@shoplflow/templates Apache-2.0 14 versions

@shoplflow/templates

npm Repository Homepage

14

Versions

Apache-2.0

License

No

Install Scripts

Verified

Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

jason-jeongdaisy.kimshoplworks-devkim-777kevin.jeon

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@shoplflow/utils	AI (phantom-deps): Internal org dependency; re-exported or used in config.	ai	2026/05/26
phantom-deps	phantom-dep:react-dom	AI (phantom-deps): Peer dep referenced in config; stable pattern for this component library.	ai	2026/05/14
phantom-deps	phantom-dep:framer-motion	AI (phantom-deps): Component library config reference; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:simplebar-react	AI (phantom-deps): Component library config reference; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:react-datepicker	AI (phantom-deps): Component library config reference; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:date-fns	AI (phantom-deps): Component library; deps referenced in config/re-exports, not direct imports. Stable pattern for this package.	ai	2026/05/14
phantom-deps	phantom-dep:@floating-ui/react	AI (phantom-deps): Component library config reference; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:@floating-ui/react-dom	AI (phantom-deps): Component library config reference; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:@shoplflow/hada-assets	AI (phantom-deps): Same-org sibling package; stable false positive for this monorepo package.	ai	2026/05/14
phantom-deps	phantom-dep:@floating-ui/core	AI (phantom-deps): Component library config reference; stable false positive for this package.	ai	2026/05/14

Versions (showing 14 of 115)

Version	Deps	Published
0.1.1	16 / 42	2025-07-07
0.1.0	16 / 42	2025-07-02
0.0.55	13 / 41	2025-06-13
0.0.54	13 / 41	2025-06-11
0.0.53	13 / 41	2025-05-26
0.0.52	13 / 41	2025-05-25
0.0.51	13 / 41	2025-05-20
0.0.50	13 / 41	2025-05-20
0.0.49	13 / 41	2025-05-19
0.0.48	13 / 41	2025-05-16
0.0.47	13 / 41	2025-05-15
0.0.46	13 / 41	2025-05-12
0.0.45	13 / 41	2025-05-08
0.0.44	13 / 41	2025-05-08

v0.1.1

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.1.0

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.55

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.54

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.53

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.52

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.51

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.50

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.49

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.48

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.47

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.46

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.45

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v0.0.44

1 finding

LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.