@reactionary/core
This library was generated with [Nx](https://nx.dev).
Supply chain provenance
Status for the latest visible version.
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| typosquat | typosquat.levenshtein:cors | AI (typosquat): Scoped package @reactionary/core vs unscoped cors — edit-distance match is a false positive; different namespace and purpose. | ai | |
| phantom-deps | phantom-dep:vitest | AI (phantom-deps): vitest is listed as a runtime dep but is a dev/test tool; phantom-dep heuristic fires correctly but is a package quality issue, not a security one. | ai | |
| phantom-deps | phantom-dep:@nx/vite | AI (phantom-deps): @nx/vite is a build tool incorrectly listed as runtime dep; same false-positive pattern as vitest. | ai |
Versions (showing 29 of 132)
| Version | Deps | Published |
|---|---|---|
| 0.0.69 | 4 / 0 | |
| 0.0.68 | 4 / 0 | |
| 0.0.67 | 4 / 0 | |
| 0.0.66 | 4 / 0 | |
| 0.0.65 | 4 / 0 | |
| 0.0.64 | 4 / 0 | |
| 0.0.63 | 4 / 0 | |
| 0.0.62 | 4 / 0 | |
| 0.0.61 | 4 / 0 | |
| 0.0.60 | 4 / 0 | |
| 0.0.59 | 4 / 0 | |
| 0.0.58 | 4 / 0 | |
| 0.0.55 | 4 / 0 | |
| 0.0.54 | 4 / 0 | |
| 0.0.53 | 4 / 0 | |
| 0.0.52 | 4 / 0 | |
| 0.0.42 | 2 / 0 | |
| 0.0.41 | 2 / 0 | |
| 0.0.40 | 2 / 0 | |
| 0.0.39 | 2 / 0 | |
| 0.0.38 | 3 / 0 | |
| 0.0.37 | 3 / 0 | |
| 0.0.36 | 3 / 0 | |
| 0.0.35 | 3 / 0 | |
| 0.0.34 | 3 / 0 | |
| 0.0.33 | 3 / 0 | |
| 0.0.32 | 3 / 0 | |
| 0.0.28 | 2 / 0 | |
| 0.0.27 | 2 / 0 |
v0.0.69
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.68
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.67
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.66
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.65
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.64
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.63
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.62
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.61
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.60
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.59
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.58
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.55
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.54
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.53
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.52
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.42
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.41
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.40
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.39
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.38
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.37
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.36
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.35
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.34
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.33
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.32
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.28
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.
v0.0.27
2 findingsPackage name '@reactionary/core' is 1 edit(s) away from popular package 'cors'.
Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.