react-native-screens — Greenflagged

Native navigation primitives for your React Native app.

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

kkafarswm-bot

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:react-native-gradle-plugin	AI (dependencies): react-native-gradle-plugin is a platform-specific Android build tool dependency; its use in react-native-screens is expected and benign for this package.	ai	2026/04/23
phantom-deps	phantom-dep:react-native-gradle-plugin	AI (phantom-deps): Declared but not directly imported because it is a platform-specific binary package for Android Gradle builds; this pattern is stable for react-native-screens.	ai	2026/04/23
source-diff	large-new-source-files	AI (source-diff): v3.28.0 added Reanimated integration (evidenced by reanimated/index paths in package.json), naturally producing many new source files. No obfuscation or malicious patterns indicated.	ai	2026/04/23
maintainer-change	maintainer-added	AI (maintainer-change): New maintainer tboba has clean history (115 approved, 0 rejected); legitimate transition for mature package.	ai	2026/04/23
provenance	no-provenance	AI (provenance): Provenance attestation is not yet standard practice on npm; absence is not a security signal for established packages.	ai	2026/04/23
publish-pattern	new-deps-added	AI (publish-pattern): react-freeze is a legitimate Software Mansion library intentionally added to react-native-screens for React 18 concurrent feature support; not a supply chain risk.	ai	2026/04/23
provenance	missing-githead	AI (provenance): Package transitioned to GitHub Actions CI publishing; missing gitHead is explained by the changed publish environment. SLSA provenance attestation provides stronger integrity assurance.	ai	2026/04/23
publish-pattern	suspicious-version-number	AI (publish-pattern): react-native-screens uses this nightly versioning pattern (date + commit hash suffix) for automated nightly CI builds; not a malware indicator for this package.	ai	2026/04/23
provenance	publisher-changed	AI (provenance): Publisher transition from kacperkapusciak to tboba is legitimate; new publisher has strong track record.	ai	2026/04/22
install-scripts	install-script:postinstall	AI (install-scripts): Postinstall runs git submodule update and yarn install—standard monorepo setup, not arbitrary code execution.	ai	2026/04/22
dependencies	unvetted-dep:react-freeze	AI (dependencies): react-freeze is a legitimate React Native ecosystem package; its use in react-native-screens for subtree freezing is expected and stable across versions.	ai	2026/04/22

Versions (showing 100 of 457)

