@djangocfg/ui-tools — Greenflagged

Heavy React tools with lazy loading - for Electron, Vite, CRA, Next.js apps

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

markolofsen

Keywords

ui-toolsreactlazy-loadingvideo-playeraudio-playerjson-formmermaidcode-highlightgallerylightboxmapmaplibremonaco-editorcode-editor

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
source-diff	obfuscated-file:src/tools/visual/design/FileIcon/icons/icon-data.ts	AI (source-diff): Auto-generated static SVG icon data module; long lines are inline SVG strings, not obfuscation. Stable pattern for this package.	ai	2026/06/01
phantom-deps	phantom-dep:@dnd-kit/sortable	AI (phantom-deps): Used via re-exports/config; stable false positive for this UI toolkit.	ai	2026/05/31
phantom-deps	phantom-dep:@types/qrcode	AI (phantom-deps): Type-only dep; not imported at runtime by design.	ai	2026/05/31
phantom-deps	phantom-dep:@tiptap/extension-bubble-menu	AI (phantom-deps): Tiptap extensions loaded via config/re-export; stable false positive.	ai	2026/05/31
phantom-deps	phantom-dep:@dnd-kit/utilities	AI (phantom-deps): Same pattern as other dnd-kit deps; stable false positive.	ai	2026/05/31
phantom-deps	phantom-dep:@dnd-kit/modifiers	AI (phantom-deps): Same pattern as other dnd-kit deps; stable false positive.	ai	2026/05/31
source-diff	obfuscated-file:src/tools/Chat/core/audio/sounds/notification.ts	AI (source-diff): Base64-encoded MP3 audio asset inlined as data URL; documented pattern, not obfuscated code.	ai	2026/05/31
source-diff	obfuscated-file:src/tools/Chat/core/audio/sounds/mention.ts	AI (source-diff): Base64-encoded MP3 audio asset inlined as data URL; documented pattern, not obfuscated code.	ai	2026/05/31
source-diff	obfuscated-file:src/tools/Chat/core/audio/sounds/received.ts	AI (source-diff): Base64-encoded MP3 audio asset inlined as data URL; documented pattern, not obfuscated code.	ai	2026/05/31
source-diff	obfuscated-file:src/tools/Chat/core/audio/sounds/start.ts	AI (source-diff): Base64-encoded MP3 audio asset inlined as data URL; documented pattern, not obfuscated code.	ai	2026/05/31
source-diff	obfuscated-file:src/tools/FileIcon/icons/icon-data.ts	AI (source-diff): Auto-generated vendored SVG icon data from material-file-icons (MIT); comment confirms provenance.	ai	2026/05/30
source-diff	obfuscated-file:src/tools/Chat/core/audio/sounds/error.ts	AI (source-diff): Base64-encoded MP3 audio asset inlined as data URL; comment and content confirm legitimate use.	ai	2026/05/30
phantom-deps	phantom-dep:wavesurfer.js	AI (phantom-deps): Same re-export/config pattern; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:vidstack	AI (phantom-deps): Declared as dependency for re-export/config use; stable pattern for this multi-tool package.	ai	2026/05/14
phantom-deps	phantom-dep:@wavesurfer/react	AI (phantom-deps): Same re-export/config pattern; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:@tiptap/pm	AI (phantom-deps): Tiptap peer dep used indirectly; stable false positive for this package.	ai	2026/05/14
phantom-deps	phantom-dep:media-icons	AI (phantom-deps): Same re-export/config pattern; stable false positive for this package.	ai	2026/05/14

Versions (showing 100 of 292)

