@coveo/atomic Apache-2.0 18 versions

@coveo/atomic

npm Repository Homepage

A web-component library for building modern UIs interfacing with the Coveo platform

18

Versions

Apache-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

oa-npmcoveo

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:encoding	AI (phantom-deps): Declared in dependencies; phantom-dep fires on config references, not a real concern.	ai	2026/05/10
publish-pattern	dormant-publish	AI (publish-pattern): Package has 4941 versions; clearly not dormant — heuristic misfires on this high-frequency publisher.	ai	2026/05/02
dependencies	unvetted-dep:@salesforce-ux/design-system	AI (dependencies): Salesforce Lightning Design System is a well-known, established UI framework; stable dependency for this package.	ai	2026/05/02
phantom-deps	phantom-dep:cssnano	AI (phantom-deps): Build tool dependency referenced in config; not a runtime import concern for this package.	ai	2026/04/29
phantom-deps	phantom-dep:@open-wc/lit-helpers	AI (phantom-deps): Declared runtime dep used via config/indirect import; stable false positive for this package.	ai	2026/04/29

Versions (showing 18 of 18)

Version	Deps	Published
3.59.4	17 / 40	2026-06-04
3.59.3	17 / 40	2026-06-03
3.59.2	17 / 40	2026/06/01
3.59.1	17 / 40	2026-06-01
3.59.0	17 / 40	2026-05-28
3.58.1	17 / 40	2026-05-28
3.58.0	17 / 40	2026-05-25
3.57.3	17 / 40	2026-05-07
3.57.2	17 / 40	2026-05-06
3.57.1	17 / 39	2026-04-29
3.57.0	17 / 39	2026-04-27
3.56.2	17 / 40	2026-04-14
3.56.0	17 / 39	2026-04-14
3.55.3	17 / 39	2026-04-13
3.55.2	17 / 39	2026-04-09
3.55.1	17 / 39	2026-04-08
3.54.0	18 / 51	2026-04-01
3.53.3	18 / 51	2026-03-30

v3.59.4

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.59.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.59.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.59.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.59.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.58.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.58.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.57.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.57.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.57.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.56.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.56.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.55.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.55.2

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.55.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.54.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v3.53.3

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.