@thesvg/icons
Tree-shakeable SVG icon components and raw SVG strings from thesvg.org - 3,800+ brand icons
Supply chain provenance
Status for the latest visible version.
Maintainers
Keywords
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:dist/tata-consultancy-services.cjs | AI (source-diff): Auto-generated SVG icon module; long lines are inline SVG data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/sabeco.cjs | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/tpbank.cjs | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/bamboo-airways.js | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/baoviet-holdings.js | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | large-new-source-files | AI (source-diff): Icon library regularly adds new brand icons; large file counts are expected for this package type. | ai | |
| source-diff | obfuscated-file:dist/bamboo-airways.cjs | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/baoviet-holdings.cjs | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/novaland.cjs | AI (source-diff): Auto-generated SVG icon file; long lines are inline SVG path data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/google-calendar-2026.js | AI (source-diff): Auto-generated SVG icon module; long lines are inline SVG data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/google-calendar-2026.cjs | AI (source-diff): Auto-generated SVG icon module; long lines are inline SVG data, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/pinecone.cjs | AI (source-diff): Long lines are auto-generated inline SVG path data, not obfuscation. Pattern is stable across all icon files in this package. | ai | |
| source-diff | obfuscated-file:dist/autodesk-inventor.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/aviva.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/awk.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/axa.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/bancor.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/bayer.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/bbc-news.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/bet365.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/bajaj-auto.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/aarch64.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/aerospike.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/al-jazeera.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/amplitude.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/angularjs.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/anker.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/apl.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/appcelerator.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/argocd.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/asiana-airlines.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| source-diff | obfuscated-file:dist/astrazeneca.cjs | AI (source-diff): Long lines are inline SVG XML strings in auto-generated icon modules, not obfuscation. | ai | |
| typosquat | typosquat.levenshtein:cors | AI (typosquat): SVG icon library; name similarity to 'cors' is coincidental, not impersonation. | ai |
Versions (showing 12 of 12)
| Version | Deps | Published |
|---|---|---|
| 3.0.10 | 0 / 2 | |
| 3.0.9 | 0 / 2 | |
| 3.0.8 | 0 / 2 | |
| 3.0.7 | 0 / 2 | |
| 3.0.6 | 0 / 2 | |
| 3.0.5 | 0 / 2 | |
| 3.0.4 | 0 / 2 | |
| 3.0.3 | 0 / 2 | |
| 3.0.2 | 0 / 2 | |
| 3.0.0 | 0 / 2 | |
| 2.1.7 | 0 / 2 | |
| 2.1.6 | 0 / 2 |
v3.0.10
11 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.9
10 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.8
8 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.7
6 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.6
7 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.5
4 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.4
4 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.3
2 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.2
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v3.0.0
24 findingsNewly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Newly added source file contains lines over 3000 chars, suggesting minified or obfuscated code. New obfuscated files are a strong attack indicator.
Published via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.
v2.1.7
1 findingPublished via CI/CD with Sigstore attestation (predicate: https://slsa.dev/provenance/v1). This is the strongest supply chain integrity signal.