react-docgen — Greenflagged

A library to extract information from React components for documentation generation.

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

danez

Keywords

reactdocumentationdocumentation-generation

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
phantom-deps	phantom-dep:@types/resolve	AI (phantom-deps): @types/* packages are TypeScript type declarations legitimately included as deps for compiler consumption; not directly imported in source by convention.	ai	2026/04/23
phantom-deps	phantom-dep:@types/doctrine	AI (phantom-deps): @types/* packages are TypeScript type declarations legitimately included as deps for compiler consumption; not directly imported in source by convention.	ai	2026/04/23
phantom-deps	phantom-dep:@types/babel__core	AI (phantom-deps): @types/* packages are TypeScript type declarations legitimately included as deps for compiler consumption; not directly imported in source by convention.	ai	2026/04/23
phantom-deps	phantom-dep:@types/babel__traverse	AI (phantom-deps): @types/* packages are TypeScript type declarations legitimately included as deps for compiler consumption; not directly imported in source by convention.	ai	2026/04/23
bogus-package	bogus-package	AI (bogus-package): danez (Daniel Tschinder) is a listed contributor in package.json; spam flag is a false positive for this well-established reactjs org package.	ai	2026/04/23

Versions (showing 51 of 71)

View all versions

Version	Deps	Published
8.0.3	10 / 0	2026-03-13
8.0.2	10 / 0	2025-10-08
8.0.1	10 / 0	2025-08-17
8.0.0	10 / 0	2025-04-23
7.1.1	10 / 0	2025-01-26
7.1.0	10 / 0	2024-10-19
7.0.3	10 / 0	2024-01-12
7.0.2	10 / 0	2024-01-08
7.0.1	10 / 0	2023-11-12
7.0.0	10 / 0	2023-10-19
6.0.4	10 / 0	2023-08-30
6.0.3	10 / 0	2023-08-14
6.0.2	10 / 0	2023-07-15
6.0.1	10 / 0	2023-06-17
6.0.0	10 / 0	2023-06-16
5.4.3	10 / 17	2022-07-02
5.4.2	10 / 17	2022-06-13
5.4.1	10 / 19	2022-05-28
5.4.0	10 / 19	2021-05-08
5.3.1	8 / 19	2020-10-21
5.3.0	8 / 19	2020-02-26
5.2.1	8 / 19	2020-02-13
5.2.0	8 / 19	2020-02-06
5.1.0	8 / 19	2020-01-05
5.0.0	8 / 19	2019-12-11
4.1.1	7 / 19	2019-05-03
4.1.0	7 / 19	2019-03-05
4.0.1	7 / 19	2019-02-25
4.0.0	7 / 19	2019-02-15
3.0.0	7 / 20	2019-01-28
2.21.0	7 / 16	2018-06-26
2.20.1	7 / 16	2018-02-17
2.20.0	7 / 16	2017-11-09
2.19.0	7 / 15	2017-10-11
2.18.0	7 / 15	2017-09-05
2.17.0	7 / 13	2017-07-21
2.16.0	7 / 13	2017-06-14
2.15.0	7 / 13	2017-05-03
2.14.1	7 / 13	2017-04-18
2.14.0	7 / 13	2017-04-13
2.13.0	7 / 14	2016-12-22
2.12.1	7 / 14	2016-10-21
2.12.0	7 / 14	2016-10-20
2.11.0	7 / 15	2016-10-05
2.10.0	7 / 14	2016-08-25
2.9.1	7 / 13	2016-06-22
2.9.0	7 / 13	2016-06-21
2.8.2	7 / 6	2016-04-10
2.8.1	7 / 6	2016-04-08
2.8.0	7 / 6	2016-04-08
2.7.0	6 / 5	2016-01-29

v8.0.3

2 findings

HIGH Publisher changed: danez → GitHub Actions (on 2026-03-13) provenance

This version was published by a different npm account than previous versions on 2026-03-13. This could indicate a legitimate maintainer transition or an account compromise.

INFO Has SLSA provenance attestation provenance