Book a demo →
npm package report

Is react-hook-form safe?

Checked against the XYZ decision brain: known-malicious corpus, advisories, commit-level findings, dependencies and provenance.

cyberxyz.io/packages/npm/react-hook-form
npm packagelast checked 2026-06-10

react-hook-form · verdict ALERT · review advised

4.0/10
XYZ SCORE
SUMMARY

Verdict ALERT · 40 known dependencies · provenance: unknown

Re-check live →

SIGNALS
Commit-Level AnalysistriggeredHIGH

7.73.0

Anomaly HistoryclearOK

1 historical anomaly alert(s) (version_jump) on this package. Add a version to check whether it is affected.

DEPENDENCIES
@ampproject/rollup-plugin-closure-compiler@^0.22.2clean
@ampproject/rollup-plugin-closure-compiler@^0.24.0clean
@babel/core@^7.10.2clean
@babel/core@^7.10.3clean
@babel/core@^7.10.4clean
@babel/core@^7.11.4clean
@babel/core@^7.12.7clean
@babel/core@^7.12.8clean
@babel/core@^7.8.4clean
@babel/core@^7.8.6clean
@babel/core@^7.8.7clean
@babel/core@^7.9.0clean
@babel/core@^7.9.6clean
babel-jest@^26.1.0clean
babel-jest@^26.6.3clean
babel-jest@^27.0.6clean
babel-jest@^27.1.1clean
babel-jest@^27.2.1clean
babel-jest@^27.2.4clean
babel-jest@^27.2.5clean
PACKAGE react-hook-formECOSYSTEM npmDECISION ALERT

Baked snapshot · run a live check for the current verdict · browse all packages