@donotdev/templates MIT 15 versions

@donotdev/templates

npm Repository Homepage

Page templates for common use cases in DoNotDev

15

Versions

MIT

License

No

Install Scripts

Missing

Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

donotdev

Keywords

donotdevdndevreacttemplatespageslayoutsmarketingtypescript

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@donotdev/components	AI (phantom-deps): Same-org monorepo package; stable false positive for this package.	ai	2026/05/28
phantom-deps	phantom-dep:@donotdev/crud	AI (phantom-deps): Same-org monorepo package; declared deps used transitively, not a phantom risk.	ai	2026/05/28
phantom-deps	phantom-dep:react-hook-form	AI (phantom-deps): Referenced in config files; monorepo pattern, not a real phantom dep risk.	ai	2026/05/28
phantom-deps	phantom-dep:@donotdev/adv-comps	AI (phantom-deps): Same-org monorepo package; stable false positive for this package.	ai	2026/05/28
phantom-deps	phantom-dep:@hookform/resolvers	AI (phantom-deps): Referenced in config files; monorepo pattern, not a real phantom dep risk.	ai	2026/05/28
phantom-deps	phantom-dep:marked	AI (phantom-deps): Referenced in config/build files; stable false positive for this template package.	ai	2026/05/18
phantom-deps	phantom-dep:marked-footnote	AI (phantom-deps): Referenced in config/build files; stable false positive for this template package.	ai	2026/05/18
phantom-deps	phantom-dep:html-react-parser	AI (phantom-deps): Referenced in config/build files; stable false positive for this template package.	ai	2026/05/18
phantom-deps	phantom-dep:@donotdev/ui	AI (phantom-deps): Same-org sibling dep; likely re-exported rather than directly imported in analyzed files.	ai	2026/05/18

Versions (showing 15 of 15)

Version	Deps	Published
0.1.42	6 / 0	2026-05-01
0.1.1	7 / 0	2026-03-28
0.1.0	7 / 0	2026-03-15
0.0.22	7 / 0	2026-03-12
0.0.21	7 / 0	2026-03-10
0.0.20	7 / 0	2026-03-08
0.0.19	7 / 0	2026-03-07
0.0.18	8 / 0	2026-03-05
0.0.17	8 / 0	2026-03-04
0.0.16	8 / 0	2026-03-03
0.0.15	8 / 0	2026-02-27
0.0.14	8 / 0	2026-02-26
0.0.6	9 / 0	2026-01-20
0.0.5	9 / 0	2026-01-13
0.0.3	8 / 0	2026-01-08

v0.1.42

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.1.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.1.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.0.22

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v0.0.21

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.20

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.19

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.18

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.17

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.16

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.15

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.14

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.6

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.5

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.3

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.