expo-camera — Greenflagged

A React component that renders a preview for the device's either front or back camera. Camera's parameters like zoom, auto focus, white balance and flash mode are adjustable. With expo-camera, one can also take photos and record videos that are saved to t

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

idebrentvatneexpoadminexponentbycedrickudochienalanhughestsapetaexpo-botphilplwschurmanccheeverjesseruderterriblebensjchmielaesamelson

Keywords

react-nativeexpocamera

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
npm-metadata	bundled-binaries	AI (npm-metadata): Prebuilt ZXingObjC xcframework binaries for iOS barcode scanning; expected for this native camera package.	ai	2026/05/21
provenance	missing-githead	AI (provenance): expo-camera canary builds are published from a different pipeline than stable releases; missing gitHead is expected for this package's canary workflow.	ai	2026/04/23
provenance	no-provenance	AI (provenance): Canary pre-release builds from the Expo monorepo do not go through the same provenance-attesting CI as stable releases; acceptable given publisher track record.	ai	2026/04/23
publish-pattern	suspicious-version-number	AI (publish-pattern): Expo canary releases consistently use date-stamped version strings (e.g., 55.0.x-canary-YYYYMMDD-hash); this pattern is standard for the expo ecosystem and not indicative of malice.	ai	2026/04/23
phantom-deps	phantom-dep:expo-permissions-interface	AI (phantom-deps): Interface package is part of Expo's modular architecture; declared and used indirectly through config.	ai	2026/04/22
phantom-deps	phantom-dep:expo-camera-interface	AI (phantom-deps): Interface package is part of Expo's modular architecture; declared and used indirectly through config.	ai	2026/04/22
phantom-deps	phantom-dep:expo-file-system-interface	AI (phantom-deps): Interface package is part of Expo's modular architecture; declared and used indirectly through config.	ai	2026/04/22
phantom-deps	phantom-dep:expo-face-detector-interface	AI (phantom-deps): Interface package is part of Expo's modular architecture; declared and used indirectly through config.	ai	2026/04/22
maintainer-change	maintainer-added	AI (maintainer-change): New maintainer philpl is associated with the Expo organization; this is a legitimate team addition for a major Expo SDK package.	ai	2026/04/22
maintainer-change	maintainer-removed	AI (maintainer-change): Maintainer roster changes are routine for a large org like 650 Industries/Expo; no evidence of hostile takeover.	ai	2026/04/22
provenance	publisher-changed	AI (provenance): brentvatne is a well-known Expo core team member publishing from the official expo/expo monorepo; publisher changes within the Expo org are routine and expected.	ai	2026/04/22
dependencies	unvetted-peer-dep:react-native	AI (dependencies): react-native is the expected peer dependency for React Native libraries; stable for this package.	ai	2026/04/21
dependencies	unvetted-peer-dep:expo	AI (dependencies): expo is the expected peer dependency for expo-camera; part of the official Expo SDK ecosystem.	ai	2026/04/21
dependencies	unvetted-dep:barcode-detector	AI (dependencies): barcode-detector is a legitimate runtime dependency for camera barcode detection; stable for this package.	ai	2026/04/21

Versions (showing 59 of 159)

Show 38 prereleases

Version	Deps	Published
13.8.0	1 / 1	2023-10-17
13.7.0	1 / 1	2023-09-15
13.6.0	1 / 1	2023-09-04
13.5.1	2 / 1	2023-08-02
13.5.0	2 / 1	2023-07-28
13.4.4	1 / 1	2023-09-11
13.4.3	2 / 1	2023-08-29
13.4.2	2 / 1	2023-07-04
13.4.1	2 / 1	2023-06-28
13.4.0	2 / 1	2023-06-13
13.3.0	2 / 1	2023-05-08
13.2.1	2 / 1	2023-02-09
13.2.0	2 / 1	2023-02-03
13.1.0	2 / 1	2022-11-23
13.0.0	2 / 1	2022-10-25
12.5.0	3 / 1	2023-01-23
12.4.0	3 / 1	2022-11-30
12.3.0	3 / 1	2022-07-07
12.2.0	3 / 1	2022-04-18
12.1.2	3 / 1	2022-02-04
12.1.1	3 / 1	2022-02-01
12.1.0	3 / 1	2021-12-03
12.0.3	4 / 1	2021-10-21
12.0.2	4 / 1	2021-10-15
12.0.1	4 / 1	2021-10-01
12.0.0	4 / 1	2021-09-28
11.3.1	4 / 1	2021-07-20
11.3.0	4 / 1	2021-07-19
11.2.2	4 / 1	2021-07-20
11.2.1	4 / 1	2021-06-24
11.2.0	4 / 1	2021-06-22
11.1.1	4 / 1	2021-06-16
11.1.0	4 / 1	2021-06-07
11.0.3	4 / 1	2021-05-03
11.0.2	3 / 1	2021-04-13
11.0.1	3 / 1	2021-04-01
11.0.0	3 / 1	2021-03-10
10.0.0	4 / 1	2021-01-15
9.1.1	3 / 1	2020-12-14
9.1.0	3 / 1	2020-11-17
9.0.0	3 / 1	2020-08-18
8.3.1	4 / 1	2020-05-29
8.3.0	4 / 1	2020-05-27
8.2.0	2 / 1	2020-03-03
8.1.0	2 / 1	2020-02-24
8.0.0	2 / 1	2019-12-02
7.0.0	2 / 1	2019-09-19
6.0.0	2 / 1	2019-07-27
5.0.1	2 / 1	2019-06-05
5.0.0	2 / 1	2019-05-29
4.0.0	2 / 1	2019-03-14
3.0.0	2 / 1	2019-02-27
2.0.0	2 / 1	2019-01-04
1.2.0	8 / 0	2018-10-31
1.1.1	8 / 0	2018-10-10
1.1.0	8 / 0	2018-09-11
1.0.2	7 / 5	2018-11-05
1.0.1	7 / 5	2018-08-14
1.0.0	7 / 6	2018-07-27