@storybook/react — Greenflagged

Storybook React renderer

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

ndelangenshilmantmeasdayghengeveldwinkervsbecksyannbfkylegachjreinholdkasperpeulenvalentinpalkovicdomyenstorybook-bot

Keywords

storybook

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:util-deprecate	AI (phantom-deps): Utility referenced in config/build files but not directly imported; stable pattern for this package.	ai	2026/04/24
phantom-deps	phantom-dep:@types/escodegen	AI (phantom-deps): Type package for escodegen; loaded indirectly through build system; expected for this package.	ai	2026/04/24
phantom-deps	phantom-dep:@types/node	AI (phantom-deps): Framework-scoped type package loaded by convention in TypeScript/Storybook build pipeline; stable pattern for this package.	ai	2026/04/24
phantom-deps	phantom-dep:@types/estree	AI (phantom-deps): Type package for AST handling; loaded indirectly through acorn/escodegen tooling; expected for this package.	ai	2026/04/24
phantom-deps	phantom-dep:@storybook/preview-api	AI (phantom-deps): Legitimate monorepo dependency within @storybook scope; declared and used transitively in bundled output.	ai	2026/04/24
phantom-deps	phantom-dep:@storybook/theming	AI (phantom-deps): Legitimate monorepo dependency within @storybook scope; declared and used transitively in bundled output.	ai	2026/04/24
phantom-deps	phantom-dep:@storybook/components	AI (phantom-deps): Legitimate monorepo dependency within @storybook scope; declared and used transitively in bundled output.	ai	2026/04/24
phantom-deps	phantom-dep:@storybook/manager-api	AI (phantom-deps): Legitimate monorepo dependency within @storybook scope; declared and used transitively in bundled output.	ai	2026/04/24
dependencies	unvetted-dep:@storybook/global	AI (dependencies): @storybook/global is a first-party Storybook org package used as a utility across the Storybook ecosystem; unvetted status reflects review gap, not actual risk.	ai	2026/04/23
provenance	no-provenance	AI (provenance): Established Storybook package published via GitHub Actions; lack of Sigstore attestation is a process gap, not a security signal for this well-known package.	ai	2026/04/23

Versions (showing 100 of 913)

Hide prereleases

Version	Deps	Published
8.6.7	6 / 20	2025-03-17
8.6.6	6 / 20	2025-03-15
8.6.5	6 / 20	2025-03-14
8.6.4	6 / 20	2025-03-05
8.6.3	6 / 20	2025-03-01
8.6.2	6 / 20	2025-02-27
8.6.1	6 / 20	2025-02-27
8.6.0	6 / 20	2025-02-25
8.5.8	6 / 20	2025-02-19
8.5.7	6 / 20	2025-02-18
8.5.6	6 / 20	2025-02-14
8.5.5	6 / 20	2025-02-12
8.5.4	6 / 20	2025-02-11
8.5.3	6 / 20	2025-02-01
8.5.2	6 / 20	2025-01-27
8.5.1	6 / 20	2025-01-23
8.5.0	6 / 20	2025-01-15
8.4.7	6 / 20	2024-12-05
8.4.6	6 / 20	2024-11-29
8.4.5	6 / 20	2024-11-20
8.4.4	6 / 20	2024-11-14
8.4.3	6 / 20	2024-11-13
8.4.2	6 / 20	2024-11-05
8.4.1	6 / 20	2024-11-01
8.4.0	6 / 20	2024-10-31
8.3.7	20 / 8	2024-11-04
8.3.6	20 / 8	2024-10-18
8.3.5	20 / 8	2024-10-04
8.3.4	20 / 8	2024-09-28
8.3.3	20 / 8	2024-09-24
8.3.2	20 / 8	2024-09-19
8.3.1	20 / 8	2024-09-16
8.3.0	20 / 8	2024-09-11
8.2.10	21 / 8	2024-11-04
8.2.9	21 / 8	2024-08-13
8.2.8	21 / 8	2024-08-07
8.2.7	21 / 8	2024-08-01
8.2.6	21 / 8	2024-07-24
8.2.5	21 / 8	2024-07-19
8.2.4	21 / 8	2024-07-16
8.2.3	17 / 8	2024-07-15
8.2.2	17 / 8	2024-07-11
8.2.1	17 / 8	2024-07-10
8.2.0	17 / 8	2024-07-10
8.1.11	21 / 7	2024-06-27
8.1.10	21 / 7	2024-06-17
8.1.9	21 / 7	2024-06-13
8.1.8	21 / 7	2024-06-13
8.1.7	21 / 7	2024-06-12
8.1.6	21 / 7	2024-06-05
8.1.5	21 / 7	2024-05-30
8.1.4	21 / 7	2024-05-27
8.1.3	21 / 7	2024-05-23
8.1.2	21 / 7	2024-05-21
8.1.1	21 / 7	2024-05-15
8.1.0	21 / 7	2024-05-14
8.0.10	21 / 7	2024-05-05
8.0.9	21 / 7	2024-04-22
8.0.8	21 / 7	2024-04-11
8.0.7	21 / 7	2024-04-11
8.0.6	21 / 7	2024-04-05
8.0.5	21 / 7	2024-03-28
8.0.4	21 / 7	2024-03-21
8.0.3	21 / 7	2024-03-21
8.0.2	21 / 7	2024-03-19
8.0.1	21 / 7	2024-03-18
8.0.0	21 / 7	2024-03-11
7.6.24	21 / 6	2026-03-06
7.6.23	21 / 6	2026-02-18
7.6.22	21 / 6	2026-02-17
7.6.21	21 / 6	2025-12-17
7.6.20	21 / 6	2024-06-24
7.6.19	21 / 6	2024-05-01
7.6.18	21 / 6	2024-04-23
7.6.17	21 / 6	2024-02-20
7.6.16	21 / 6	2024-02-15
7.6.15	21 / 6	2024-02-13
7.6.14	21 / 6	2024-02-10
7.6.13	21 / 6	2024-02-06
7.6.12	21 / 6	2024-01-31
7.6.11	21 / 6	2024-01-30
7.6.10	21 / 6	2024-01-18
7.6.9	21 / 6	2024-01-17
7.6.8	21 / 6	2024-01-12
7.6.7	21 / 6	2024-01-01
7.6.6	21 / 6	2023-12-19
7.6.5	21 / 6	2023-12-15
7.6.4	21 / 6	2023-12-07
7.6.3	21 / 6	2023-12-01
7.6.2	21 / 6	2023-11-30
7.6.1	21 / 6	2023-11-29
7.6.0	21 / 6	2023-11-28
7.5.3	21 / 5	2023-11-06
7.5.2	21 / 5	2023-10-30
7.5.1	21 / 5	2023-10-19
7.5.0	21 / 5	2023-10-17
7.4.6	21 / 5	2023-10-03
7.4.5	21 / 5	2023-09-24
7.4.4	21 / 5	2023-09-22
7.4.3	21 / 5	2023-09-20

Showing 100 of 913 Next page →