Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
N
N
Never Ever2021-11-16 11:40:23
PHP
Never Ever, 2021-11-16 11:40:23

How to quickly check which packages have vulnerabilities in composer.json?

What tools are available to find such problems?
Found only two tools.
This one is still working, but not convenient https://github.com/Roave/SecurityAdvisories
This one is no longer supported https://github.com/sensiolabs/security-checker

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
F
Flying, 2021-11-16
@Flying

Locally, you can do the check as described here .
But since vulnerability checking should be an ongoing process, it's better to use either the roave/security-advisories you mentioned or, if your project is on GitHub, then through the GitHub action .
Ultimately, all of these options rely on the same source of information.

Similar questions
A
Alexander Stepanov2017-06-20 20:01:16
How to organize a web interface for working with a database? 4Reply
V
Valeriy19972015-07-13 21:04:36
Is the interpretation of the code correct? 4Reply
A
Alexey Nikolaev2017-07-04 20:52:42
How to remove push effect from input button in IE? 4Reply
N
Nikolai Steshenko2021-05-24 00:59:15
How to add a field to registration or remove instantaCms? 2Reply
C
ChrisMenschenin2017-07-11 15:12:27
Working with OC on external memory? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question