SecurityAdvisories

Vulnerability checker

Prevents installation of software with known security vulnerabilities by excluding them from the composer dependency list

closed_lock_with_key Security advisories as a simple composer exclusion list, updated daily

GitHub

3k stars
77 watching
106 forks
last commit: 10 days ago
Linked from 2 awesome lists

composerinfosecphpsecurity-advisoriessecurity-vulnerabilitiessecurity-vulnerability

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
ocramius/packageversions Provides quick access to version information of composer dependencies. 3,222
jorijn/laravel-security-checker Automates vulnerability detection and reporting in Laravel applications 198
ffraenz/private-composer-installer An extension to Composer that securely handles sensitive package URLs by outsourcing keys into environment variables or a configuration file. 228
dereuromark/composer-prefer-lowest Verifies that dependencies used by composer update are at or above the minimum versions defined in composer.json 20
defuse/php-encryption A PHP encryption library designed to provide secure and easy-to-use encryption functionality. 3,793
jeremylong/dependencycheck Detects publicly disclosed vulnerabilities in application dependencies 6,456
closuretree/with_advisory_lock Adds advisory locking to ActiveRecord models for concurrent access control 627
element119/module-sansec-composer-integrity-checker A tool to detect and notify about unauthorized changes in project dependencies 31
hirak/prestissimo An extension for Composer that speeds up package installations by downloading them in parallel. 6,185
vaimo/composer-patches Automates patching of dependencies in a PHP project using a plugin for Composer 290
soullivaneuh/composer-versions-check Checks if packages are up to date with their last major versions after an update 234
ionbazan/composer-diff Tool to compare changes in Composer dependencies between different versions of a project's composer.lock file and generate a report. 147
maxgoedjen/secretive An app for securely storing and managing SSH keys on macOS using the Secure Enclave 7,234
future-architect/vuls A tool to automatically scan and report on vulnerabilities in software systems. 10,994
deepfence/secretscanner A tool that scans container images and file systems for sensitive data such as passwords and keys. 3,134