antd @0.10.0-beta26
rejected
This version was rejected.
It did not pass GreenFlagged's security review and is not served by the registry.
The findings and risk dispositions below explain why.
100
Risk Score
MIT
License
No
Install Scripts
35
Dependencies
32
Dev Dependencies
175.1 KB
Package Size
Published
An enterprise-class UI design language and React components implementation
Maintainers
sorryccafc163yiminghezhujun24
Keywords
antdesignreactreact-componentcomponentcomponentsuiframeworkfrontend
Dependencies (35)
| Package | Constraint | Registry Status |
|---|---|---|
| semver | ~5.0.3 | auto_approved |
| rc-menu | ~4.8.1 | auto_approved |
| rc-tabs | ~5.5.0 | auto_approved |
| rc-tree | ~0.19.0 | auto_approved |
| rc-util | ~3.0.1 | auto_approved |
| reqwest | ~2.0.5 | auto_approved |
| warning | ~2.1.0 | auto_approved |
| rc-radio | ~2.0.0 | auto_approved |
| rc-steps | ~1.4.1 | auto_approved |
| rc-table | ~3.6.1 | auto_approved |
| rc-dialog | ~5.2.2 | auto_approved |
| rc-select | ~5.1.1 | auto_approved |
| rc-slider | ~2.3.2 | pending |
| rc-switch | ~1.3.1 | auto_approved |
| rc-upload | ~1.7.0 | auto_approved |
| rc-animate | ~2.0.2 | rejected |
| rc-tooltip | ~3.2.0 | auto_approved |
| rc-trigger | ~1.0.6 | rejected |
| rc-calendar | 4.0.0-alpha19 | auto_approved |
| rc-checkbox | ~1.1.1 | auto_approved |
| rc-collapse | ~1.4.3 | auto_approved |
| rc-dropdown | ~1.4.3 | auto_approved |
| rc-progress | ~1.0.4 | auto_approved |
| react-slick | ~0.9.1 | auto_approved |
| css-animation | 1.1.x | auto_approved |
| object-assign | ~4.0.1 | auto_approved |
| rc-pagination | ~1.2.1 | auto_approved |
| rc-queue-anim | ~0.11.0 | auto_approved |
| util-deprecate | ~1.0.1 | auto_approved |
| rc-input-number | ~2.4.0 | auto_approved |
| rc-notification | ~1.3.0 | auto_approved |
| velocity-animate | ~1.2.2 | auto_approved |
| gregorian-calendar | ~4.0.1 | auto_approved |
| rc-form-validation | ~2.5.0 | rejected |
| gregorian-calendar-format | ~4.0.4 | auto_approved |
Dev Dependencies (32)
| Package | Constraint | Registry Status |
|---|---|---|
| less | ~2.5.3 | auto_approved |
| babel | ^5.8.29 | rejected |
| chalk | ^1.1.0 | auto_approved |
| react | ~0.14.1 | auto_approved |
| busboy | ^0.2.9 | auto_approved |
| eslint | ^1.1.0 | auto_approved |
| lodash | ^3.10.0 | auto_approved |
| history | ~1.13.1 | auto_approved |
| webpack | ^1.10.1 | auto_approved |
| gh-pages | ^0.3.1 | auto_approved |
| jest-cli | ~0.6.1 | auto_approved |
| nico-jsx | ~0.6.0 | Not imported |
| clipboard | ~1.5.3 | auto_approved |
| expect.js | ~0.3.1 | auto_approved |
| react-dom | ~0.14.1 | auto_approved |
| babel-core | ^5.8.29 | rejected |
| babel-jest | ^5.3.0 | auto_approved |
| css-loader | ^0.14.1 | auto_approved |
| pre-commit | 1.x | auto_approved |
| json-loader | ^0.5.1 | auto_approved |
| less-loader | ^2.2.0 | auto_approved |
| babel-eslint | ^4.1.0 | auto_approved |
| babel-loader | ^5.3.2 | pending |
| react-router | ~1.0.0 | auto_approved |
| webpack-babel-jest | ^1.0.0 | Not imported |
| autoprefixer-loader | ^3.1.0 | auto_approved |
| eslint-plugin-babel | ^2.1.1 | auto_approved |
