@liberfi.io/react-predict
React hooks and client for prediction markets (prediction-server backend), including Polymarket and DFlow order flows
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/server-DDzzly1V.d.ts | AI (source-diff): Same file in CJS format; identical readable content, false positive on line-length heuristic. | ai | |
| source-diff | obfuscated-file:dist/server-DDzzly1V.d.mts | AI (source-diff): TypeScript declaration file with readable JSDoc and type definitions; long lines are bundled type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-exUYV2o0.d.ts | AI (source-diff): TypeScript declaration file with readable domain types; long lines are bundled type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-exUYV2o0.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long lines are bundled type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-rYuNULuJ.d.mts | AI (source-diff): TypeScript declaration file with long lines from bundled type unions; not obfuscated runtime code. | ai | |
| source-diff | obfuscated-file:dist/server-rYuNULuJ.d.ts | AI (source-diff): TypeScript declaration file with long lines from bundled type unions; not obfuscated runtime code. | ai | |
| source-diff | obfuscated-file:dist/server-DsjYCQiB.d.ts | AI (source-diff): TypeScript declaration file with readable domain types; long-line trigger is a false positive for .d.ts bundles. | ai | |
| source-diff | obfuscated-file:dist/server-DsjYCQiB.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long-line trigger is a false positive for .d.ts bundles. | ai | |
| source-diff | obfuscated-file:dist/server-eKqIns8z.d.ts | AI (source-diff): Same as .d.mts counterpart — tsup-generated declaration bundle, not obfuscated. | ai | |
| source-diff | obfuscated-file:dist/server-eKqIns8z.d.mts | AI (source-diff): Bundled TypeScript declaration file with long lines; sample shows readable domain types, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-Curi-jN1.d.ts | AI (source-diff): Same as .d.mts counterpart — generated type declarations, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-Curi-jN1.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long lines are from large type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-BJChohWB.d.mts | AI (source-diff): TypeScript declaration file with JSDoc; long lines from bundled type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-BJChohWB.d.ts | AI (source-diff): TypeScript declaration file with JSDoc; long lines from bundled type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-BPTOChEG.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long lines from large interface definitions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-BPTOChEG.d.ts | AI (source-diff): Same as .d.mts counterpart — readable type declarations, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-CYqs2N2z.d.mts | AI (source-diff): tsup-generated TypeScript declaration bundle; long lines are concatenated type defs, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-CYqs2N2z.d.ts | AI (source-diff): tsup-generated TypeScript declaration bundle; long lines are concatenated type defs, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-CaB0XJAa.d.ts | AI (source-diff): TypeScript declaration file with bundled type definitions; long lines are from type rollup, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-CaB0XJAa.d.mts | AI (source-diff): TypeScript declaration file with bundled type definitions; long lines are from type rollup, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-HRO1ViL3.d.ts | AI (source-diff): TypeScript declaration file with readable domain types; long lines are generated type definitions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-HRO1ViL3.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long lines are generated type definitions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-D-WAydlX.d.ts | AI (source-diff): TypeScript declaration file with readable domain types; long-line heuristic false positive for this package. | ai | |
| source-diff | obfuscated-file:dist/server-D-WAydlX.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long-line heuristic false positive for this package. | ai | |
| source-diff | obfuscated-file:dist/server-DI6As_Bv.d.ts | AI (source-diff): Same file as .d.mts counterpart; declaration-only, no executable code, clearly readable content. | ai | |
| source-diff | obfuscated-file:dist/server-DI6As_Bv.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long-line trigger is a bundled type union, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-BOEaPGc-.d.mts | AI (source-diff): TypeScript declaration file with long lines from bundled type rollup; not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-BOEaPGc-.d.ts | AI (source-diff): TypeScript declaration file with long lines from bundled type rollup; not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-DUc4MoLH.d.ts | AI (source-diff): Same as .d.mts counterpart — bundled declaration file, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-DUc4MoLH.d.mts | AI (source-diff): TypeScript declaration file with readable JSDoc and type definitions; long-line trigger is a false positive for bundled .d.ts output. | ai | |
