@tscircuit/runframe — Greenflagged

[tscircuit](https://github.com/tscircuit/tscircuit) ⋅ [View Examples](https://runframe.vercel.app)

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

seveibar

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@tscircuit/footprinter	AI (phantom-deps): Same-org dep referenced in config; stable pattern.	ai	2026/05/31
phantom-deps	phantom-dep:@radix-ui/react-progress	AI (phantom-deps): Config-referenced external; stable false positive for this package.	ai	2026/05/30
phantom-deps	phantom-dep:cssnano	AI (phantom-deps): CSS build tool referenced in config; not a runtime import.	ai	2026/05/18
phantom-deps	phantom-dep:jscad-fiber	AI (phantom-deps): Referenced in config/externals; stable false positive for this package.	ai	2026/05/18
phantom-deps	phantom-dep:circuit-to-svg	AI (phantom-deps): Config reference; stable false positive for this package.	ai	2026/05/18
phantom-deps	phantom-dep:comlink	AI (phantom-deps): Build/config reference, not a missing runtime import; stable pattern for this package.	ai	2026/05/18
phantom-deps	phantom-dep:schematic-symbols	AI (phantom-deps): Config reference; stable false positive for this package.	ai	2026/05/18
phantom-deps	phantom-dep:tailwindcss-animate	AI (phantom-deps): Tailwind plugin referenced in config; stable false positive.	ai	2026/05/18
phantom-deps	phantom-dep:@tscircuit/file-server	AI (phantom-deps): Same-org dep; config reference pattern, stable false positive.	ai	2026/05/18
source-diff	encoded-string-file:dist/standalone-preview.min.js	AI (source-diff): Long strings in this minified bundle are CSS animations and schematic rendering logic from the Vite build process — not obfuscated payloads. Stable false positive for this circuit visualization package.	ai	2026/04/27
source-diff	encoded-string-file:dist/standalone.min.js	AI (source-diff): Long strings in this minified bundle are CSS animations and schematic rendering logic from the Vite build process — not obfuscated payloads. Stable false positive for this circuit visualization package.	ai	2026/04/27
provenance	no-provenance	AI (provenance): Established package with 1863 versions and 17k weekly downloads; lack of provenance is consistent across all prior versions and is not a security concern here.	ai	2026/04/25

Versions (showing 92 of 1614)

Version	Deps	Published
0.0.459	27 / 37	2025-05-15
0.0.458	27 / 37	2025-05-15
0.0.457	27 / 37	2025-05-14
0.0.456	27 / 37	2025-05-14
0.0.455	27 / 37	2025-05-14
0.0.454	27 / 37	2025-05-14
0.0.453	27 / 37	2025-05-14
0.0.452	27 / 37	2025-05-14
0.0.451	27 / 37	2025-05-14
0.0.450	27 / 37	2025-05-13
0.0.449	27 / 37	2025-05-13
0.0.448	27 / 37	2025-05-13
0.0.447	27 / 37	2025-05-13
0.0.446	27 / 37	2025-05-13
0.0.445	27 / 37	2025-05-13
0.0.444	27 / 37	2025-05-13
0.0.443	27 / 37	2025-05-13
0.0.442	27 / 37	2025-05-12
0.0.441	27 / 37	2025-05-12
0.0.440	27 / 37	2025-05-12
0.0.439	27 / 37	2025-05-12
0.0.438	27 / 35	2025-05-12
0.0.437	27 / 35	2025-05-12
0.0.436	27 / 35	2025-05-12
0.0.435	27 / 35	2025-05-12
0.0.434	27 / 35	2025-05-12
0.0.433	27 / 35	2025-05-11
0.0.432	27 / 35	2025-05-11
0.0.431	27 / 35	2025-05-10
0.0.430	27 / 35	2025-05-10
0.0.429	27 / 35	2025-05-10
0.0.428	27 / 35	2025-05-10
0.0.427	27 / 35	2025-05-10
0.0.426	27 / 35	2025-05-10
0.0.425	27 / 35	2025-05-09
0.0.424	27 / 35	2025-05-09
0.0.423	27 / 35	2025-05-09
0.0.422	27 / 35	2025-05-08
0.0.421	27 / 35	2025-05-08
0.0.420	27 / 35	2025-05-08
0.0.419	27 / 35	2025-05-08
0.0.418	27 / 35	2025-05-08
0.0.417	27 / 35	2025-05-07
0.0.416	27 / 35	2025-05-07
0.0.415	27 / 35	2025-05-07
0.0.414	27 / 35	2025-05-07
0.0.413	27 / 35	2025-05-07
0.0.412	27 / 35	2025-05-07
0.0.411	27 / 35	2025-05-07
0.0.410	27 / 35	2025-05-07
0.0.409	27 / 35	2025-05-06
0.0.408	27 / 35	2025-05-06
0.0.407	27 / 35	2025-05-06
0.0.406	27 / 35	2025-05-06
0.0.405	27 / 35	2025-05-05
0.0.404	27 / 35	2025-05-05
0.0.403	27 / 35	2025-05-05
0.0.402	27 / 35	2025-05-05
0.0.401	27 / 35	2025-05-05
0.0.400	27 / 35	2025-05-05
0.0.399	27 / 35	2025-05-04
0.0.398	27 / 35	2025-05-04
0.0.397	27 / 35	2025-05-04
0.0.396	27 / 35	2025-05-04
0.0.395	27 / 35	2025-05-03
0.0.394	27 / 35	2025-05-03
0.0.393	27 / 35	2025-05-03
0.0.392	27 / 35	2025-05-02
0.0.391	27 / 35	2025-05-02
0.0.390	27 / 35	2025-05-02
0.0.389	27 / 35	2025-05-02
0.0.388	27 / 35	2025-05-02
0.0.387	27 / 35	2025-05-02
0.0.386	27 / 35	2025-05-02
0.0.385	27 / 35	2025-05-01
0.0.384	27 / 35	2025-05-01
0.0.383	27 / 35	2025-04-30
0.0.382	27 / 35	2025-04-30
0.0.381	27 / 35	2025-04-29
0.0.380	26 / 35	2025-04-29
0.0.379	26 / 35	2025-04-27
0.0.378	26 / 35	2025-04-27
0.0.377	26 / 35	2025-04-27
0.0.376	26 / 35	2025-04-27
0.0.375	26 / 35	2025-04-26
0.0.374	26 / 35	2025-04-26
0.0.373	26 / 35	2025-04-26
0.0.372	26 / 35	2025-04-25
0.0.371	25 / 35	2025-04-25
0.0.370	25 / 35	2025-04-25
0.0.369	25 / 35	2025-04-25
0.0.368	25 / 35	2025-04-24