SecurityAdvisories
Vulnerability checker
Prevents installation of software with known security vulnerabilities by excluding them from the composer dependency list
Security advisories as a simple composer exclusion list, updated daily
3k stars
77 watching
106 forks
last commit: 8 days ago
Linked from 2 awesome lists
composerinfosecphpsecurity-advisoriessecurity-vulnerabilitiessecurity-vulnerability
ziadoz/awesome-php
guardrailsio/awesome-php-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 ocramius/packageversions | Provides quick access to version information of composer dependencies. | 3,222 |
 jorijn/laravel-security-checker | Automates vulnerability detection and reporting in Laravel applications | 198 |
 ffraenz/private-composer-installer | An extension to Composer that securely handles sensitive package URLs by outsourcing keys into environment variables or a configuration file. | 228 |
 dereuromark/composer-prefer-lowest | Verifies that dependencies used by composer update are at or above the minimum versions defined in composer.json | 20 |
 defuse/php-encryption | A PHP encryption library designed to provide secure and easy-to-use encryption functionality. | 3,793 |
 jeremylong/dependencycheck | Detects publicly disclosed vulnerabilities in application dependencies | 6,441 |
 closuretree/with_advisory_lock | Adds advisory locking to ActiveRecord models for concurrent access control | 627 |
 element119/module-sansec-composer-integrity-checker | A tool to detect and notify about unauthorized changes in project dependencies | 31 |
 hirak/prestissimo | An extension for Composer that speeds up package installations by downloading them in parallel. | 6,185 |
 vaimo/composer-patches | Automates patching of dependencies in a PHP project using a plugin for Composer | 290 |
 soullivaneuh/composer-versions-check | Checks if packages are up to date with their last major versions after an update | 234 |
 ionbazan/composer-diff | Tool to compare changes in Composer dependencies between different versions of a project's composer.lock file and generate a report. | 147 |
 maxgoedjen/secretive | An app for securely storing and managing SSH keys on macOS using the Secure Enclave | 7,234 |
 future-architect/vuls | A tool to automatically scan and report on vulnerabilities in software systems. | 10,994 |
 deepfence/secretscanner | A tool that scans container images and file systems for sensitive data such as passwords and keys. | 3,134 |