@auth0/universal-components-core Apache-2.0 2 versions

@auth0/universal-components-core

npm Repository Homepage

Core utilities for Auth0 Universal Components

Versions

Apache-2.0

License

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

auth0-ossauth0npmauth0brokkrjesseleoktajeffoktajeffbsmith-auth0sanjay.manikandhanniltorresatkohenry.mcardlenicolas.villalobosadam-mcgrath_oktajosecarlos-chavez_atkotj.oktasgarcia-atkoroger.chanmaaantonelewisbyrne-oktatarunpreet.kaur

Keywords

i18nauth0coreutilities

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:@auth0/myaccount-js	AI (dependencies): Auth0-owned dependency used within Auth0's own component library; namespace match reduces risk.	ai	2026/05/01
dependencies	unvetted-dep:@auth0/myorganization-js	AI (dependencies): Auth0-owned dependency used within Auth0's own component library; namespace match reduces risk.	ai	2026/05/01

Versions (showing 2 of 2)

Version	Deps	Published
2.0.0	3 / 3	2026-04-29
1.0.0	3 / 3	2026-04-09

v2.0.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.0.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.