react - dependency health snapshot - depmedic

depmedic / health / react

react v18.2.0

React is a JavaScript library for building user interfaces.

A
94/100 depmedic health score
snapshot taken 2026-04-28T07:16:58.770Z

Score breakdown

Popularity92/100
Maintenance97/100
Quality90/100
Risk (penalty for deprecated)100/100

Snapshot

Weekly downloads
3.4M
Monthly downloads
63.8M
npm dependents
0
GitHub stars
200.4K
Open issues
1.1K
License
MIT
TypeScript types
no
Maintainers (top 5)
gaearon, acdlite, gnoff, fb, trueadm

Embed the badge

Drop one of these into your README. Updates whenever depmedic re-runs the snapshot.

depmedic health: 94/100 (A)

![depmedic health](https://depmedicdev-byte.github.io/health/badge/react.svg)

Use depmedic locally on this package

# In your project that depends on react:
npm install react
npx depmedic                    # vulnerability triage on your install
npx depmedic --severity=high    # CI-friendly: exits 1 on high+critical

Want a deep audit of react for vendor review?

The Vendor Dossier PDF goes deeper than this snapshot: full advisory list (resolved + open), maintainer drift, release cadence, transitive risk, license tree. $9 one-time per package.

Order Vendor Dossier ($9) More tools

Org-wide monitoring

Track every package across your repos. Get an email when any one slips below your minimum grade. $19/mo.

Org Dep Health Monitor ($19/mo)