{"id":15062743,"url":"https://github.com/fancyguy/composer-security-check-plugin","last_synced_at":"2025-04-10T10:11:06.191Z","repository":{"id":56664734,"uuid":"136611960","full_name":"fancyguy/composer-security-check-plugin","owner":"fancyguy","description":"Security check plugin for composer","archived":false,"fork":false,"pushed_at":"2020-10-26T14:21:40.000Z","size":45,"stargazers_count":7,"open_issues_count":7,"forks_count":4,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-03-24T09:03:23.440Z","etag":null,"topics":["composer","composer-plugin","php","security","security-advisories"],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/fancyguy.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-06-08T11:46:48.000Z","updated_at":"2024-05-24T18:45:32.000Z","dependencies_parsed_at":"2022-08-15T22:50:51.292Z","dependency_job_id":null,"html_url":"https://github.com/fancyguy/composer-security-check-plugin","commit_stats":null,"previous_names":[],"tags_count":4,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fancyguy%2Fcomposer-security-check-plugin","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fancyguy%2Fcomposer-security-check-plugin/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fancyguy%2Fcomposer-security-check-plugin/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fancyguy%2Fcomposer-security-check-plugin/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/fancyguy","download_url":"https://codeload.github.com/fancyguy/composer-security-check-plugin/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248198888,"owners_count":21063628,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["composer","composer-plugin","php","security","security-advisories"],"created_at":"2024-09-24T23:45:31.129Z","updated_at":"2025-04-10T10:11:06.168Z","avatar_url":"https://github.com/fancyguy.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Security Check Plugin for Composer\n\nFor global install:\n\n    composer global require fancyguy/composer-security-check-plugin\n\nFor project install:\n\n    composer require fancyguy/composer-security-check-plugin\n\nRun these commands to see some sample behavior:\n\n    mkdir insecure-project\n    cd insecure-project\n    composer init --name=\"insecure/project\" --description=\"insecure project\" -l MIT -n\n    composer require symfony/symfony:2.5.2\n    composer require fancyguy/composer-security-check-plugin\n    composer audit\n    composer audit --format=simple\n    composer audit --format=json\n    composer validate\n    composer require symfony/symfony --update-with-all-dependencies\n    composer audit\n\nBy default this tool uploads your `composer.lock` file to the [security.symfony.com](https://security.symfony.com/) webservice which uses the checks from https://github.com/FriendsOfPHP/security-advisories. \n\nYou can check offline by downloading a local version of this [repo](https://github.com/FriendsOfPHP/security-advisories) and specify its path using:\n\n    composer audit --audit-db /path/to/security-advisories\n\nInspired on: https://github.com/sensiolabs/security-checker \n\nAlternative: https://github.com/Roave/SecurityAdvisories\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffancyguy%2Fcomposer-security-check-plugin","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffancyguy%2Fcomposer-security-check-plugin","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffancyguy%2Fcomposer-security-check-plugin/lists"}