@vizejs/vite-plugin-musea

Vite plugin for Musea - Component gallery for Vue components

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

ubugeeei

Keywords

component-gallerymuseastorybookvitevite-pluginvue

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
source-diff	large-new-source-files	AI (source-diff): New files are Monaco Editor language assets added to gallery build; expected for this package.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/editor.api2-SLfptPIG.js	AI (source-diff): Monaco Editor bundled output; standard minified OSS library, not obfuscation.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/editor.main-BljYFdfA.js	AI (source-diff): Monaco Editor bundled output; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/index-CqK_XPg7.js	AI (source-diff): Vite-bundled gallery entry; standard minified output.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/htmlMode-CSWWPg90.js	AI (source-diff): Monaco HTML language mode; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/jsonMode-CBrOXZY9.js	AI (source-diff): Monaco JSON language mode; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/lspLanguageFeatures-Bu74h5y3.js	AI (source-diff): Monaco LSP features bundle; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/monaco.contribution-HZxb4U4v.js	AI (source-diff): Monaco contribution bundle; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/MonacoEditor-BpKM7zbX.js	AI (source-diff): Monaco Editor component bundle; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/freemarker2-DGmuhp50.js	AI (source-diff): Monaco language grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/handlebars-B954rIbz.js	AI (source-diff): Monaco Handlebars grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/html-BDQYSwH9.js	AI (source-diff): Monaco HTML grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/liquid-FmyEnoPx.js	AI (source-diff): Monaco Liquid grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/mdx-C3TFJbUn.js	AI (source-diff): Monaco MDX grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/python-BcMXVfwL.js	AI (source-diff): Monaco Python grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/razor-DeiRoULl.js	AI (source-diff): Monaco Razor grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/tsMode-BoStKF93.js	AI (source-diff): Monaco TypeScript mode; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/typescript-DigSpqaD.js	AI (source-diff): Monaco TypeScript grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery/assets/yaml-OUYUOTjV.js	AI (source-diff): Monaco YAML grammar; standard minified OSS library.	ai	2026/06/07
source-diff	obfuscated-file:dist/gallery-kaxHo2Kt.mjs	AI (source-diff): Vite-bundled gallery entry MJS; standard minified build output.	ai	2026/06/07
provenance	slsa-provenance	AI (provenance): Published via CI/CD with Sigstore attestation; stable supply chain signal for this package.	ai	2026/04/29

Versions (showing 51 of 60)

View all versions

Version	Deps	Published
0.183.0	2 / 16	2026-06-07
0.182.0	2 / 16	2026-06-06
0.181.0	2 / 16	2026-06-06
0.180.0	2 / 16	2026-06-06
0.179.0	2 / 16	2026-06-06
0.178.0	2 / 16	2026-06-06
0.177.0	2 / 16	2026-06-06
0.175.0	2 / 16	2026-06-06
0.174.0	2 / 16	2026-06-05
0.173.0	2 / 16	2026-06-05
0.172.0	2 / 16	2026-06-05
0.171.0	2 / 16	2026-06-05
0.170.0	2 / 16	2026-06-05
0.169.0	2 / 16	2026-06-05
0.168.0	2 / 16	2026-06-04
0.167.0	2 / 16	2026-06-04
0.166.0	2 / 16	2026-06-03
0.165.0	2 / 16	2026-06-03
0.164.0	2 / 16	2026-06-03
0.163.0	2 / 16	2026-06-02
0.162.0	2 / 16	2026-06-02
0.161.0	2 / 16	2026-06-02
0.160.0	2 / 16	2026-06-02
0.159.0	2 / 16	2026-06-02
0.158.0	2 / 16	2026-06-01
0.157.0	2 / 16	2026-06-01
0.156.0	2 / 16	2026-06-01
0.155.0	2 / 16	2026-06-01
0.154.0	2 / 16	2026-05-31
0.153.0	2 / 16	2026-05-31
0.152.0	2 / 16	2026-05-31
0.151.0	2 / 16	2026-05-31
0.150.0	2 / 16	2026-05-31
0.149.0	2 / 16	2026-05-31
0.148.0	2 / 16	2026-05-31
0.147.0	2 / 16	2026-05-31
0.144.0	2 / 16	2026-05-30
0.143.0	2 / 16	2026-05-30
0.142.0	2 / 16	2026-05-29
0.140.0	2 / 16	2026-05-28
0.139.0	2 / 16	2026-05-28
0.138.0	2 / 16	2026-05-28
0.137.0	2 / 16	2026-05-28
0.105.0	2 / 15	2026-05-18
0.78.0	2 / 15	2026-05-14
0.77.0	2 / 15	2026-05-13
0.76.0	2 / 15	2026-04-30
0.75.0	2 / 15	2026-04-27
0.59.0	2 / 15	2026-04-22
0.58.0	2 / 15	2026-04-22
0.57.0	2 / 15	2026-04-22

v0.183.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.182.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.181.0

20 findings

HIGH New obfuscated file: dist/gallery/assets/editor.api2-SLfptPIG.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/editor.main-BljYFdfA.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/freemarker2-DGmuhp50.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/handlebars-B954rIbz.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/html-BDQYSwH9.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/htmlMode-CSWWPg90.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/index-CqK_XPg7.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/jsonMode-CBrOXZY9.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/liquid-FmyEnoPx.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/lspLanguageFeatures-Bu74h5y3.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/mdx-C3TFJbUn.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/monaco.contribution-HZxb4U4v.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/MonacoEditor-BpKM7zbX.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/python-BcMXVfwL.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/razor-DeiRoULl.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/tsMode-BoStKF93.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/typescript-DigSpqaD.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery/assets/yaml-OUYUOTjV.js source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

HIGH New obfuscated file: dist/gallery-kaxHo2Kt.mjs source-diff

Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v0.180.0