Gathering detailed insights and metrics for @chakra-ui/alert-dialog
Gathering detailed insights and metrics for @chakra-ui/alert-dialog
Chakra UI is a component system for building SaaS products with speed ⚡️
Installations
npm install @chakra-ui/alert-dialogDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS
Node Version
12.7.0
NPM Version
lerna/3.22.1/node@v12.7.0+x64 (darwin)
Score
54.5
Supply Chain
77.4
Quality
74
Maintenance
100
Vulnerability
98.9
License
Releases
3,516
@chakra-ui/cli@3.22.0
@chakra-ui/cli@3.22.0
Updated on Jul 07, 2025
@chakra-ui/panda-preset@3.22.0
@chakra-ui/panda-preset@3.22.0
Updated on Jul 07, 2025
@chakra-ui/react@3.22.0
@chakra-ui/react@3.22.0
Updated on Jul 07, 2025
@chakra-ui/charts@3.22.0
@chakra-ui/charts@3.22.0
Updated on Jul 07, 2025
@chakra-ui/panda-preset@3.21.1
@chakra-ui/panda-preset@3.21.1
Updated on Jun 28, 2025
@chakra-ui/charts@3.21.1
@chakra-ui/charts@3.21.1
Updated on Jun 28, 2025
Languages
6
TypeScript
MDX
JavaScript
CSS
HTML
Dockerfile
TypeScript (82.19%)
MDX (16.96%)
JavaScript (0.71%)
CSS (0.07%)
HTML (0.06%)
Dockerfile (0.01%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
39,352 Stars
10,957 Commits
3,443 Forks
201 Watchers
10 Branches
694 Contributors
Updated on Jul 12, 2025
Maintainers
2
Package Meta Information
Latest Version
1.0.0-next.3
Package Id
@chakra-ui/alert-dialog@1.0.0-next.3
Size
8.51 kB
NPM Version
lerna/3.22.1/node@v12.7.0+x64 (darwin)
Node Version
12.7.0
Published on
Jun 28, 2020
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Peer Dependencies
2
Dev Dependencies
1
@chakra-ui/alert-dialog
AlertDialog component is used interrupt the user with a mandatory confirmation or action.
Installation
1yarn add @chakra-ui/alert-dialog 2 3# or 4 5npm i @chakra-ui/alert-dialog
Import components
1import { 2 AlertDialog, 3 AlertDialogBody, 4 AlertDialogFooter, 5 AlertDialogHeader, 6 AlertDialogContent, 7 AlertDialogOverlay, 8} from "@chakra-ui/core"
Basic usage
Usage
AlertDialog requires that you provide the leastDestructiveRef prop.
Based on WAI-ARIA specifications, focus should be placed on the least destructive element when the dialog opens, to prevent users from accidentally confirming the destructive action.
1function AlertDialogExample() { 2 const [isOpen, setIsOpen] = React.useState() 3 const onClose = () => setIsOpen(false) 4 const cancelRef = React.useRef() 5 6 return ( 7 <> 8 <Button colorScheme="red" onClick={() => setIsOpen(true)}> 9 Delete Customer 10 </Button> 11 12 <AlertDialog 13 isOpen={isOpen} 14 leastDestructiveRef={cancelRef} 15 onClose={onClose} 16 > 17 <AlertDialogOverlay> 18 <AlertDialogContent> 19 <AlertDialogHeader fontSize="lg" fontWeight="bold"> 20 Delete Customer 21 </AlertDialogHeader> 22 23 <AlertDialogBody> 24 Are you sure? You can't undo this action afterwards. 25 </AlertDialogBody> 26 27 <AlertDialogFooter> 28 <Button ref={cancelRef} onClick={onClose}> 29 Cancel 30 </Button> 31 <Button colorScheme="red" onClick={onClose} ml={3}> 32 Delete 33 </Button> 34 </AlertDialogFooter> 35 </AlertDialogContent> 36 </AlertDialogOverlay> 37 </AlertDialog> 38 </> 39 ) 40}
No vulnerabilities found.
Reason
30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
no binaries found in the repo
Reason
7 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
- Warn: Project is vulnerable to: GHSA-f7f6-9jq7-3rqj
- Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
Reason
Found 5/25 approved changesets -- score normalized to 2
Reason
dependency not pinned by hash detected -- score normalized to 2
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-stale.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/issue-stale.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/quality.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/quality.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/quality.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/quality.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/quality.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/quality.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/quality.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/quality.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/quality.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/quality.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/release.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/chakra-ui/chakra-ui/release.yml/main?enable=pin
- Warn: containerImage not pinned by hash: sandbox/react-router/Dockerfile:1
- Warn: containerImage not pinned by hash: sandbox/react-router/Dockerfile:6
- Warn: containerImage not pinned by hash: sandbox/react-router/Dockerfile:11
- Warn: containerImage not pinned by hash: sandbox/react-router/Dockerfile:17: pin your Docker image by updating node:20-alpine to node:20-alpine@sha256:fa316946c0cb1f041fe46dda150f3085b71168555e5706ec0c7466a5bae12244
- Info: 0 out of 8 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
- Info: 0 out of 4 containerImage dependencies pinned
- Info: 2 out of 2 npmCommand dependencies pinned
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: topLevel 'actions' permission set to 'write': .github/workflows/issue-stale.yml:10
- Warn: no topLevel permission defined: .github/workflows/quality.yml:1
- Warn: no topLevel permission defined: .github/workflows/release.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 11 are checked with a SAST tool
Score
4.4
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More