SecurityAdvisories
Security scanner
A package that helps prevent software with known security vulnerabilities from being installed in applications.
Security advisories as a simple composer exclusion list, updated daily
3k stars
76 watching
106 forks
last commit: about 2 months ago
Linked from 2 awesome lists
composerinfosecphpsecurity-advisoriessecurity-vulnerabilitiessecurity-vulnerability
ziadoz/awesome-php
guardrailsio/awesome-php-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 ocramius/packageversions | Provides quick access to version information of composer dependencies. | 3,212 |
 jorijn/laravel-security-checker | Automates vulnerability detection and reporting in Laravel applications | 199 |
 ffraenz/private-composer-installer | An extension to Composer that securely handles sensitive package URLs by outsourcing keys into environment variables or a configuration file. | 228 |
 dereuromark/composer-prefer-lowest | Verifies that dependencies used by composer update are at or above the minimum versions defined in composer.json | 20 |
 defuse/php-encryption | A PHP encryption library designed to provide secure and easy-to-use encryption functionality. | 3,806 |
 jeremylong/dependencycheck | Detects publicly disclosed vulnerabilities in application dependencies | 6,547 |
 closuretree/with_advisory_lock | Adds advisory locking to ActiveRecord models for concurrent access control | 630 |
 element119/module-sansec-composer-integrity-checker | A tool to detect and notify about unauthorized changes in project dependencies | 31 |
 hirak/prestissimo | An extension for Composer that speeds up package installations by downloading them in parallel. | 6,181 |
 vaimo/composer-patches | Automates patching of dependencies in a PHP project using a plugin for Composer | 291 |
 soullivaneuh/composer-versions-check | Checks if packages are up to date with their last major versions after an update | 234 |
 ionbazan/composer-diff | Tool to compare changes in Composer dependencies between different versions of a project's composer.lock file and generate a report. | 147 |
 maxgoedjen/secretive | An app for securely storing and managing SSH keys on macOS using the Secure Enclave | 7,289 |
 future-architect/vuls | A tool to automatically scan and report on vulnerabilities in software systems. | 11,021 |
 deepfence/secretscanner | A tool that scans container images and file systems for sensitive data such as passwords and keys. | 3,146 |