Hide prereleases

Version	Deps	Published
4.17.0-nightly-20251008-12704e59c	2 / 41	2025-10-08
4.17.0-nightly-20251007-12704e59c	2 / 41	2025-10-07
4.17.0-nightly-20251006-b7c5f27c5	2 / 41	2025-10-06
4.17.0-nightly-20251005-291c17f0b	2 / 41	2025-10-05
4.17.0-nightly-20251004-291c17f0b	2 / 41	2025-10-04
4.17.0-nightly-20251003-291c17f0b	2 / 41	2025-10-03
4.17.0-nightly-20251002-b12dd035a	2 / 41	2025-10-02
4.17.0-nightly-20251001-4b4dc6810	2 / 41	2025-10-01
4.17.0-nightly-20250930-6525eabd8	3 / 41	2025-09-30
4.17.0-nightly-20250929-72cafaaa7	3 / 41	2025-09-29
4.17.0-nightly-20250928-3e26ddf2f	3 / 41	2025-09-28
4.17.0-nightly-20250927-3e26ddf2f	3 / 41	2025-09-27
4.17.0-nightly-20250926-3e26ddf2f	3 / 41	2025-09-26
4.17.0-nightly-20250925-e5413af3c	3 / 41	2025-09-25
4.17.0-nightly-20250924-47e45a6a0	3 / 41	2025-09-24
4.17.0-nightly-20250923-618c21f18	3 / 41	2025-09-23
4.17.0-nightly-20250922-cc3ae9728	3 / 41	2025-09-22
4.17.0-nightly-20250921-c1ecf0dd8	3 / 41	2025-09-21
4.17.0-nightly-20250920-c1ecf0dd8	3 / 41	2025-09-20
4.17.0-nightly-20250919-c1ecf0dd8	3 / 41	2025-09-19
4.17.0-nightly-20250918-c1ecf0dd8	3 / 41	2025-09-18
4.17.0-nightly-20250917-86b8fefc2	3 / 41	2025-09-17
4.17.0-nightly-20250915-93d10ad06	3 / 41	2025-09-15
4.17.0-nightly-20250914-93d10ad06	3 / 41	2025-09-14
4.17.0-nightly-20250913-93d10ad06	3 / 41	2025-09-13
4.17.0-nightly-20250912-93d10ad06	3 / 41	2025-09-12
4.17.0-nightly-20250911-93d10ad06	3 / 41	2025-09-11
4.17.0-nightly-20250910-93d10ad06	3 / 41	2025-09-10
4.17.0-nightly-20250909-c48227324	3 / 41	2025-09-09
4.17.0-nightly-20250908-d8795a346	3 / 41	2025-09-08
4.17.0-nightly-20250907-523a45601	3 / 41	2025-09-07
4.17.0-nightly-20250906-5abbab390	3 / 41	2025-09-06
4.17.0-nightly-20250905-5abbab390	3 / 41	2025-09-05
4.17.0-nightly-20250904-5abbab390	3 / 41	2025-09-04
4.16.0-nightly-20250903-4d2d41726	3 / 41	2025-09-03
4.16.0-nightly-20250902-21e40a296	3 / 41	2025-09-02
4.16.0-nightly-20250901-d15770f45	3 / 41	2025-09-01
4.16.0-nightly-20250831-93cee6720	3 / 41	2025-08-31
4.16.0-nightly-20250830-93cee6720	3 / 41	2025-08-30
4.16.0-nightly-20250829-ed11286f6	3 / 41	2025-08-29
4.16.0-nightly-20250828-7f3daac13	3 / 41	2025-08-28
4.16.0-nightly-20250827-cc169019f	3 / 41	2025-08-27
4.16.0-nightly-20250826-cc169019f	3 / 41	2025-08-26
4.16.0-nightly-20250825-f9a018387	3 / 41	2025-08-25
4.16.0-nightly-20250824-f9a018387	3 / 41	2025-08-24
4.16.0-nightly-20250823-f9a018387	3 / 41	2025-08-23
4.16.0-nightly-20250822-f9a018387	3 / 41	2025-08-22
4.16.0-nightly-20250821-83a0a7c51	3 / 41	2025-08-21
4.16.0-nightly-20250820-4672e9c68	3 / 41	2025-08-20
4.15.0-nightly-20250819-ba89a5696	3 / 41	2025-08-19
4.15.0-nightly-20250818-402a1c0b1	3 / 41	2025-08-18
4.15.0-nightly-20250817-402a1c0b1	3 / 41	2025-08-17
4.15.0-nightly-20250816-402a1c0b1	3 / 41	2025-08-16
4.15.0-nightly-20250815-402a1c0b1	3 / 41	2025-08-15
4.15.0-nightly-20250814-402a1c0b1	3 / 41	2025-08-14
4.15.0-nightly-20250813-873f5b285	3 / 41	2025-08-13
4.14.0-nightly-20250812-395ca9416	3 / 41	2025-08-12
4.14.0-nightly-20250811-b4358fd95	3 / 41	2025-08-11
4.14.0-nightly-20250810-c8ca9640d	3 / 41	2025-08-10
4.14.0-nightly-20250809-c8ca9640d	3 / 41	2025-08-09
4.14.0-nightly-20250808-c8ca9640d	3 / 41	2025-08-08
4.14.0-nightly-20250807-c8ca9640d	3 / 41	2025-08-07
4.14.0-nightly-20250806-d0c4c82d0	3 / 41	2025-08-06
4.14.0-nightly-20250805-d3ca9fcef	3 / 41	2025-08-05
4.14.0-nightly-20250804-d3ca9fcef	3 / 41	2025-08-04
4.14.0-nightly-20250803-1df3db25a	3 / 41	2025-08-03
4.14.0-nightly-20250802-1df3db25a	3 / 41	2025-08-02
4.14.0-nightly-20250801-1df3db25a	3 / 41	2025-08-01
4.14.0-nightly-20250731-de7e72ec4	3 / 41	2025-07-31
4.14.0-nightly-20250730-de7e72ec4	3 / 41	2025-07-30
4.14.0-nightly-20250729-f0d20c0a9	3 / 41	2025-07-29
4.14.0-nightly-20250728-2f81b7ca5	3 / 41	2025-07-28
4.14.0-nightly-20250727-7b39753fa	3 / 41	2025-07-27
4.14.0-nightly-20250726-7b39753fa	3 / 41	2025-07-26
4.14.0-nightly-20250725-7b39753fa	3 / 41	2025-07-25
4.14.0-nightly-20250724-94005e32b	3 / 41	2025-07-24
4.14.0-nightly-20250723-94005e32b	3 / 41	2025-07-23
4.14.0-nightly-20250722-a37f780dc	3 / 41	2025-07-22
4.14.0-nightly-20250721-77d8df81f	3 / 41	2025-07-21
4.14.0-nightly-20250720-767d007a0	3 / 42	2025-07-20
4.14.0-nightly-20250719-767d007a0	3 / 42	2025-07-19
4.14.0-nightly-20250718-767d007a0	3 / 42	2025-07-18
4.14.0-nightly-20250717-b81ec6aa5	3 / 42	2025-07-17
4.13.0-nightly-20250716-260b3fd78	3 / 42	2025-07-16
4.11.1-nightly-20250715-62eb784c6	3 / 42	2025-07-15
4.11.1-nightly-20250714-62eb784c6	3 / 42	2025-07-14
4.11.1-nightly-20250713-62eb784c6	3 / 42	2025-07-13
4.11.1-nightly-20250712-62eb784c6	3 / 42	2025-07-12
4.11.1-nightly-20250711-62eb784c6	3 / 42	2025-07-11
4.11.1-nightly-20250710-62eb784c6	3 / 42	2025-07-10
4.11.1-nightly-20250709-62eb784c6	3 / 42	2025-07-09
4.11.1-nightly-20250708-62eb784c6	3 / 42	2025-07-08
4.11.1-nightly-20250707-62eb784c6	3 / 42	2025-07-07
4.11.1-nightly-20250706-62eb784c6	3 / 42	2025-07-06
4.11.1-nightly-20250705-62eb784c6	3 / 42	2025-07-05
4.11.1-nightly-20250704-62eb784c6	3 / 42	2025-07-04
4.11.1-nightly-20250703-62eb784c6	3 / 42	2025-07-03
4.11.1-nightly-20250702-62eb784c6	3 / 42	2025-07-02
4.11.1-nightly-20250701-62eb784c6	3 / 42	2025-07-01
4.11.1-nightly-20250630-62eb784c6	3 / 42	2025-06-30

Showing 100 of 457 Next page →