gatsby-interface — Greenflagged

Component library for Gatsby projects

Supply chain provenance

Status for the latest visible version.

No SLSA provenance npm registry signatures gitHead linked

Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.

Maintainers

smcgaritykathmbecknodebotanistj0sh77mcolelittletyhoppkgarbayamarvinjudehkkylemathewsdschaupiehwardpeettylerbarnesfksmthomaslekoartsdmccrawabhiaiyerjulienprachelbahldaniellewgatsbymlgualtieri-gatsbygatsby_integrationsgreglobinski

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
provenance	publisher-changed	AI (provenance): Publisher change from elanhant to greglobinski occurred in 2021 as part of a legitimate Gatsby team transition; new maintainer list includes known Gatsby core team members. Stable for this package.	ai	2026/04/24
maintainer-change	maintainer-removed	AI (maintainer-change): Removed maintainers are former Gatsby team members; consistent with org team changes, not a hostile takeover.	ai	2026/04/24
bogus-package	bogus-package	AI (bogus-package): pieh's mass package ownership reflects Gatsby's plugin ecosystem. No repo link is a minor gap for a well-known 2500+ day old package with 800+ versions.	ai	2026/04/24
maintainer-change	maintainer-added	AI (maintainer-change): Gatsby org team rotation; new maintainers are known Gatsby contributors. Normal for a long-lived org-owned package.	ai	2026/04/24
phantom-deps	phantom-dep:@loadable/component	AI (phantom-deps): Component library pattern; @loadable/component is a legitimate dependency for re-export or consumer configuration.	ai	2026/04/24
phantom-deps	phantom-dep:gatsby-design-tokens	AI (phantom-deps): Component library pattern; gatsby-design-tokens is a legitimate dependency for re-export or consumer configuration.	ai	2026/04/24
phantom-deps	phantom-dep:@types/lodash.sample	AI (phantom-deps): @types/lodash.sample is a legitimate dev dependency declared in package.json for TypeScript support; not a phantom dependency.	ai	2026/04/24
phantom-deps	phantom-dep:case	AI (phantom-deps): case is a legitimate dependency declared in package.json and used by the component library; not a phantom dependency.	ai	2026/04/24
phantom-deps	phantom-dep:theme-ui	AI (phantom-deps): theme-ui is a legitimate dependency declared in package.json and used by the component library; not a phantom dependency.	ai	2026/04/24
phantom-deps	phantom-dep:@reach/alert	AI (phantom-deps): @reach/alert is a legitimate dependency declared in package.json and used by the component library; not a phantom dependency.	ai	2026/04/24
phantom-deps	phantom-dep:@mdx-js/react	AI (phantom-deps): @mdx-js/react is a legitimate dependency declared in package.json and used by the component library; not a phantom dependency.	ai	2026/04/24
phantom-deps	phantom-dep:lodash.sample	AI (phantom-deps): lodash.sample is a legitimate dependency declared in package.json and used by the component library; not a phantom dependency.	ai	2026/04/24

Versions (showing 100 of 290)

