← Home

@react-spectrum/table

npm Repository Homepage

Spectrum UI components in React

100
Versions
Apache-2.0
License
No
Install Scripts
Missing
Provenance

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

devongovettaspro83

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
phantom-deps phantom-dep:@react-aria/grid AI (phantom-deps): Declared dependency used indirectly through component composition; typical for monorepo-style packages. ai
phantom-deps phantom-dep:@react-stately/grid AI (phantom-deps): Declared dependency used indirectly through component composition; typical for monorepo-style packages. ai
phantom-deps phantom-dep:@react-spectrum/button AI (phantom-deps): Declared dependency from same org scope; used indirectly through re-exports or composition. ai
phantom-deps phantom-dep:@react-stately/collections AI (phantom-deps): Declared dependency used indirectly through component composition; typical for monorepo-style packages. ai
semgrep semgrep:api-obfuscation-reflect AI (semgrep): Standard Proxy/Reflect.get pattern for property delegation in a table layout component; publicly visible on GitHub, not obfuscation. ai
phantom-deps phantom-dep:@swc/helpers AI (phantom-deps): @swc/helpers is explicitly listed as a runtime dependency in package.json; this is the correct declaration pattern for SWC-compiled packages. ai
bogus-package bogus-package AI (bogus-package): Established Adobe React Spectrum monorepo component; README/keywords signals are cosmetic and not indicative of spam for this package. ai

Versions (showing 100 of 203)

Hide prereleases
Version Deps Published
3.18.1 3 / 2
3.18.0 3 / 0
3.17.11 26 / 3
3.17.10 26 / 3
3.17.9 26 / 3
3.17.8 26 / 3
3.17.7 26 / 3
3.17.6 26 / 3
3.17.5 26 / 3
3.17.4 26 / 3
3.17.3 26 / 3
3.17.2 26 / 3
3.17.1 26 / 3
3.17.0 26 / 3
3.16.1 26 / 3
3.16.0 26 / 3
3.15.1 26 / 3
3.15.0 26 / 3
3.14.1 26 / 3
3.14.0 26 / 3
3.13.1 26 / 3
3.13.0 26 / 3
3.12.10 25 / 3
3.12.9 25 / 3
3.12.8 24 / 3
3.12.7 24 / 3
3.12.6 24 / 3
3.12.5 24 / 3
3.12.4 24 / 3
3.12.3 24 / 3
3.12.2 24 / 3
3.12.1 28 / 3
3.12.0 28 / 3
3.11.1 28 / 3
3.11.0 28 / 3
3.10.0 27 / 3
3.9.0 27 / 3
3.8.0 27 / 3
3.7.1 25 / 1
3.7.0 25 / 1
3.6.1 25 / 1
3.6.0 25 / 1
3.5.0 25 / 1
3.4.0 25 / 1
3.3.2 25 / 1
3.3.1 25 / 1
3.3.0 24 / 1
3.2.0 25 / 1
3.1.6 22 / 1
3.1.5 22 / 1
3.1.4 22 / 1
3.1.3 22 / 1
3.1.2 22 / 1
3.1.1 22 / 1
3.1.0 22 / 1
3.0.1 22 / 1
3.0.0 22 / 1
3.0.0-nightly-ffb1a9d0d-260323 3 / 0
3.0.0-nightly-ff8f6f319-251118 26 / 3
3.0.0-nightly-fc3ea3e8c-251029 26 / 3
3.0.0-nightly-f8d513f06-251119 26 / 3
3.0.0-nightly-f61e75cea-251124 26 / 3
3.0.0-nightly-f61e75cea-251123 26 / 3
3.0.0-nightly-f3e3157d0-260219 26 / 3
3.0.0-nightly-f3e3157d0-260218 26 / 3
3.0.0-nightly-f1aafc6ce-251105 26 / 3
3.0.0-nightly-efc581c91-260413 3 / 0
3.0.0-nightly-eef731921-260216 26 / 3
3.0.0-nightly-eef731921-260215 26 / 3
3.0.0-nightly-eef731921-260214 26 / 3
3.0.0-nightly-eec6c1a4d-251223 26 / 3
3.0.0-nightly-ee49fdbaf-260306 26 / 3
3.0.0-nightly-ec7736d18-260421 3 / 0
3.0.0-nightly-e3913baaa-260422 3 / 0
3.0.0-nightly-e24140214-260309 26 / 3
3.0.0-nightly-e24140214-260308 26 / 3
3.0.0-nightly-e24140214-260307 26 / 3
3.0.0-nightly-daafdd59d-260224 26 / 3
3.0.0-nightly-daafdd59d-260223 26 / 3
3.0.0-nightly-daafdd59d-260222 26 / 3
3.0.0-nightly-daafdd59d-260221 26 / 3
3.0.0-nightly-d974b93de-260227 26 / 3
3.0.0-nightly-cfb620016-260126 26 / 3
3.0.0-nightly-cfb620016-260125 26 / 3
3.0.0-nightly-cfb620016-260124 26 / 3
3.0.0-nightly-cf7c1541e-251113 26 / 3
3.0.0-nightly-cdbfe4816-260303 26 / 3
3.0.0-nightly-c8d64314e-260208 26 / 3
3.0.0-nightly-c8d64314e-260207 26 / 3
3.0.0-nightly-c80e3d1d6-251212 26 / 3
3.0.0-nightly-c5a3ae829-260331 3 / 0
3.0.0-nightly-c2517d3bb-260115 26 / 3
3.0.0-nightly-beda77877-260414 3 / 0
3.0.0-nightly-b4382b073-260130 26 / 3
3.0.0-nightly-b321d7de8-260122 26 / 3
3.0.0-nightly-b321d7de8-260121 26 / 3
3.0.0-nightly-ac718c6cd-260402 3 / 0
3.0.0-nightly-ab5e6f3db-251110 26 / 3
3.0.0-nightly-ab5e6f3db-251109 26 / 3
3.0.0-nightly-ab5e6f3db-251108 26 / 3
Showing 100 of 203 Next page →

v3.18.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.18.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.17.11

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Consider requesting the maintainer enable provenance via CI/CD.

v3.17.10

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.9

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.8

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.7

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.6

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.5

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.4

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.17.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.16.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.16.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.15.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.15.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.14.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.14.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.13.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.13.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.10

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.9

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.8

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.7

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.6

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.5

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.4

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.12.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.11.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.10.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.9.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.8.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.7.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.6.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.6.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.5.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.4.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.3.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.2.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.6

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.5

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.4

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.3

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.1.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.0.1

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.

v3.0.0

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.