| source-diff | obfuscated-file:dist/server-rd8X_X_4.d.ts | AI (source-diff): Same as .d.mts counterpart — bundled type declarations, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-rd8X_X_4.d.mts | AI (source-diff): TypeScript declaration file with readable domain types; long lines are bundled type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-D2N-KDxj.d.ts | AI (source-diff): Same file as .d.mts counterpart; declaration file, not obfuscated code. | ai | |
| source-diff | obfuscated-file:dist/server-D2N-KDxj.d.mts | AI (source-diff): TypeScript declaration file with readable JSDoc and type definitions; long lines are from generated type unions, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/server-lP60FIU5.d.ts | AI (source-diff): TypeScript declaration file with long type lines; sample confirms readable domain types, not obfuscated executable code. | ai | |
| source-diff | obfuscated-file:dist/server-lP60FIU5.d.mts | AI (source-diff): TypeScript declaration file with long type lines; sample confirms readable domain types, not obfuscated executable code. | ai |
Versions (showing 51 of 140)
| Version | Deps | Published |
|---|---|---|
| 0.3.31 | 1 / 9 | |
| 0.3.30 | 1 / 9 | |
| 0.3.29 | 1 / 9 | |
| 0.3.28 | 1 / 9 | |
| 0.3.27 | 1 / 9 | |
| 0.3.26 | 1 / 9 | |
| 0.3.25 | 1 / 9 | |
| 0.3.24 | 1 / 9 | |
| 0.3.23 | 1 / 9 | |
| 0.3.22 | 1 / 9 | |
| 0.3.21 | 1 / 9 | |
| 0.3.20 | 1 / 9 | |
| 0.3.19 | 1 / 9 | |
| 0.3.18 | 1 / 9 | |
| 0.3.17 | 1 / 9 | |
| 0.3.16 | 1 / 9 | |
| 0.3.15 | 1 / 9 | |
| 0.3.14 | 1 / 9 | |
| 0.3.13 | 1 / 9 | |
| 0.3.12 | 1 / 9 | |
| 0.3.11 | 1 / 9 | |
| 0.3.10 | 1 / 9 | |
| 0.3.9 | 1 / 9 | |
| 0.3.8 | 1 / 9 | |
| 0.3.7 | 1 / 9 | |
| 0.3.6 | 1 / 9 | |
| 0.3.5 | 1 / 9 | |
| 0.3.4 | 1 / 9 | |
| 0.3.3 | 1 / 9 | |
| 0.3.2 | 1 / 9 | |
| 0.3.1 | 1 / 9 | |
| 0.3.0 | 1 / 9 | |
| 0.2.36 | 1 / 9 | |
| 0.2.35 | 1 / 9 | |
| 0.2.34 | 1 / 9 | |
| 0.2.33 | 1 / 9 | |
| 0.2.32 | 1 / 9 | |
| 0.2.31 | 1 / 9 | |
| 0.2.30 | 1 / 9 | |
| 0.2.29 | 1 / 9 | |
| 0.2.28 | 1 / 9 | |
| 0.2.27 | 1 / 9 | |
| 0.2.26 | 1 / 9 | |
| 0.2.25 | 1 / 9 | |
| 0.2.24 | 1 / 9 | |
| 0.2.23 | 1 / 9 | |
| 0.2.22 | 1 / 9 | |
| 0.2.21 | 1 / 9 | |
| 0.2.20 | 1 / 9 | |
| 0.2.19 | 1 / 9 | |
| 0.2.18 | 1 / 9 |
v0.3.31
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.30
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.29
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.28
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.27
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.26
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.25
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.24
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.23
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.22
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.21
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.20
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.19
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.18
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.17
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.16
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.15
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.14
1 findingPackage was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.13
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.12
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.11
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.10
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.9
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.8
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.7
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.6
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.5
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.4
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.3
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.2
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.1
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.3.0
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.36
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.35
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.34
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.33
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.32
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.31
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.30
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.29
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.28
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.27
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.26
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.25
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.24
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.23
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.22
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.21
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.20
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.19
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.
v0.2.18
3 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.