← Home

@react-aria/dnd

npm Repository Homepage

Spectrum UI components in React

100
Versions
Apache-2.0
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

devongovettaspro83

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
typosquat typosquat.levenshtein:zod AI (typosquat): @react-aria/dnd is a legitimate Adobe react-spectrum package; Levenshtein match to 'zod' is a false positive with no plausible confusion between these packages. ai
phantom-deps phantom-dep:@swc/helpers AI (phantom-deps): @swc/helpers is a known implicit runtime dependency for SWC-compiled packages; its presence in dependencies without direct imports is expected and stable for this package. ai
bogus-package bogus-package AI (bogus-package): Short README and missing keywords are typical for monorepo sub-packages; documentation lives in the parent adobe/react-spectrum repo. Not indicative of spam or malice. ai

Versions (showing 100 of 187)

Hide prereleases
Version Deps Published
3.12.1 3 / 2
3.12.0 3 / 0
3.11.6 11 / 0
3.11.5 11 / 0
3.11.4 11 / 0
3.11.3 11 / 0
3.11.2 11 / 0
3.11.1 11 / 0
3.11.0 11 / 0
3.10.1 11 / 0
3.10.0 11 / 0
3.9.3 10 / 0
3.9.2 10 / 0
3.9.1 10 / 0
3.9.0 10 / 0
3.8.1 10 / 0
3.8.0 10 / 0
3.7.4 10 / 0
3.7.3 10 / 0
3.7.2 10 / 0
3.7.1 10 / 0
3.7.0 10 / 0
3.6.1 10 / 0
3.6.0 10 / 0
3.5.3 10 / 0
3.5.2 10 / 0
3.5.1 10 / 0
3.5.0 10 / 0
3.4.3 11 / 0
3.4.2 11 / 0
3.4.1 11 / 0
3.4.0 11 / 0
3.3.0 11 / 0
3.2.1 11 / 0
3.2.0 11 / 0
3.1.0 11 / 0
3.0.1 11 / 0
3.0.0 11 / 0
3.0.0-nightly-ffb1a9d0d-260323 3 / 0
3.0.0-nightly-ff8f6f319-251118 11 / 0
3.0.0-nightly-fc3ea3e8c-251029 11 / 0
3.0.0-nightly-f8d513f06-251119 11 / 0
3.0.0-nightly-f61e75cea-251124 11 / 0
3.0.0-nightly-f61e75cea-251123 11 / 0
3.0.0-nightly-f3e3157d0-260219 11 / 0
3.0.0-nightly-f3e3157d0-260218 11 / 0
3.0.0-nightly-f1aafc6ce-251105 11 / 0
3.0.0-nightly-efc581c91-260413 3 / 0
3.0.0-nightly-eef731921-260216 11 / 0
3.0.0-nightly-eef731921-260215 11 / 0
3.0.0-nightly-eef731921-260214 11 / 0
3.0.0-nightly-eec6c1a4d-251223 11 / 0
3.0.0-nightly-ee49fdbaf-260306 11 / 0
3.0.0-nightly-ec7736d18-260421 3 / 0
3.0.0-nightly-e3913baaa-260422 3 / 0
3.0.0-nightly-e24140214-260309 11 / 0
3.0.0-nightly-e24140214-260308 11 / 0
3.0.0-nightly-e24140214-260307 11 / 0
3.0.0-nightly-daafdd59d-260224 11 / 0
3.0.0-nightly-daafdd59d-260223 11 / 0
3.0.0-nightly-daafdd59d-260222 11 / 0
3.0.0-nightly-daafdd59d-260221 11 / 0
3.0.0-nightly-d974b93de-260227 11 / 0
3.0.0-nightly-cfb620016-260126 11 / 0
3.0.0-nightly-cfb620016-260125 11 / 0
3.0.0-nightly-cfb620016-260124 11 / 0
3.0.0-nightly-cf7c1541e-251113 11 / 0
3.0.0-nightly-cdbfe4816-260303 11 / 0
3.0.0-nightly-c8d64314e-260208 11 / 0
3.0.0-nightly-c8d64314e-260207 11 / 0
3.0.0-nightly-c80e3d1d6-251212 11 / 0
3.0.0-nightly-c5a3ae829-260331 3 / 0
3.0.0-nightly-c2517d3bb-260115 11 / 0
3.0.0-nightly-beda77877-260414 3 / 0
3.0.0-nightly-b557ca906-251216 11 / 0
3.0.0-nightly-b4382b073-260130 11 / 0
3.0.0-nightly-b321d7de8-260122 11 / 0
3.0.0-nightly-b321d7de8-260121 11 / 0
3.0.0-nightly-ac718c6cd-260402 3 / 0
3.0.0-nightly-ab5e6f3db-251110 11 / 0
3.0.0-nightly-ab5e6f3db-251109 11 / 0
3.0.0-nightly-ab5e6f3db-251108 11 / 0
3.0.0-nightly-ab5e6f3db-251107 11 / 0
3.0.0-nightly-a9fccbde0-260302 11 / 0
3.0.0-nightly-a9fccbde0-260301 11 / 0
3.0.0-nightly-a9fccbde0-260228 11 / 0
3.0.0-nightly-a911b98f1-260325 3 / 0
3.0.0-nightly-a911b98f1-260324 3 / 0
3.0.0-nightly-a90e8f141-251218 11 / 0
3.0.0-nightly-a6e720d35-260304 11 / 0
3.0.0-nightly-9e18b4a28-260412 3 / 0
3.0.0-nightly-9e18b4a28-260411 3 / 0
3.0.0-nightly-9da8c73d9-251027 11 / 0
3.0.0-nightly-9da8c73d9-251026 11 / 0
3.0.0-nightly-9da8c73d9-251025 11 / 0
3.0.0-nightly-973473718-260305 11 / 0
3.0.0-nightly-953488a1a-260108 11 / 0
3.0.0-nightly-93d39fd65-251117 11 / 0
3.0.0-nightly-93d39fd65-251116 11 / 0
3.0.0-nightly-93d39fd65-251115 11 / 0
Showing 100 of 187 Next page →

v3.12.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.12.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.11.6

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.11.5

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.4

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.10.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.10.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.9.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.9.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.9.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.9.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.8.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.8.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.4

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.6.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.6.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.5.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.5.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.5.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.5.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.4.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.4.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.4.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.4.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.2.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.2.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.0.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.0.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.