All @tiptap/extension-table versions
@tiptap/extension-table @2.27.2
rejected
This version was rejected.
It did not pass GreenFlagged's security review and is not served by the registry.
The findings and risk dispositions below explain why.
25
Risk Score
—
License
No
Install Scripts
0
Dependencies
2
Dev Dependencies
33.0 KB
Package Size
Published
Maintainers
arnaugomeztiptappatrickbabertimoisik_bdbchsvenadlungtiptap-bot
Keywords
tiptaptiptap extension
Dev Dependencies (2)
| Package | Constraint | Registry Status |
|---|---|---|
| @tiptap/pm | ^2.27.2 | auto_approved |
| @tiptap/core | ^2.27.2 | auto_approved |
Changes from v3.15.3
Dependency Changes
Script Changes
+ clean - lintFile Changes
30 added
51 removed
8 modified
size delta: -307.5 KB
Risk Dispositions (1 applicable to this version, 0 other)
Accepted rules are downgraded to INFO on future analyses; rejected rules escalate to CRITICAL.
| Rule | Source | Disposition | Author | Reason | |
|---|---|---|---|---|---|
regressed-provenance |
provenance | reject | AI | AI (provenance): Tiptap packages consistently publish with provenance; any version missing attestation should be rejected as a potential unauthorized publish. |
SAST Findings (1)
HIGH
Provenance attestation missing — previous versions had it
provenance
This version was published without provenance, but prior versions were published via CI/CD with attestations. This is a strong signal of a potential account compromise or unauthorized publish. The axios attack (March 2026) exhibited exactly this pattern.
Review Summary
Risk score: 25. Findings: 1 high (+25).
Commit: 4b8d4e9434cd Browse source
Published to npm: