← Home

@tanstack/react-router

100
Versions
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

tannerlinsleyalemtuzlakkevinvandy

Keywords

reactlocationrouterroutingasyncasync routertypescript

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
provenance publisher-changed AI (provenance): TanStack/router migrated to GitHub Actions CI/CD publishing with SLSA provenance attestation — this is an improvement in supply chain security, not a risk. Stable for this package. ai
maintainer-change maintainer-added AI (maintainer-change): lachlancollins is a known TanStack contributor; addition is consistent with legitimate team growth for this well-established project. ai
dependencies unvetted-dep:@tanstack/history AI (dependencies): First-party TanStack sibling package from the same monorepo (TanStack/router). Expected dependency; not a security concern. ai
dependencies unvetted-dep:@tanstack/react-store AI (dependencies): First-party TanStack package from the same ecosystem. Expected dependency for @tanstack/react-router; not a security concern. ai
dependencies unvetted-dep:@tanstack/router-core AI (dependencies): First-party TanStack sibling package from the same monorepo (TanStack/router). Expected core dependency; not a security concern. ai

Versions (showing 100 of 732)

Version Deps Published
1.170.18 4 / 9
1.170.17 4 / 9
1.170.16 4 / 9
1.170.15 4 / 9
1.170.14 4 / 9
1.170.13 4 / 9
1.170.12 4 / 9
1.170.11 4 / 10
1.170.10 4 / 10
1.170.9 4 / 10
1.170.8 4 / 10
1.170.7 4 / 10
1.170.6 4 / 10
1.170.5 4 / 10
1.170.4 4 / 10
1.170.3 4 / 10
1.170.2 4 / 10
1.170.1 4 / 10
1.170.0 4 / 10
1.169.2 4 / 10
1.169.1 4 / 10
1.169.0 4 / 10
1.168.26 4 / 10
1.168.25 4 / 10
1.168.24 4 / 10
1.168.23 4 / 10
1.168.22 4 / 10
1.168.21 4 / 10
1.168.20 4 / 10
1.168.19 4 / 10
1.168.18 4 / 10
1.168.17 4 / 10
1.168.16 4 / 10
1.168.15 4 / 10
1.168.14 4 / 10
1.168.13 4 / 10
1.168.12 4 / 10
1.168.11 4 / 10
1.168.10 4 / 10
1.168.9 4 / 10
1.168.8 4 / 10
1.168.7 4 / 10
1.168.6 4 / 10
1.168.5 4 / 10
1.168.4 4 / 10
1.168.3 4 / 9
1.168.2 4 / 9
1.168.1 6 / 9
1.168.0 6 / 9
1.167.5 6 / 9
1.167.4 6 / 9
1.167.3 6 / 9
1.167.2 6 / 9
1.167.1 6 / 9
1.167.0 6 / 9
1.166.8 6 / 9
1.166.7 6 / 9
1.166.6 6 / 9
1.166.4 6 / 9
1.166.3 6 / 9
1.166.2 6 / 9
1.163.3 6 / 9
1.163.2 6 / 9
1.162.9 6 / 9
1.162.8 6 / 9
1.162.6 6 / 9
1.162.5 6 / 9
1.162.4 6 / 9
1.162.2 6 / 9
1.162.1 6 / 9
1.161.4 6 / 9
1.161.3 6 / 8
1.161.1 6 / 8
1.160.2 6 / 8
1.160.0 6 / 8
1.159.14 6 / 8
1.159.10 6 / 8
1.159.9 6 / 8
1.159.6 6 / 8
1.159.5 6 / 8
1.159.4 7 / 8
1.158.4 6 / 8
1.158.1 6 / 8
1.158.0 6 / 8
1.157.18 6 / 8
1.157.17 6 / 8
1.157.16 6 / 8
1.157.15 6 / 8
1.157.14 6 / 8
1.157.13 6 / 8
1.157.12 6 / 8
1.157.11 6 / 8
1.157.10 6 / 8
1.157.9 6 / 8
1.157.8 6 / 8
1.157.7 6 / 8
1.157.6 6 / 8
1.157.5 6 / 8
1.157.4 6 / 8
1.157.3 6 / 8
Showing 100 of 732 Next page →

v1.170.18

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.17

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.16

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.15

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.14

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.13

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.12

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.11

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.10

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.9

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.8

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.170.5

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.168.25

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.

v1.168.24

1 finding
INFO Has SLSA provenance attestation provenance

Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.