Version	Deps	Published
0.0.193	14 / 110	2020-08-27
0.0.192	14 / 110	2020-08-26
0.0.191	14 / 110	2020-08-18
0.0.190	14 / 110	2020-08-17
0.0.189	14 / 110	2020-08-10
0.0.188	14 / 110	2020-08-05
0.0.187	14 / 110	2020-08-05
0.0.186	14 / 110	2020-08-01
0.0.185	14 / 110	2020-08-01
0.0.184	14 / 110	2020-07-30
0.0.183	14 / 110	2020-07-29
0.0.182	14 / 110	2020-07-22
0.0.181	14 / 110	2020-07-17
0.0.180	14 / 110	2020-07-17
0.0.179	14 / 110	2020-07-17
0.0.178	14 / 110	2020-07-13
0.0.177	14 / 110	2020-07-08
0.0.176	14 / 110	2020-07-08
0.0.175	14 / 110	2020-06-30
0.0.174	14 / 110	2020-06-30
0.0.173	14 / 110	2020-06-29
0.0.172	14 / 110	2020-06-29
0.0.171	14 / 110	2020-06-23
0.0.170	14 / 110	2020-06-23
0.0.169	14 / 110	2020-06-22
0.0.168	14 / 110	2020-06-15
0.0.167	14 / 110	2020-06-01
0.0.166	14 / 110	2020-05-27
0.0.165	14 / 110	2020-05-27
0.0.164	14 / 110	2020-05-21
0.0.163	14 / 110	2020-05-12
0.0.162	14 / 110	2020-05-12
0.0.161	14 / 110	2020-05-11
0.0.160	14 / 110	2020-05-11
0.0.159	14 / 110	2020-05-05
0.0.158	14 / 110	2020-05-05
0.0.157	13 / 110	2020-05-04
0.0.156	13 / 110	2020-05-01
0.0.155	13 / 110	2020-05-01
0.0.154	13 / 110	2020-05-01
0.0.153	13 / 110	2020-04-30
0.0.152	13 / 110	2020-04-29
0.0.151	13 / 110	2020-04-28
0.0.150	13 / 110	2020-04-27
0.0.149	13 / 110	2020-04-27
0.0.148	13 / 110	2020-04-27
0.0.147	13 / 110	2020-04-25
0.0.146	13 / 110	2020-04-25
0.0.145	13 / 110	2020-04-24
0.0.144	13 / 110	2020-04-24
0.0.143	15 / 113	2020-04-24
0.0.142	15 / 113	2020-04-20
0.0.141	15 / 113	2020-04-17
0.0.140	15 / 113	2020-04-17
0.0.139	15 / 113	2020-04-17
0.0.138	15 / 113	2020-04-16
0.0.137	15 / 113	2020-04-16
0.0.136	15 / 113	2020-04-16
0.0.135	15 / 113	2020-04-16
0.0.134	15 / 113	2020-04-16
0.0.133	14 / 113	2020-04-15
0.0.132	14 / 113	2020-04-14
0.0.131	14 / 113	2020-04-10
0.0.130	14 / 113	2020-04-09
0.0.129	14 / 113	2020-04-09
0.0.128	14 / 113	2020-04-07
0.0.127	14 / 113	2020-04-06
0.0.126	14 / 113	2020-04-06
0.0.125	14 / 113	2020-04-03
0.0.124	14 / 113	2020-04-03
0.0.123	14 / 113	2020-04-02
0.0.122	14 / 113	2020-04-02
0.0.121	14 / 113	2020-04-01
0.0.120	14 / 113	2020-04-01
0.0.119	14 / 113	2020-04-01
0.0.118	14 / 113	2020-03-31
0.0.117	14 / 113	2020-03-27
0.0.116	14 / 113	2020-03-27
0.0.115	14 / 113	2020-03-26
0.0.114	14 / 113	2020-03-26
0.0.113	14 / 113	2020-03-25
0.0.112	14 / 113	2020-03-25
0.0.111	14 / 112	2020-03-25
0.0.110	14 / 112	2020-03-25
0.0.109	13 / 114	2020-03-24
0.0.108	13 / 114	2020-03-23
0.0.107	13 / 115	2020-03-19
0.0.106	13 / 115	2020-03-19
0.0.105	13 / 115	2020-03-18
0.0.104	13 / 115	2020-03-18
0.0.103	13 / 115	2020-03-16
0.0.102	13 / 115	2020-03-16
0.0.101	13 / 115	2020-03-16
0.0.100	13 / 115	2020-03-13
0.0.99	13 / 115	2020-03-13
0.0.98	13 / 115	2020-03-12
0.0.97	13 / 115	2020-03-12
0.0.96	13 / 115	2020-03-12
0.0.95	13 / 115	2020-03-12
0.0.94	13 / 115	2020-03-11

Showing 100 of 290 Next page →