@darajs/ui-components Apache-2.0 9 versions

@darajs/ui-components

npm Repository Homepage

The core React UI kit for Dara

9

Versions

Apache-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

krzysztof-causalens

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:react-collapse	AI (dependencies): Established React animation library; stable dep for this UI kit package.	ai	2026/04/30
dependencies	unvetted-dep:@darajs/ui-utils	AI (dependencies): First-party sibling package from same monorepo (causalens/dara); pinned to same version.	ai	2026/04/30
dependencies	unvetted-dep:react-table-sticky	AI (dependencies): Known React table plugin; stable dep for this UI kit package.	ai	2026/04/30
dependencies	unvetted-dep:@headlessui-float/react	AI (dependencies): Known headlessui floating UI extension; stable dep for this UI kit package.	ai	2026/04/30

Versions (showing 9 of 9)

Version	Deps	Published
1.28.1	29 / 36	2026-06-04
1.28.0	29 / 36	2026-06-01
1.27.1	29 / 36	2026-05-28
1.27.0	29 / 36	2026-05-22
1.26.13	29 / 36	2026-05-22
1.26.12	29 / 36	2026-05-19
1.26.11	29 / 39	2026-04-28
1.26.8	29 / 39	2026-04-20
1.26.7	29 / 39	2026-04-14

v1.28.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.28.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.27.1

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.27.0

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.26.13

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.26.12

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.26.11

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.26.8

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.26.7

1 finding

INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.