{"id":13617178,"url":"https://github.com/symfonycorp/insight","last_synced_at":"2025-10-05T12:59:41.496Z","repository":{"id":9348722,"uuid":"11199521","full_name":"symfonycorp/insight","owner":"symfonycorp","description":"SymfonyInsight Official SDK","archived":false,"fork":false,"pushed_at":"2025-09-16T13:46:44.000Z","size":234,"stargazers_count":82,"open_issues_count":5,"forks_count":36,"subscribers_count":11,"default_branch":"main","last_synced_at":"2025-09-16T14:33:30.637Z","etag":null,"topics":["php","quality","sdk","symfony"],"latest_commit_sha":null,"homepage":"https://insight.symfony.com/","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/symfonycorp.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"tidelift":"packagist/symfonycorp/connect","custom":["https://symfony.com/cloud/","https://live.symfony.com/","https://insight.symfony.com/","https://certification.symfony.com/"]}},"created_at":"2013-07-05T12:53:54.000Z","updated_at":"2025-09-16T12:01:10.000Z","dependencies_parsed_at":"2024-06-19T06:14:37.584Z","dependency_job_id":"1b1c143e-8e62-4700-a156-d2999d6c73e4","html_url":"https://github.com/symfonycorp/insight","commit_stats":{"total_commits":118,"total_committers":27,"mean_commits":4.37037037037037,"dds":0.6271186440677966,"last_synced_commit":"dac4f0e7133eab7da116d68931933cdbf442a394"},"previous_names":[],"tags_count":19,"template":false,"template_full_name":null,"purl":"pkg:github/symfonycorp/insight","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/symfonycorp%2Finsight","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/symfonycorp%2Finsight/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/symfonycorp%2Finsight/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/symfonycorp%2Finsight/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/symfonycorp","download_url":"https://codeload.github.com/symfonycorp/insight/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/symfonycorp%2Finsight/sbom","scorecard":{"id":863074,"data":{"date":"2025-08-11","repo":{"name":"github.com/symfonycorp/insight","commit":"c3371b7cf24609abd7493de689168e7d96ce9ae5"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.3,"checks":[{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":3,"reason":"Found 6/17 approved changesets -- score normalized to 3","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/ci.yaml:1","Warn: no topLevel permission defined: .github/workflows/only-main.yaml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/ci.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yaml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/ci.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/ci.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yaml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/ci.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/ci.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/only-main.yaml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/only-main.yaml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/only-main.yaml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/only-main.yaml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/only-main.yaml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/symfonycorp/insight/only-main.yaml/main?enable=pin","Warn: downloadThenRun not pinned by hash: .github/workflows/only-main.yaml:42","Info:   0 out of   5 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   3 third-party GitHubAction dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/symfonycorp/.github/SECURITY.md:1","Info: Found linked content: github.com/symfonycorp/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/symfonycorp/.github/SECURITY.md:1","Info: Found text in security policy: github.com/symfonycorp/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 26 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-24T01:56:14.962Z","repository_id":9348722,"created_at":"2025-08-24T01:56:14.962Z","updated_at":"2025-08-24T01:56:14.962Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":275837022,"owners_count":25537641,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-18T02:00:09.552Z","response_time":77,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["php","quality","sdk","symfony"],"created_at":"2024-08-01T20:01:37.950Z","updated_at":"2025-10-05T12:59:41.491Z","avatar_url":"https://github.com/symfonycorp.png","language":"PHP","funding_links":["https://tidelift.com/funding/github/packagist/symfonycorp/connect","https://symfony.com/cloud/","https://live.symfony.com/","https://insight.symfony.com/","https://certification.symfony.com/"],"categories":["PHP"],"sub_categories":[],"readme":"SymfonyInsight SDK\n==================\n\nAbout\n-----\n\nThis is the official SDK for the [SymfonyInsight](https://insight.symfony.com/) API.\n\nInstallation\n------------\n\nTo install the SDK, run the command below and you will get the latest version:\n\n    composer require sensiolabs/insight\n\nCommand Line Tool\n-----------------\n\nThe easiest way to use the SymfonyInsight API is via the built-in command line tool.\n\nA phar version of the command line tool exists to avoid installation of this\nproject. Download it, then use it like the command line tool:\n\n    $ curl -o insight.phar -s https://get.insight.symfony.com/insight.phar\n    # or\n    $ wget https://get.insight.symfony.com/insight.phar\n\n    # Then\n    $ php insight.phar\n\nList all the projects in your account:\n\n    $ php insight.phar projects\n\nThe first time, you will be prompted for your SymfonyInsight API key and\nuser UUID (which can be found under the [\"Account\" section](https://insight.symfony.com/account) on the website).\n\nThese information are then stored locally, but can still be overridden via the\n`--api-token` and `--user-uuid` options.\n\nTo run an analysis:\n\n    $ php insight.phar analyze UUID\n\nwhere `UUID` is the UUID of the project you want to analyze (the UUIDs are\nlisted by the `projects` command).\n\nTo export an analysis report:\n\n    $ php insight.phar analysis UUID --format=\"xml\" # or --format=\"json\" or --format=\"pmd\"\n\nConfiguration\n-------------\n\n    use SensioLabs\\Insight\\Sdk\\Api;\n\n    $api = new Api(array(\n        'api_token' =\u003e 'your api token',\n        'user_uuid' =\u003e 'your user uuid',\n    ));\n\nUsage\n-----\n\n### List all projects:\n\n    $api-\u003egetProjects();\n    $api-\u003egetProjects(2); // For the second page\n\n### Get a project:\n\n    $project = $api-\u003egetProject('project uuid');\n\n### Update a project\n\n    $api-\u003eupdateProject($project);\n\nNote: If something went wrong, see *Error management* section\n\n### Post a project\n\n    use SensioLabs\\Insight\\Sdk\\Model\\Project;\n\n    $project = new Project();\n    $project\n        -\u003esetName('Foo')\n        -\u003esetDescription('Foo')\n        -\u003esetType(TYPE_WEBSITE::TYPE_WEBSITE)\n    ;\n\n    $api-\u003ecreateProject($project)\n\nNote: If something went wrong, see *Error management* section\n\n### Run an analysis\n\n    // on the default branch\n    $api-\u003eanalyze('project uuid', 'master');\n\n    // for a specific branch or reference\n    $api-\u003eanalyze('project uuid', '1.0');\n\n### Get all analyses\n\n    $api-\u003egetAnalyses('project uuid');\n\n    // for a specific branch\n    $api-\u003egetAnalyses('project uuid', 'branch name');\n\n### Get an analysis\n\n    $api-\u003egetAnalysis('project uuid', 'analysis id');\n\n### Get a status analysis\n\n    $api-\u003egetAnalysisStatus('project uuid', 'analysis id');\n\n### Error management\n\nIf something went wrong, an\n`SensioLabs\\Insight\\Sdk\\Exception\\ExceptionInterface` will be throw:\n\n* `ApiClientException` If you did something wrong. This exception contains the\n  previous exception throw by guzzle. You can easily check if it is a:\n  * 403: In this case, check your credentials\n  * 404: In this case, check your request\n  * 400: In this case, check the data sent. In this case, the Exception will\n    contains a `SensioLabs\\Insight\\Sdk\\Model\\Error` object. Which will contains\n    all form errors.\n* `ApiServerException` If something went wrong with the API.\n\nLicense\n-------\n\nThis library is licensed under the MIT license.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsymfonycorp%2Finsight","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsymfonycorp%2Finsight","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsymfonycorp%2Finsight/lists"}