← Home

@commercetools-frontend/react-notifications

npm Repository Homepage

React bindings for @commercetools-frontend/notifications

26
Versions
MIT
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

tdeekensemmenkocommercetools-admin

Keywords

javascriptfrontendreacttoolkit

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
phantom-deps phantom-dep:moment AI (phantom-deps): Monorepo build artifact; declared in package.json for bundling but not directly imported in source. ai
phantom-deps phantom-dep:prop-types AI (phantom-deps): Common monorepo pattern; declared for peer compat, not a direct import. ai
phantom-deps phantom-dep:@types/react AI (phantom-deps): Framework-scoped type package; stable false positive for this package. ai
phantom-deps phantom-dep:@types/lodash AI (phantom-deps): Type-only package; stable false positive for this package. ai
phantom-deps phantom-dep:@babel/runtime AI (phantom-deps): Runtime helper injected by Babel at build time; stable false positive. ai
phantom-deps phantom-dep:@types/history AI (phantom-deps): Framework-scoped type package; stable false positive. ai
phantom-deps phantom-dep:@emotion/styled AI (phantom-deps): Used via config/build tooling; stable false positive for this package. ai
phantom-deps phantom-dep:moment-timezone AI (phantom-deps): Declared for bundling; stable false positive for this monorepo package. ai
phantom-deps phantom-dep:@types/react-dom AI (phantom-deps): Framework-scoped type package; stable false positive. ai
phantom-deps phantom-dep:@types/prop-types AI (phantom-deps): Framework-scoped type package; stable false positive. ai
phantom-deps phantom-dep:@types/react-router AI (phantom-deps): Framework-scoped type package; stable false positive. ai
phantom-deps phantom-dep:@types/react-router-dom AI (phantom-deps): Framework-scoped type package; stable false positive. ai
phantom-deps phantom-dep:@commercetools-uikit/icon-button AI (phantom-deps): Same-org monorepo dep; stable false positive for this package. ai
phantom-deps phantom-dep:@commercetools-frontend/application-components AI (phantom-deps): Same-org monorepo dep; stable false positive for this package. ai

Versions (showing 26 of 26)

Version Deps Published
27.6.2 28 / 9
27.6.1 28 / 9
27.6.0 28 / 9
27.5.4 28 / 9
27.5.3 28 / 9
27.5.2 28 / 9
27.5.1 28 / 9
27.5.0 28 / 9
27.4.2 28 / 9
27.4.1 28 / 9
27.4.0 28 / 9
27.3.0 28 / 9
27.2.0 28 / 9
27.1.0 28 / 9
27.0.0 28 / 9
26.1.0 28 / 9
26.0.2 28 / 9
26.0.1 28 / 9
26.0.0 28 / 9
25.2.0 28 / 9
25.1.0 28 / 9
25.0.0 28 / 9
24.13.0 29 / 9
24.12.0 29 / 9
24.11.0 29 / 9
24.10.0 29 / 9

v27.6.2

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.6.1

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.6.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.5.4

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.5.3

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.5.2

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.5.1

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.5.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.4.1

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.4.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.3.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.2.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.1.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v27.0.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v26.1.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v26.0.2

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v26.0.1

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v26.0.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v25.2.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v25.1.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v25.0.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v24.13.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v24.12.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v24.11.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v24.10.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.