This package has been abandoned. Use https://github.com/fabpot/local-php-security-checker instead.

Generated on May 8, 2024 via composer

Composer

Home

sensiolabs/security-checker v6.0.3

A security checker for your composer.lock

Package summary

issue

license

Package created

19 Feb 2013

Version published

1 Nov 2019

Maintainers

Total deps

Direct deps

License

MIT

Issues

1 high severity issue

high

sensiolabs/security-checker@v6.0.3

Deprecated package

via: sensiolabs/security-checker@v6.0.3

Collapse

Expand

Licenses

MIT License

Permissive

OSI Approved

This is a human-readable summary of (and not a substitute for) the license. Disclaimer.

Can

commercial-use

modify

distribute

sublicense

private-use

Cannot

hold-liable

Must

include-copyright

include-license

18 Packages, Including:

psr/container@2.0.2

psr/log@2.0.0

sensiolabs/security-checker@v6.0.3

symfony/console@v5.4.39

symfony/deprecation-contracts@v3.5.0

symfony/http-client@v5.4.39

symfony/http-client-contracts@v2.5.3

symfony/mime@v5.4.39

symfony/polyfill-ctype@v1.29.0

symfony/polyfill-intl-grapheme@v1.29.0

symfony/polyfill-intl-idn@v1.29.0

symfony/polyfill-intl-normalizer@v1.29.0

symfony/polyfill-mbstring@v1.29.0

symfony/polyfill-php72@v1.29.0

symfony/polyfill-php73@v1.29.0

symfony/polyfill-php80@v1.29.0

symfony/service-contracts@v3.5.0

symfony/string@v6.4.7

Direct Dependencies

All Dependencies CSV

ⓘ This is a list of sensiolabs/security-checker 's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.

Name	Version	Size	License	Type
symfony/console	v5.4.39	-	MIT	prod
symfony/http-client	v5.4.39	-	MIT	prod dev
symfony/mime	v5.4.39	-	MIT	prod
symfony/polyfill-ctype	v1.29.0	-	MIT	prod

Tree

Treemap

Frequently Asked Questions

What does sensiolabs/security-checker do?

The SensioLabs Security Checker is a command line tool specifically designed to evaluate the security of your application. Its main operation is verifying potential vulnerabilities associated with your application's dependencies. To accomplish this, it accesses the Security Check Web service and the Security Advisories Database, cross-referencing your dependencies with known security issues.

How do you use sensiolabs/security-checker?

As an easy-to-use command line tool, using the SensioLabs Security Checker involves initiating a command check for your composer.lock file. You have two options for doing this. The first is to download the security-checker.phar file and execute:

$ php security-checker.phar security:check /path/to/composer.lock

The second option is to install the package using composer and then run:

$ composer install
$ php security-checker security:check /path/to/composer.lock

For a more integrated approach, you can incorporate the SecurityCheckerCommand class into your Symfony console application. Otherwise, utilize the SecurityChecker class directly into your own code like this:

use SensioLabs\Security\SecurityChecker;

$checker = new SecurityChecker();
$result = $checker->check('/path/to/composer.lock', 'json');
$alerts = json_decode((string) $result, true);

Where are the sensiolabs/security-checker docs?

The essential documentation you need to effectively utilize the SensioLabs Security Checker is included directly in the README file of the package's GitHub repository. However, for supplementary information regarding the security check web service, you can visit security.symfony.com. Additional details on the Security Advisories Database can be found at Friends Of PHP Github.