7 / 19
10.2.15 7 / 19
10.2.14 7 / 19
10.2.13 7 / 19
10.2.12 7 / 19
10.2.11 7 / 19
10.2.10 7 / 19
10.2.9 7 / 19
10.2.8 7 / 19
10.2.7 7 / 19
10.2.6 7 / 19
10.2.5 7 / 19
10.2.4 7 / 19
10.2.3 7 / 19
10.2.2 7 / 19
10.2.1 7 / 19
10.2.0 7 / 19
10.1.11 7 / 19
10.1.10 7 / 19
10.1.9 7 / 19
10.1.8 7 / 19
10.1.7 7 / 19
10.1.6 7 / 19
10.1.5 7 / 19
10.1.4 7 / 19
10.1.3 7 / 19
10.1.2 7 / 19
10.1.1 7 / 19
10.1.0 7 / 19
10.0.8 7 / 19
10.0.7 7 / 19
10.0.6 7 / 19
10.0.5 7 / 19
10.0.4 7 / 19
10.0.3 7 / 19
10.0.2 7 / 19

v10.4.5

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-DFFBXVX7.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.4.4

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-L47IITNQ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.4.3

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-C24H44UB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.4.2

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-YJ7EVY34.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v10.4.1

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-7IJLGGAJ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.4.0

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-B4J4ET76.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.3.3

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-ZQNLTEFW.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.3.2

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-3L5YIQXE.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.3.1

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-YTJMAUYE.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.3.0

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-2GL5KHLZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.19

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-QCZ4HLLR.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.15

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-NERL3ZEL.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.14

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-U26YELH3.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.13

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-XVFMD3TD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.12

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-DHKQA5WB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.9

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-ABS4Z5YB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.8

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-VAUWZYVZ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.7

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-JIS5UEVK.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.6

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-ZFPIR3L6.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.5

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-63USXA7M.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.4

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-QMVSHJMP.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.3

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-3BTJNSEA.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.2

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-3FMIO2AU.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.1

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-TQBSQBRQ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.2.0

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-76X5TKO7.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.11

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-RVGEC5JJ.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.10

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-BOXDCTUS.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.9

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-EBWWWHXI.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.8

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-INWKXDTS.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.7

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-3QS5AFJH.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.6

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-JNZ6UDMN.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.5

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-PJE2H475.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.4

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-AOTVR2Q2.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.3

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-UL4YTMVK.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.2

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-5QKYFRLC.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.1

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-ZTKOIJFM.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.1.0

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-LXKE7C6D.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.0.8

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-7XE3GWQD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.0.7

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-GOFA2OQH.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.0.6

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-4XSJZOLT.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.0.5

2 findings
HIGH New obfuscated file: dist/_node-chunks/rehype-slug-CJTBZTTB.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v10.0.4

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v10.0.3

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v10.0.2

1 finding
INFO No provenance attestation provenance

[Accepted risk] Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.