← Home

@saleor/macaw-ui

npm Repository Homepage

Saleor's UI component library

1
Versions
CC-BY-4.0
License
No
Install Scripts
Verified
Provenance

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

magullkostrowskiwcislo-saleormikisecpeelar9

Keywords

saleormacawmacaw-uireactui components

Accepted risks

Findings the reviewer chose to accept rather than block on.

SourceRuleReasonAccepted byWhen
phantom-deps phantom-dep:@dessert-box/react AI (phantom-deps): UI library dependency used in config/build; phantom-dep heuristic false positive for this package. ai
phantom-deps phantom-dep:@radix-ui/react-portal AI (phantom-deps): Radix UI component dependency; phantom-dep heuristic false positive for this UI library. ai
phantom-deps phantom-dep:@radix-ui/react-popover AI (phantom-deps): Radix UI component dependency; phantom-dep heuristic false positive for this UI library. ai
phantom-deps phantom-dep:@radix-ui/react-tooltip AI (phantom-deps): Radix UI component dependency; phantom-dep heuristic false positive for this UI library. ai
phantom-deps phantom-dep:@radix-ui/react-checkbox AI (phantom-deps): Radix UI component dependency; phantom-dep heuristic false positive for this UI library. ai
phantom-deps phantom-dep:@radix-ui/react-accordion AI (phantom-deps): Radix UI component dependency; phantom-dep heuristic false positive for this UI library. ai
phantom-deps phantom-dep:@vanilla-extract/css-utils AI (phantom-deps): CSS utility dependency; phantom-dep heuristic false positive for this UI library. ai
phantom-deps phantom-dep:@radix-ui/react-radio-group AI (phantom-deps): Radix UI component dependency; phantom-dep heuristic false positive for this UI library. ai

Versions (showing 1 of 1)

Version Deps Published
1.4.2 15 / 42

v1.4.2

1 finding
LOW No provenance attestation provenance

Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.