Book a demo →
npm package report

Is react-dom safe?

Checked against the XYZ decision brain: known-malicious corpus, advisories, commit-level findings, dependencies and provenance.

cyberxyz.io/packages/npm/react-dom
npm packagelast checked 2026-06-10

react-dom · verdict ALLOW · no known risk

0.6/10
XYZ SCORE
SUMMARY

Verdict ALLOW · 40 known dependencies · 1 flagged · provenance: unknown

Re-check live →

SIGNALS
Advisory HistoryclearOK

5 historical advisory record(s) on this package (max severity MODERATE). Add a version to check whether it is affected.

DEPENDENCIES
colors@0.6.2block
fbjs@0.1.0-alpha.4clean
fbjs@^0.8.1clean
fbjs@^0.8.16clean
fbjs@^0.8.4clean
fbjs@^0.8.9clean
jasmine-node@2.0.0-beta4clean
loose-envify@^1.1.0clean
object-assign@^4.1.0clean
object-assign@^4.1.1clean
prop-types@~15.5.0clean
prop-types@^15.5.10clean
prop-types@^15.5.6clean
prop-types@~15.5.7clean
prop-types@^15.6.0clean
prop-types@^15.6.2clean
react@0.10.0clean
react@^0.14.0clean
react@^0.14.0-beta1clean
react@^0.14.0-beta2clean
PACKAGE react-domECOSYSTEM npmDECISION ALLOW

Baked snapshot · run a live check for the current verdict · browse all packages