Hold on, we're currently generating a fresh version of this report

Generated on May 16, 2024 via composer

abesiyo/drucker 1.1.0

Docker + drupal composer stack

Package summary

29

issues

4

licenses

Package created

7 May 2017

Version published

13 Nov 2018

Maintainers

1

Total deps

95

Direct deps

7

License

MIT

Issues

29

29 high severity issues

drupal/core@8.9.20

Drupal core - Moderately critical - Denial of Service

via: drupal/core@8.9.20

drupal/core@8.9.20

Cache poisoning in drupal/core

via: drupal/core@8.9.20

drupal/core@8.9.20

Improper input validation in Drupal core

via: drupal/core@8.9.20

drupal/core@8.9.20

Lack of domain validation in Druple core

via: drupal/core@8.9.20

drupal/core@8.9.20

Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014

via: drupal/core@8.9.20

drupal/core@8.9.20

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012

via: drupal/core@8.9.20

drupal/core@8.9.20

Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013

via: drupal/core@8.9.20

drupal/core@8.9.20

Improper input validation in Drupal core

via: drupal/core@8.9.20

drupal/core@8.9.20

Incorrect authorization in Drupal core

via: drupal/core@8.9.20

symfony/http-kernel@v3.4.49

CVE-2022-24894: Prevent storing cookie headers in HttpCache

via: drupal/core@8.9.20

chi-teck/drupal-code-generator@1.32.1

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drush/drush@9.7.3

drupal-composer/drupal-scaffold@2.6.1

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drupal-composer/drupal-scaffold@2.6.1

drupal/console@1.9.9

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drupal/console@1.9.9

drupal/console-core@1.9.7

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drupal/console@1.9.9

drupal/console-en@v1.9.7

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drupal/console@1.9.9

drupal/core@8.9.20

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drupal/core@8.9.20

drush/drush@9.7.3

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drush/drush@9.7.3

webflo/drupal-finder@1.3.0

Package uses a problematic Strongly Protective license ("GPL-2.0-or-later")

Recommendation: Validate that the package complies with your license policy

via: drupal/console@1.9.9 & others

abesiyo/drucker@1.1.0

Package uses post-install-cmd script: "echo "post-install-cmd",php -r "file_exists('docroot/sites/default/settings.local.php') || copy('example.settings.local.php', 'docroot/sites/default/settings.local.php');""

via: abesiyo/drucker@1.1.0

abesiyo/drucker@1.1.0

Package uses post-update-cmd script: "echo "post-update-cmd",php -r "file_exists('.env') || copy('.env.example', '.env');",php -r "file_exists('docroot/sites/default/settings.local.php') || copy('example.settings.local.php', 'docroot/sites/default/settings.local.php');""

via: abesiyo/drucker@1.1.0

abesiyo/drucker@1.1.0

Package uses post-root-package-install script: ""

via: abesiyo/drucker@1.1.0

consolidation/robo@1.5.0

Package uses pre-install-cmd script: "Robo\composer\ScriptHandler::checkDependencies"

via: drush/drush@9.7.3

container-interop/container-interop@1.2.0

Deprecated package

via: drush/drush@9.7.3

doctrine/reflection@1.2.4

Deprecated package

via: drupal/core@8.9.20

drupal-composer/drupal-scaffold@2.6.1

Deprecated package

via: drupal-composer/drupal-scaffold@2.6.1

drupal-composer/drupal-scaffold@2.6.1

Package uses post-update-cmd script: "create-scenario phpunit4 'phpunit/phpunit:^4.8.36' --platform-php '5.5.27'"

via: drupal-composer/drupal-scaffold@2.6.1

symfony/class-loader@v3.4.47

Deprecated package

via: drupal/core@8.9.20

symfony/debug@v4.4.44

Deprecated package

via: drupal/console@1.9.9 & others

webmozart/path-util@2.3.0

Deprecated package

via: drupal/console@1.9.9 & others

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

79 Packages, Including:

abesiyo/drucker@1.1.0

asm89/stack-cors@1.3.0

composer/installers@v1.12.0

composer/semver@1.7.2

consolidation/annotated-command@2.12.2

consolidation/config@1.2.1

consolidation/filter-via-dot-access-data@1.0.0

consolidation/log@1.1.1

consolidation/output-formatters@3.5.1

consolidation/robo@1.5.0

consolidation/self-update@1.2.0

consolidation/site-alias@3.1.7

consolidation/site-process@2.1.0

container-interop/container-interop@1.2.0

dflydev/dot-access-configuration@v1.0.3

dflydev/dot-access-data@v1.1.0

dflydev/placeholder-resolver@v1.0.3

doctrine/annotations@1.14.3

doctrine/cache@1.13.0

doctrine/collections@1.8.0

doctrine/common@2.13.3

doctrine/deprecations@1.1.3

doctrine/event-manager@1.2.0

doctrine/inflector@1.4.4

doctrine/lexer@1.2.3

doctrine/persistence@1.3.8

doctrine/reflection@1.2.4

egulias/email-validator@2.1.25

grasmash/expander@1.0.0

grasmash/yaml-expander@1.4.0

guzzlehttp/guzzle@6.5.8

guzzlehttp/promises@1.5.3

guzzlehttp/psr7@1.9.1

league/container@2.5.0

masterminds/html5@2.9.0

psr/cache@1.0.1

psr/container@1.1.2

psr/log@1.1.4

ralouphie/getallheaders@3.0.3

stack/builder@v1.0.6

symfony-cmf/routing@1.4.1

symfony/cache@v4.3.11

symfony/cache-contracts@v1.10.0

symfony/class-loader@v3.4.47

symfony/config@v4.4.44

symfony/console@v3.4.47

symfony/css-selector@v4.4.44

symfony/debug@v4.4.44

symfony/dependency-injection@v3.4.47

symfony/dom-crawler@v4.4.45

GNU General Public License v2.0 or later

Strongly Protective

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

Cannot

Must

8 Packages, Including:

chi-teck/drupal-code-generator@1.32.1

drupal-composer/drupal-scaffold@2.6.1

drupal/console@1.9.9

drupal/console-core@1.9.7

drupal/console-en@v1.9.7

drupal/core@8.9.20

drush/drush@9.7.3

webflo/drupal-finder@1.3.0

BSD 3-Clause "New" or "Revised" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

use-trademark

hold-liable

Must

include-copyright

include-license

7 Packages, Including:

cweagans/composer-patches@1.7.3

easyrdf/easyrdf@0.9.1

laminas/laminas-escaper@2.13.0

laminas/laminas-feed@2.22.0

laminas/laminas-stdlib@3.19.0

twig/twig@v1.44.7

vlucas/phpdotenv@v2.6.9

BSD 2-Clause "Simplified" License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

place-warranty

Cannot

hold-liable

Must

include-copyright

include-license

1 Packages, Including:

pear/archive_tar@1.5.0

Direct Dependencies

7

All Dependencies CSV

ⓘ This is a list of abesiyo/drucker 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type	Vulnerabilities
composer/installers	v1.12.0	60.04 kB	MIT	prod dev
cweagans/composer-patches	1.7.3	21.62 kB	BSD-3-Clause	prod dev
drupal-composer/drupal-scaffold	2.6.1	36.83 kB	GPL-2.0-or-later	prod	3
drupal/console	1.9.9	-	GPL-2.0-or-later	prod	6
drupal/core	8.9.20	-	GPL-2.0-or-later	prod	14
drush/drush	9.7.3	-	GPL-2.0-or-later	prod	7
vlucas/phpdotenv	v2.6.9	-	BSD-3-Clause	prod dev

All Versions