@quatrain/ui-form-react
This package provides high-level, granular React components to dynamically generate forms based on Quatrain DataObjects and Property definitions.
Supply chain provenance
Status for the latest visible version.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| phantom-deps | phantom-dep:@mantine/hooks | AI (phantom-deps): UI library dep likely re-exported or used indirectly; stable false positive for this package. | ai | |
| phantom-deps | phantom-dep:@tabler/icons-react | AI (phantom-deps): Icon library dep likely re-exported; stable false positive for this UI form package. | ai | |
| phantom-deps | phantom-dep:@quatrain/ui | AI (phantom-deps): Same-org sibling dep; empty entry point is a re-export stub pattern, not a real phantom dep. | ai | |
| phantom-deps | phantom-dep:@quatrain/core | AI (phantom-deps): Same-org sibling dep; empty entry point is a re-export stub pattern, not a real phantom dep. | ai |
v1.1.5
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.1.4
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.1.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v1.1.1
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.