| eslint-plugin-react | ^3.3.1 | auto_approved |
| eslint-config-airbnb | ^0.1.0 | auto_approved |
| webpack-dev-middleware | ^1.2.0 | auto_approved |
| react-addons-test-utils | ~0.14.1 | auto_approved |
| extract-text-webpack-plugin | ^0.8.1 | auto_approved |
Transitive Dependency Tree
55 transitive deps
max depth 7
├─
css-animation
1.1.x
→ 1.1.1
├─
gregorian-calendar
~4.0.1
→ 4.0.4
├─
gregorian-calendar-format
~4.0.4
→ 4.0.4
├─
object-assign
~4.0.1
→ 4.0.1
├─
rc-animate
~2.0.2
├─
rc-calendar
4.0.0-alpha19
├─
rc-checkbox
~1.1.1
→ 1.1.2
├─
rc-collapse
~1.4.3
→ 1.4.6
├─
rc-dialog
~5.2.2
→ 5.2.2
├─
rc-dropdown
~1.4.3
→ 1.4.12
├─
rc-form-validation
~2.5.0
├─
rc-input-number
~2.4.0
→ 2.4.7
├─
rc-menu
~4.8.1
→ 4.8.4
├─
rc-notification
~1.3.0
→ 1.3.4
├─
rc-pagination
~1.2.1
→ 1.2.2
├─
rc-progress
~1.0.4
→ 1.0.4
├─
rc-queue-anim
~0.11.0
→ 0.11.12
├─
rc-radio
~2.0.0
→ 2.0.1
├─
rc-select
~5.1.1
→ 5.1.2
├─
rc-slider
~2.3.2
├─
rc-steps
~1.4.1
→ 1.4.4
├─
rc-switch
~1.3.1
→ 1.3.3
├─
rc-table
~3.6.1
→ 3.6.3
├─
rc-tabs
~5.5.0
→ 5.5.2
├─
rc-tooltip
~3.2.0
→ 3.2.0
├─
rc-tree
~0.19.0
→ 0.19.1
├─
rc-trigger
~1.0.6
├─
rc-upload
~1.7.0
→ 1.7.2
├─
rc-util
~3.0.1
→ 3.0.1
├─
react-slick
~0.9.1
→ 0.9.3
├─
reqwest
~2.0.5
→ 2.0.5
├─
semver
~5.0.3
├─
util-deprecate
~1.0.1
→ 1.0.2
├─
velocity-animate
~1.2.2
→ 1.2.3
├─
warning
~2.1.0
→ 2.1.0
├─
add-dom-event-listener
1.x
→ 1.1.0
├─
classnames
^2.1.1
→ 2.5.1
├─
classnames
^2.2.1
→ 2.5.1
├─
classnames
2.x
→ 2.5.1
├─
classnames
^2.2.3
→ 2.5.1
├─
classnames
^2.2.0
→ 2.5.1
├─
dom-scroll-into-view
1.x
├─
gregorian-calendar
4.x
→ 4.1.6
├─
jquery
>= 1.4.3
→ 4.0.0
├─
json2mq
^0.2.0
→ 0.2.0
├─
loose-envify
^1.0.0
→ 1.4.0
├─
object-assign
^2.0.0
→ 2.1.1
├─
object-assign
4.x
→ 4.1.1
├─
prop-types
^15.5.8
→ 15.8.1
├─
rc-align
2.x
→ 2.4.5
├─
rc-animate
2.x
├─
rc-checkbox
1.x
→ 1.5.0
├─
rc-menu
4.x
→ 4.13.0
├─
rc-trigger
1.x
→ 1.11.0
├─
rc-util
3.x
→ 3.4.1
├─
react-responsive-mixin
^0.3.5
→ 0.3.5
├─
slick-carousel
^1.5.5
→ 1.8.1
├─
velocity-animate
~1.2.3
→ 1.2.3
├─
velocity-animate
1.x
→ 1.5.2
├─
warning
2.x
→ 2.1.0
├─
add-dom-event-listener
1.x
→ 1.1.0
├─
babel-runtime
^6.26.0
├─
babel-runtime
6.x
├─
can-use-dom
^0.1.0
→ 0.1.0
├─
classnames
2.x
→ 2.5.1
├─
create-react-class
15.x
→ 15.7.0
├─
dom-align
^1.7.0
→ 1.12.4
├─
dom-scroll-into-view
1.x
├─
enquire.js
^2.1.1
→ 2.1.6
├─
jquery
>= 1.4.3
→ 4.0.0
├─
js-tokens
^3.0.0 || ^4.0.0
→ 4.0.0
├─
json2mq
^0.2.0
→ 0.2.0
├─
loose-envify
^1.0.0
→ 1.4.0
├─
loose-envify
^1.4.0
→ 1.4.0
├─
object-assign
4.x
→ 4.1.1
├─
object-assign
^4.1.1
→ 4.1.1
├─
prop-types
^15.5.8
→ 15.8.1
├─
prop-types
15.x
→ 15.8.1
├─
rc-align
2.x
→ 2.4.5
├─
rc-animate
2.x
├─
rc-util
^4.0.4
→ 4.21.1
├─
rc-util
3.x
→ 3.4.1
├─
rc-util
^4.0.1
→ 4.21.1
├─
rc-util
4.x
→ 4.21.1
├─
react-is
^16.13.1
→ 16.13.1
├─
shallowequal
0.2.x
├─
string-convert
^0.2.0
├─
add-dom-event-listener
^1.1.0
→ 1.1.0
├─
add-dom-event-listener
1.x
→ 1.1.0
├─
babel-runtime
^6.26.0
├─
classnames
2.x
→ 2.5.1
├─
dom-align
^1.7.0
→ 1.12.4
├─
js-tokens
^3.0.0 || ^4.0.0
→ 4.0.0
├─
loose-envify
^1.4.0
→ 1.4.0
├─
loose-envify
^1.3.1
→ 1.4.0
├─
object-assign
^4.1.1
