Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
N
N
Never Ever2021-11-16 11:40:23
PHP
Never Ever, 2021-11-16 11:40:23

How to quickly check which packages have vulnerabilities in composer.json?

What tools are available to find such problems?
Found only two tools.
This one is still working, but not convenient https://github.com/Roave/SecurityAdvisories
This one is no longer supported https://github.com/sensiolabs/security-checker

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
F
Flying, 2021-11-16
@Flying

Locally, you can do the check as described here .
But since vulnerability checking should be an ongoing process, it's better to use either the roave/security-advisories you mentioned or, if your project is on GitHub, then through the GitHub action .
Ultimately, all of these options rely on the same source of information.

Similar questions
N
nickostyle2014-04-22 13:05:16
Is it possible to repost from social networks to the site? 9Reply
W
WebforSelf2021-03-23 23:45:26
How to start server after centos 7 backup, vestacp? 3Reply
D
deadmemoras2016-06-18 10:28:34
Work abroad without experience? 10Reply
A
Andrey Filimonov2017-04-10 11:30:43
Why is there an indent between fields? 3Reply
N
Nicholas Hephaestus2022-01-24 20:18:11
Why does the space bar and other keys not work in TeamViewer? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question