@kong-ui-public/analytics-chart
Dynamic chart component for kong analytics.
Supply chain provenance
Status for the latest visible version.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| dependencies | unvetted-dep:@types/papaparse | AI (dependencies): Standard TS type definitions; no runtime risk for this package. | ai | |
| dependencies | unvetted-dep:@types/file-saver | AI (dependencies): Standard TS type definitions; no runtime risk for this package. | ai | |
| dependencies | unvetted-dep:@types/lodash.pick | AI (dependencies): Standard TS type definitions; no runtime risk for this package. | ai | |
| dependencies | unvetted-dep:@types/lodash.pickby | AI (dependencies): Standard TS type definitions; no runtime risk for this package. | ai | |
| dependencies | unvetted-dep:@types/lodash.mapkeys | AI (dependencies): Standard TS type definitions; no runtime risk for this package. | ai | |
| dependencies | unvetted-dep:chartjs-adapter-date-fns | AI (dependencies): Well-known Chart.js date adapter; stable for this analytics chart package. | ai | |
| phantom-deps | phantom-dep:@types/papaparse | AI (phantom-deps): @types packages are type-only deps; phantom-dep heuristic not applicable. | ai | |
| phantom-deps | phantom-dep:@types/file-saver | AI (phantom-deps): @types packages are type-only deps; phantom-dep heuristic not applicable. | ai | |
| phantom-deps | phantom-dep:uuid | AI (phantom-deps): uuid is a runtime dep in package.json; phantom-dep heuristic false positive for this bundled component. | ai | |
| phantom-deps | phantom-dep:@types/lodash.pickby | AI (phantom-deps): @types packages are type-only deps; phantom-dep heuristic not applicable. | ai | |
| phantom-deps | phantom-dep:@types/lodash.mapkeys | AI (phantom-deps): @types packages are type-only deps; phantom-dep heuristic not applicable. | ai | |
| phantom-deps | phantom-dep:@types/lodash.pick | AI (phantom-deps): @types packages are type-only deps; phantom-dep heuristic not applicable. | ai | |
| phantom-deps | phantom-dep:date-fns | AI (phantom-deps): date-fns is a declared runtime dep used transitively via chartjs-adapter-date-fns; stable false positive. | ai | |
| phantom-deps | phantom-dep:date-fns-tz | AI (phantom-deps): date-fns-tz is a declared runtime dep; stable false positive for this package. | ai | |
| phantom-deps | phantom-dep:vue-chartjs | AI (phantom-deps): vue-chartjs is a declared runtime dep; stable false positive for this bundled component. | ai | |
| phantom-deps | phantom-dep:approximate-number | AI (phantom-deps): approximate-number is a declared runtime dep; stable false positive. | ai | |
| phantom-deps | phantom-dep:chartjs-plugin-annotation | AI (phantom-deps): chartjs-plugin-annotation is a declared runtime dep; stable false positive. | ai |
Versions (showing 25 of 25)
| Version | Deps | Published |
|---|---|---|
| 10.18.2 | 16 / 11 | |
| 10.18.1 | 16 / 11 | |
| 10.18.0 | 16 / 11 | |
| 10.17.15 | 16 / 11 | |
| 10.17.14 | 16 / 11 | |
| 10.17.13 | 16 / 11 | |
| 10.17.12 | 16 / 11 | |
| 10.17.11 | 16 / 11 | |
| 10.17.10 | 16 / 11 | |
| 10.17.9 | 16 / 11 | |
| 10.17.8 | 16 / 11 | |
| 10.17.7 | 16 / 11 | |
| 10.17.6 | 16 / 11 | |
| 10.17.5 | 16 / 11 | |
| 10.17.4 | 16 / 11 | |
| 10.17.3 | 16 / 11 | |
| 10.17.2 | 16 / 11 | |
| 10.16.1 | 16 / 11 | |
| 10.16.0 | 16 / 11 | |
| 10.7.11 | 15 / 11 | |
| 10.7.8 | 15 / 11 | |
| 10.7.6 | 15 / 11 | |
| 10.7.3 | 15 / 11 | |
| 10.4.3 | 15 / 11 | |
| 10.3.0 | 15 / 11 |
v10.18.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.18.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.18.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.15
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.14
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.13
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.12
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.11
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.10
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.9
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.8
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.7
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.6
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.17.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.7.11
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.7.8
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.7.6
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.7.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.4.3
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v10.3.0
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.