← Home

@wix/auto_sdk_stores_products

npm
51
Versions
MIT
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

yoavwix-cishahatawixnpmwix-ambassadorwix-ci-publisherwix-bi-publishergalil-teamusability-sessionsyurynixydanivmayacoamitde007haimbrum-wixyoungshinobiethanpshlomitc-wixarielhwix-org-headlessfalconcinadavlacroir-wixdorchaouat

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
source-diff obfuscated-file:build/internal/es/stores-catalog-v1-product-products.universal-CgcdUR7z.d.mts AI (source-diff): Readable TypeScript interface declarations; long lines from bundled type definitions, not obfuscation. ai
source-diff obfuscated-file:build/cjs/stores-catalog-v1-product-products.universal-Css_EY8d.d.ts AI (source-diff): CJS variant of the same readable type declaration file. ai
source-diff obfuscated-file:build/internal/cjs/stores-catalog-v1-product-products.universal-CgcdUR7z.d.ts AI (source-diff): CJS variant of the same readable type declaration file. ai
source-diff obfuscated-file:build/es/stores-catalog-v1-product-products.universal-Css_EY8d.d.mts AI (source-diff): Same as above; standard Wix SDK build artifact. ai
source-diff obfuscated-file:build/internal/es/index.typings.d.mts AI (source-diff): Same as above — generated typings file, not obfuscated. ai
source-diff obfuscated-file:build/internal/es/meta.d.mts AI (source-diff): Same pattern — generated meta typings, not obfuscation. ai
source-diff obfuscated-file:build/es/meta.d.mts AI (source-diff): Auto-generated SDK meta type declarations with long import alias lines. ai
source-diff obfuscated-file:build/es/index.typings.d.mts AI (source-diff): Readable TypeScript interface definitions; long lines from bundled type exports. ai
source-diff obfuscated-file:build/internal/es/stores-catalog-v1-product-products.universal-BIBKG21Y.d.mts AI (source-diff): Readable JSDoc-annotated interface declarations; long lines from bundler output, not obfuscation. ai
source-diff obfuscated-file:build/es/index.d.mts AI (source-diff): Long-line TypeScript declaration file generated by tsup bundler; standard pattern for this Wix SDK package. ai
source-diff obfuscated-file:build/internal/es/index.d.mts AI (source-diff): Same tsup-generated .d.mts pattern; not obfuscation. ai
source-diff obfuscated-file:build/es/stores-catalog-v1-product-products.universal-DbP0_IgA.d.mts AI (source-diff): Same pattern as above; tsup-generated declaration file. ai
source-diff obfuscated-file:build/internal/cjs/stores-catalog-v1-product-products.universal-BIBKG21Y.d.ts AI (source-diff): CJS variant of the same tsup-generated declaration file pattern. ai
source-diff obfuscated-file:build/cjs/stores-catalog-v1-product-products.universal-DbP0_IgA.d.ts AI (source-diff): CJS variant of the same tsup-generated declaration file pattern. ai
source-diff obfuscated-file:build/internal/index.d.mts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
source-diff obfuscated-file:build/internal/stores-catalog-v1-product-products.universal-BIBKG21Y.d.mts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
source-diff obfuscated-file:build/index.d.mts AI (source-diff): TypeScript declaration rollup with long re-export lines; standard Wix SDK build artifact. ai
source-diff obfuscated-file:build/internal/stores-catalog-v1-product-products.universal-BIBKG21Y.d.ts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
source-diff obfuscated-file:build/internal/index.d.ts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
source-diff obfuscated-file:build/index.d.ts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
source-diff obfuscated-file:build/stores-catalog-v1-product-products.universal-DbP0_IgA.d.ts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
source-diff obfuscated-file:build/stores-catalog-v1-product-products.universal-DbP0_IgA.d.mts AI (source-diff): TypeScript declaration rollup; same Wix SDK build pattern. ai
npm-metadata no-description AI (npm-metadata): Wix SDK auto-generated packages consistently omit descriptions; not a risk signal for this publisher. ai
bogus-package bogus-package AI (bogus-package): Wix auto-generated SDK package; templated name/no-description/no-repo are expected artifacts of their CI pipeline. ai

Versions (showing 51 of 89)

View all versions
Version Deps Published
1.0.98 3 / 2
1.0.97 3 / 2
1.0.96 3 / 2
1.0.95 3 / 2
1.0.94 3 / 2
1.0.93 3 / 2
1.0.92 3 / 2
1.0.91 3 / 2
1.0.90 3 / 2
1.0.89 3 / 2
1.0.88 3 / 2
1.0.87 3 / 2
1.0.86 3 / 2
1.0.85 3 / 2
1.0.84 3 / 2
1.0.83 3 / 2
1.0.82 3 / 2
1.0.81 3 / 2
1.0.80 3 / 2
1.0.79 3 / 2
1.0.78 3 / 2
1.0.77 2 / 2
1.0.76 2 / 2
1.0.75 2 / 2
1.0.74 2 / 2
1.0.73 2 / 2
1.0.72 2 / 2
1.0.71 2 / 2
1.0.70 2 / 2
1.0.69 2 / 2
1.0.68 2 / 2
1.0.67 2 / 2
1.0.66 2 / 2
1.0.65 2 / 2
1.0.64 2 / 2
1.0.63 2 / 2
1.0.62 2 / 2
1.0.61 2 / 2
1.0.60 2 / 2
1.0.59 2 / 2
1.0.58 2 / 2
1.0.57 2 / 2
1.0.56 2 / 2
1.0.55 2 / 2
1.0.54 2 / 2
1.0.53 2 / 2
1.0.52 2 / 2
1.0.51 2 / 2
1.0.50 2 / 2
1.0.49 2 / 2
1.0.48 2 / 2

v1.0.98

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.97

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.96

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.95

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.94

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.93

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.92

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.91

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.90

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.89

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.88

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.87

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.85

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.84

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.83

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.82

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.81

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.80

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.79

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.78

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.77

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.76

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.75

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.74

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.73

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.72

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.71

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.70

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.69

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.68

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.67

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v1.0.66

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.65

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.64

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.63

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.62

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.61

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.60

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.59

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.58

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.57

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.56

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.55

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.54

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.53

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.52

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.51

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.50

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.49

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v1.0.48

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.