← Home

@hyperlane-xyz/widgets

npm Repository Homepage

Common react components for Hyperlane projects

5
Versions
Apache-2.0
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

nambrotyorhodestkporterpaulbalaji

Keywords

ComponentsHyperlaneReactTypescriptWidgets

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
provenance slsa-provenance AI (provenance): SLSA provenance via Sigstore is stable for this CI-published monorepo package. ai
phantom-deps phantom-dep:@hyperlane-xyz/radix-sdk AI (phantom-deps): Same-org package; phantom-dep heuristic false positive for this monorepo. ai
phantom-deps phantom-dep:@hyperlane-xyz/provider-sdk AI (phantom-deps): Same-org package; phantom-dep heuristic false positive for this monorepo. ai
phantom-deps phantom-dep:pino AI (phantom-deps): Logging dep referenced in config; stable false positive for this package. ai
phantom-deps phantom-dep:starknet AI (phantom-deps): Blockchain wallet integration dep; referenced in config files, stable false positive. ai
phantom-deps phantom-dep:@hyperlane-xyz/aleo-sdk AI (phantom-deps): Same-org package; phantom-dep heuristic false positive for this monorepo. ai
phantom-deps phantom-dep:@interchain-ui/react AI (phantom-deps): UI component dep; referenced in config files, stable false positive. ai
phantom-deps phantom-dep:@provablehq/aleo-wallet-adaptor-react AI (phantom-deps): Aleo wallet integration dep; referenced in config files, stable false positive. ai
phantom-deps phantom-dep:@tronweb3/tronwallet-abstract-adapter AI (phantom-deps): Tron wallet integration dep; referenced in config files, stable false positive. ai
phantom-deps phantom-dep:@cosmjs/stargate AI (phantom-deps): Cosmos wallet integration dep; referenced in config files, stable false positive. ai

Versions (showing 5 of 5)

Version Deps Published
34.0.0 37 / 28
33.1.0 37 / 28
33.0.2 37 / 28
25.3.1 33 / 38
20.1.0 28 / 39

v34.0.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v33.1.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v33.0.2

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v25.3.1

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v20.1.0

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.