@docusaurus/theme-common

Common code for Docusaurus themes.

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures gitHead linked

Maintainers

fbslorberlex111docusaurus-bot

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@docusaurus/plugin-content-pages	AI (phantom-deps): Same org scope, declared for type-level integration in a monorepo context; not a security concern.	ai	2026/04/22
dependencies	unvetted-dep:@docusaurus/plugin-content-pages	AI (dependencies): First-party Docusaurus monorepo package pinned to same version; expected dependency for theme-common integration with pages plugin.	ai	2026/04/22
dependencies	unvetted-dep:@docusaurus/plugin-content-blog	AI (dependencies): First-party Docusaurus monorepo package pinned to same version; expected dependency for theme-common integration with blog plugin.	ai	2026/04/22
provenance	publisher-changed	AI (provenance): Docusaurus migrated to GitHub Actions CI/CD publishing with SLSA provenance attestation. The publisher change from slorber to GitHub Actions is a documented, intentional supply chain improvement for the facebook/docusaurus monorepo.	ai	2026/04/22
dependencies	unvetted-dep:@types/history	AI (dependencies): @types/history is a well-known DefinitelyTyped type package used by Docusaurus for module type aliases; no security risk.	ai	2026/04/22
dependencies	unvetted-dep:@types/react-router-config	AI (dependencies): @types/react-router-config is a well-known DefinitelyTyped type package used by Docusaurus for module type aliases; no security risk.	ai	2026/04/22
provenance	no-provenance	AI (provenance): Established Docusaurus monorepo package published by trusted maintainer slorber; absence of Sigstore provenance is not a concern here.	ai	2026/04/22
phantom-deps	phantom-dep:@types/history	AI (phantom-deps): Type-only package loaded by convention; stable false positive for this package.	ai	2026/04/21
phantom-deps	phantom-dep:@types/react	AI (phantom-deps): @types/react is a framework-scoped type package loaded by convention in TypeScript/React projects; not a real phantom dependency concern.	ai	2026/04/21
phantom-deps	phantom-dep:@docusaurus/module-type-aliases	AI (phantom-deps): Same-org type alias package; loaded by convention in the Docusaurus ecosystem, not a real phantom dependency.	ai	2026/04/21
phantom-deps	phantom-dep:@types/react-router-config	AI (phantom-deps): Type-only package loaded by convention; stable false positive for this package.	ai	2026/04/21
phantom-deps	phantom-dep:tslib	AI (phantom-deps): tslib is a known implicit runtime dependency for TypeScript-compiled packages; stable false positive.	ai	2026/04/21
bogus-package	bogus-package	AI (bogus-package): Monorepo package from facebook/docusaurus; inflated semver reflects lockstep versioning, short README and no keywords are typical for internal monorepo packages.	ai	2026/04/21

Versions (showing 69 of 169)

Hide prereleases

Version	Deps	Published
3.8.1-canary-6400	12 / 5	2025-09-23
3.8.1-canary-6399	12 / 5	2025-09-23
3.8.1-canary-6397	12 / 5	2025-09-19
3.8.1-canary-6396	12 / 5	2025-09-19
3.8.1-canary-6395	12 / 5	2025-09-12
3.8.1-canary-6394	12 / 5	2025-09-12
3.8.1-canary-6393	12 / 5	2025-09-12
3.8.1-canary-6392	12 / 5	2025-09-12
3.8.1-canary-6389	12 / 5	2025-09-09
3.8.1-canary-6388	12 / 5	2025-09-04
3.8.1-canary-6386	12 / 5	2025-08-29
3.8.1-canary-6384	12 / 5	2025-08-25
3.8.1-canary-6383	12 / 5	2025-08-24
3.8.1-canary-6379	12 / 5	2025-08-15
3.8.1-canary-6378	12 / 5	2025-08-04
3.8.1-canary-6376	12 / 5	2025-07-31
3.8.1-canary-6375	12 / 5	2025-07-28
3.8.1-canary-6374	12 / 5	2025-07-28
3.8.1-canary-6373	12 / 4	2025-07-24
3.8.1-canary-6372	12 / 4	2025-07-24
3.8.1-canary-6367	12 / 4	2025-07-15
3.8.1-canary-6366	12 / 4	2025-07-10
3.8.1-canary-6365	12 / 4	2025-07-07
3.8.1-canary-6364	12 / 4	2025-07-07
3.8.1-canary-6362	12 / 4	2025-07-04
3.8.1-canary-6361	12 / 4	2025-07-04
3.8.1-canary-6360	12 / 4	2025-07-03
3.8.1-canary-6359	12 / 4	2025-06-26
3.8.1-canary-6358	12 / 4	2025-06-26
3.8.1-canary-6356	12 / 4	2025-06-25
3.8.1-canary-6355	12 / 4	2025-06-25
3.8.1-canary-6353	12 / 4	2025-06-24
3.8.1-canary-6352	12 / 4	2025-06-24
3.8.1-canary-6350	12 / 4	2025-06-19
3.8.1-canary-6349	12 / 4	2025-06-19
3.8.1-canary-6348	12 / 4	2025-06-17
3.8.1-canary-6345	12 / 4	2025-06-13
3.8.1-canary-6343	12 / 4	2025-06-06
3.8.1-canary-6342	12 / 4	2025-06-06
3.8.0-canary-6341	12 / 4	2025-06-06
3.8.0-canary-6340	12 / 4	2025-06-05
3.8.0-canary-6339	12 / 4	2025-06-05
3.8.0-canary-6338	12 / 4	2025-06-05
3.8.0-canary-6335	12 / 4	2025-06-02
3.8.0-canary-6333	12 / 4	2025-05-30
3.8.0-canary-6332	12 / 4	2025-05-30
3.8.0-canary-6331	12 / 4	2025-05-30
3.8.0-canary-6328	12 / 4	2025-05-28
3.8.0-canary-6327	12 / 4	2025-05-27
3.8.0-canary-6324	12 / 4	2025-05-27
3.7.0-canary-6322	12 / 4	2025-05-27
3.7.0-canary-6321	12 / 4	2025-05-26
3.7.0-canary-6320	12 / 4	2025-05-26
3.7.0-canary-6319	12 / 4	2025-05-22
3.7.0-canary-6315	12 / 4	2025-05-15
3.7.0-canary-6313	12 / 4	2025-05-14
3.7.0-canary-6312	12 / 4	2025-05-14
3.7.0-canary-6310	12 / 4	2025-05-13
3.7.0-canary-6309	12 / 4	2025-05-13
3.7.0-canary-6308	12 / 4	2025-05-09
3.7.0-canary-6307	12 / 4	2025-05-09
3.7.0-canary-6306	12 / 4	2025-05-09
3.7.0-canary-6305	12 / 4	2025-05-09
3.7.0-canary-6304	12 / 4	2025-05-09
3.7.0-canary-6303	12 / 4	2025-05-08
3.7.0-canary-6302	12 / 4	2025-05-06
3.7.0-canary-6301	12 / 4	2025-05-06
3.7.0-canary-6298	12 / 4	2025-05-02
3.7.0-canary-6296	12 / 4	2025-04-30