← Home

@unocss/eslint-plugin

42
Versions
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

antfuunocss-botzyyv

Keywords

eslint-plugineslint

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
provenance publisher-changed AI (provenance): Transition from antfu to GitHub Actions is a legitimate CI/CD automation change, confirmed by SLSA provenance attestation. ai
publish-pattern dormant-publish AI (publish-pattern): Dormancy followed by CI/CD-published release with SLSA attestation; consistent with automated release pipeline adoption. ai
phantom-deps phantom-dep:@unocss/rule-utils AI (phantom-deps): Same-org monorepo dep; declared in dependencies and used transitively, stable false positive for this package. ai

Versions (showing 42 of 42)

Version Deps Published
66.7.5 6 / 3
66.7.4 6 / 3
66.7.3 6 / 3
66.7.2 6 / 3
66.7.0 6 / 3
66.6.8 6 / 3
66.6.7 6 / 3
66.6.6 6 / 4
66.6.5 6 / 4
66.6.4 6 / 4
66.6.3 6 / 4
66.6.2 6 / 4
66.6.1 6 / 4
66.6.0 6 / 4
66.5.12 6 / 4
66.5.11 6 / 4
66.5.10 6 / 4
66.5.9 6 / 4
66.5.7 6 / 4
66.5.6 6 / 4
66.5.5 6 / 4
66.5.4 6 / 4
66.5.3 6 / 4
66.5.2 6 / 4
66.5.1 6 / 4
66.5.0 6 / 4
66.4.2 6 / 4
66.4.1 6 / 4
66.4.0 6 / 4
66.3.3 6 / 4
66.3.2 6 / 4
66.3.1 6 / 4
66.2.3 6 / 4
66.2.2 6 / 4
66.2.1 6 / 4
66.2.0 6 / 3
66.1.4 6 / 3
66.1.3 6 / 3
66.1.2 6 / 3
66.1.1 6 / 3
66.1.0 6 / 3
66.0.0 6 / 3

v66.7.5

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v66.7.4

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v66.7.3

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v66.7.2

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v66.7.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v66.0.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.