Version	Deps	Published
2.1.309	36 / 16	2026-04-25
2.1.308	36 / 16	2026-04-25
2.1.307	36 / 16	2026-04-25
2.1.304	36 / 16	2026-04-25
2.1.303	32 / 16	2026-04-25
2.1.302	32 / 16	2026-04-25
2.1.301	32 / 16	2026-04-25
2.1.300	32 / 16	2026-04-25
2.1.299	32 / 16	2026-04-25
2.1.298	32 / 16	2026-04-25
2.1.297	32 / 16	2026-04-25
2.1.294	32 / 16	2026-04-25
2.1.293	32 / 16	2026-04-25
2.1.292	32 / 16	2026-04-25
2.1.291	31 / 16	2026-04-25
2.1.290	31 / 16	2026-04-24
2.1.289	27 / 16	2026-04-23
2.1.287	27 / 14	2026-04-22
2.1.286	27 / 14	2026-04-22
2.1.285	27 / 14	2026-04-21
2.1.284	27 / 14	2026-04-20
2.1.283	27 / 14	2026-04-20
2.1.282	27 / 14	2026-04-20
2.1.281	27 / 14	2026-04-19
2.1.280	27 / 14	2026-04-19
2.1.279	27 / 14	2026-04-19
2.1.277	27 / 14	2026-04-19
2.1.276	27 / 14	2026-04-18
2.1.275	27 / 14	2026-04-17
2.1.274	27 / 14	2026-04-17
2.1.272	27 / 14	2026-04-17
2.1.271	27 / 14	2026-04-17
2.1.270	27 / 14	2026-04-16
2.1.268	27 / 14	2026-04-15
2.1.267	27 / 14	2026-04-15
2.1.266	27 / 14	2026-04-15
2.1.264	27 / 14	2026-04-15
2.1.263	27 / 14	2026-04-15
2.1.262	27 / 14	2026-04-11
2.1.261	27 / 14	2026-04-11
2.1.260	27 / 14	2026-04-09
2.1.259	27 / 14	2026-04-09
2.1.257	27 / 14	2026-04-09
2.1.256	27 / 14	2026-04-08
2.1.255	27 / 14	2026-04-08
2.1.254	27 / 14	2026-04-08
2.1.252	27 / 14	2026-04-08
2.1.251	27 / 14	2026-04-08
2.1.249	27 / 14	2026-04-07
2.1.248	27 / 14	2026-04-07
2.1.247	27 / 14	2026-04-04
2.1.246	27 / 14	2026-04-04
2.1.243	27 / 14	2026-04-03
2.1.242	27 / 14	2026-03-24
2.1.241	19 / 14	2026-03-24
2.1.240	19 / 14	2026-03-23
2.1.239	18 / 14	2026-03-22
2.1.238	18 / 14	2026-03-22
2.1.237	18 / 14	2026-03-22
2.1.236	18 / 14	2026-03-21
2.1.235	18 / 14	2026-03-21
2.1.234	18 / 14	2026-03-21
2.1.233	18 / 14	2026-03-18
2.1.232	18 / 14	2026-03-17
2.1.231	18 / 14	2026-03-16
2.1.230	18 / 14	2026-03-15
2.1.229	18 / 14	2026-03-15
2.1.228	18 / 14	2026-03-15
2.1.227	18 / 14	2026-03-14
2.1.226	18 / 14	2026-03-14
2.1.225	18 / 14	2026-03-14
2.1.224	18 / 14	2026-03-14
2.1.223	18 / 14	2026-03-14
2.1.222	18 / 14	2026-03-14
2.1.221	18 / 14	2026-03-14
2.1.219	18 / 14	2026-03-14
2.1.218	18 / 14	2026-03-14
2.1.217	18 / 14	2026-03-13
2.1.216	18 / 14	2026-03-13
2.1.215	18 / 14	2026-03-11
2.1.213	18 / 14	2026-03-10
2.1.212	18 / 14	2026-03-09
2.1.210	18 / 14	2026-03-09
2.1.209	18 / 14	2026-03-09
2.1.208	18 / 14	2026-03-08
2.1.207	18 / 14	2026-03-08
2.1.206	18 / 14	2026-03-08
2.1.205	18 / 14	2026-03-08
2.1.204	18 / 14	2026-03-07
2.1.203	18 / 14	2026-03-07
2.1.202	18 / 14	2026-03-07
2.1.201	18 / 14	2026-03-07
2.1.200	18 / 14	2026-03-03
2.1.198	18 / 14	2026-03-02
2.1.197	18 / 14	2026-03-01
2.1.196	18 / 14	2026-03-01
2.1.194	18 / 14	2026-02-28
2.1.193	18 / 14	2026-02-28
2.1.192	18 / 14	2026-02-28
2.1.191	18 / 14	2026-02-27

Showing 100 of 292 Next page →