→ 4.1.1
├─
object-assign
4.x
→ 4.1.1
├─
prop-types
^15.5.8
→ 15.8.1
├─
prop-types
^15.5.10
→ 15.8.1
├─
rc-util
^4.0.4
→ 4.21.1
├─
react-is
^16.12.0
→ 16.13.1
├─
react-is
^16.13.1
→ 16.13.1
├─
react-lifecycles-compat
^3.0.4
→ 3.0.4
├─
shallowequal
^1.1.0
→ 1.1.0
├─
shallowequal
0.2.x
├─
string-convert
^0.2.0
├─
add-dom-event-listener
^1.1.0
→ 1.1.0
├─
js-tokens
^3.0.0 || ^4.0.0
→ 4.0.0
├─
loose-envify
^1.4.0
→ 1.4.0
├─
object-assign
4.x
→ 4.1.1
├─
object-assign
^4.1.1
→ 4.1.1
├─
prop-types
^15.5.10
→ 15.8.1
├─
react-is
^16.13.1
→ 16.13.1
├─
react-is
^16.12.0
→ 16.13.1
├─
react-lifecycles-compat
^3.0.4
→ 3.0.4
├─
shallowequal
^1.1.0
→ 1.1.0
├─
js-tokens
^3.0.0 || ^4.0.0
→ 4.0.0
├─
loose-envify
^1.4.0
→ 1.4.0
├─
object-assign
^4.1.1
→ 4.1.1
├─
object-assign
4.x
→ 4.1.1
├─
react-is
^16.13.1
→ 16.13.1
├─
js-tokens
^3.0.0 || ^4.0.0
→ 4.0.0
Changes from v0.9.4
Dependency Changes
| Change | Package | Version |
|---|---|---|
| added | reqwest | ~2.0.5 |
| added | rc-trigger | ~1.0.6 |
| added | rc-queue-anim | ~0.11.0 |
| removed | enter-animation | ~0.5.0 |
| removed | reqwest-without-xhr2 | ~2.0.2 |
| changed | rc-menu | ~4.6.0 → ~4.8.1 |
| changed | rc-tabs | ~5.3.2 → ~5.5.0 |
| changed | rc-tree | ~0.15.4 → ~0.19.0 |
| changed | rc-util | ~2.0.3 → ~3.0.1 |
| changed | rc-steps | ~1.3.2 → ~1.4.1 |
| changed | rc-table | ~3.2.0 → ~3.6.1 |
| changed | rc-dialog | ~5.0.2 → ~5.2.2 |
| changed | rc-select | ~4.9.0 → ~5.1.1 |
| changed | rc-slider | ~1.4.0 → ~2.3.2 |
| changed | rc-switch | ~1.2.0 → ~1.3.1 |
| changed | rc-upload | ~1.6.4 → ~1.7.0 |
| changed | rc-animate | ~1.2.9 → ~2.0.2 |
| changed | rc-tooltip | ~2.8.0 → ~3.2.0 |
| changed | rc-calendar | ~3.16.1 → 4.0.0-alpha19 |
| changed | rc-collapse | ~1.3.0 → ~1.4.3 |
| changed | rc-dropdown | ~1.3.3 → ~1.4.3 |
| changed | rc-progress | ~1.0.0 → ~1.0.4 |
| changed | react-slick | ~0.8.0 → ~0.9.1 |
| changed | css-animation | ~1.1.0 → 1.1.x |
| changed | rc-pagination | ~1.1.0 → ~1.2.1 |
| changed | rc-input-number | ~2.0.1 → ~2.4.0 |
| changed | rc-notification | ~1.1.0 → ~1.3.0 |
| changed | gregorian-calendar | ~3.0.0 → ~4.0.1 |
| changed | rc-form-validation | ~2.4.7 → ~2.5.0 |
| changed | gregorian-calendar-format | ~3.0.1 → ~4.0.4 |
Script Changes
+ jest+ webpack - release- lesslintFile Changes
200 added
1 removed
30 modified
size delta: +566.8 KB
Risk Dispositions (0 applicable to this version, 1 other)
Accepted rules are downgraded to INFO on future analyses; rejected rules escalate to CRITICAL.
Show 1 disposition(s) that do not match any finding on this version
| Rule | Source | Disposition | Author | Reason | |
|---|---|---|---|---|---|
bogus-package |
bogus-package | reject | AI | AI (bogus-package): Multiple maintainers including the publisher are SPAM-FLAGGED; this generalizes across versions published by these accounts. |
SAST Findings (1)
INFO
No provenance attestation
provenance
[Accepted risk] Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
Review Summary
Risk score: 100 (capped from 193). Findings: 19 medium (+190), 1 low (+3), 1 info (+0).
Commit: 908b8eb90f97 Browse source
Published to npm: