@designcrowd/app.maker — Greenflagged

A collection of Maker/Designer applications

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures No source commit

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

pmcmanus-dccamgarveyphi-designcrowdfletcherdesigncrowd-npm-ciylairdcjringermaverick.crisostomoantonyfrancis-dcjames.joungbrookeherbertmelanielisboadcrebeccarosejim.jiangdanielmaycamichaeljohnstonemhillier98kushalpoudyalailenitee18npne.bibekemillie-thiseltonjb-dcgavinwoodsdavidcarsonreshma.reghuseanxiao-designcrowdall22.helmanhaiderali.designbudinmonzonjason-designcomstackrfmikaela.iquina

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:what-input	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:date-utils	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:body-parser	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:express	AI (phantom-deps): Server dep referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:mssql	AI (phantom-deps): Large app package; deps referenced via config files, not direct imports — stable FP for this package.	ai	2026/06/02
phantom-deps	phantom-dep:config	AI (phantom-deps): Referenced in config files; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:raygun	AI (phantom-deps): Error tracking dep referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:raygun4js	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:motion-ui	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:chroma-js	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:slugify	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:http-errors	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:es6-promise	AI (phantom-deps): Referenced via config; stable FP.	ai	2026/06/02
phantom-deps	phantom-dep:chance	AI (phantom-deps): Referenced in config files; stable pattern for this package.	ai	2026/06/01
phantom-deps	phantom-dep:@storybook/react	AI (phantom-deps): Storybook config reference; stable false positive for this package.	ai	2026/05/30
phantom-deps	phantom-dep:foundation-sites	AI (phantom-deps): Config-referenced dep; stable false positive.	ai	2026/05/30
phantom-deps	phantom-dep:pinia	AI (phantom-deps): Vue ecosystem dep referenced in config files; stable false positive for this package.	ai	2026/05/30
phantom-deps	phantom-dep:canvas	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/30
phantom-deps	phantom-dep:fs-extra	AI (phantom-deps): Config-referenced dep; stable false positive.	ai	2026/05/30
phantom-deps	phantom-dep:vuedraggable	AI (phantom-deps): Config-referenced Vue dep; stable false positive.	ai	2026/05/30
phantom-deps	phantom-dep:@designcrowd/design-system-configuration	AI (phantom-deps): Same-org dep referenced in config; stable false positive.	ai	2026/05/30
provenance	no-provenance	AI (provenance): Private org package; provenance not expected for internal npm CI publishing.	ai	2026/05/29
phantom-deps	phantom-dep:click-outside-vue3	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/29
phantom-deps	phantom-dep:serialize-error	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/29
phantom-deps	phantom-dep:vue3-shortkey	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/29
phantom-deps	phantom-dep:vue-router	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/29
phantom-deps	phantom-dep:portal-vue	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/29
phantom-deps	phantom-dep:file-type	AI (phantom-deps): Referenced in config files; stable false positive for this package.	ai	2026/05/29
phantom-deps	phantom-dep:core-js	AI (phantom-deps): Known implicit runtime dependency; stable false positive.	ai	2026/05/29
phantom-deps	phantom-dep:jquery	AI (phantom-deps): Declared in dependencies; referenced in config files, stable false positive for this package.	ai	2026/05/29
license	uncommon-license:UNLICENSED	AI (license): Private/proprietary package; UNLICENSED is intentional for internal org packages.	ai	2026/05/29

Versions (showing 42 of 42)

Version	Deps	Published
5.6.273	31 / 72	2026-04-30
5.6.267	31 / 72	2026-04-23
5.6.263	31 / 71	2026-04-22
5.6.261	31 / 71	2026-04-21
5.6.257	32 / 71	2026-04-14
5.6.256	32 / 71	2026-04-10
5.6.255	32 / 71	2026-04-10
5.6.252	32 / 71	2026-04-09
5.6.250	32 / 71	2026-04-08
5.6.248	32 / 71	2026-04-07
5.6.247	32 / 71	2026-04-02
5.6.239	37 / 69	2026-03-25
5.6.227	37 / 69	2026-03-08
5.6.226	37 / 69	2026-03-06
5.6.221	37 / 69	2026-03-01
5.6.219	37 / 69	2026-02-25
5.6.210	37 / 69	2026-02-20
5.6.201	37 / 69	2026-02-06
5.6.196	37 / 69	2026-02-03
5.6.191	37 / 69	2026-02-01
5.6.190	37 / 69	2026-01-30
5.6.177	37 / 69	2026-01-22
5.6.173	37 / 69	2026-01-19
5.6.163	38 / 69	2026-01-13
5.6.153	38 / 69	2026-01-07
5.6.144	39 / 69	2025-12-08
5.6.133	38 / 69	2025-12-01
5.6.127	38 / 69	2025-11-25
5.6.85	38 / 69	2025-09-18
5.6.74	38 / 69	2025-08-18
5.6.73	38 / 69	2025-08-18
5.6.71	38 / 69	2025-08-14
5.6.69	38 / 69	2025-08-08
5.6.58	38 / 69	2025-07-28
5.6.51	38 / 69	2025-07-17
5.6.50	38 / 69	2025-07-15
5.6.48	38 / 69	2025-07-10
5.6.45	38 / 69	2025-07-07
5.6.34	38 / 69	2025-06-30
5.6.18	36 / 70	2025-05-27
5.6.17	36 / 70	2025-05-26
5.6.12	56 / 93	2025-04-30