PHPackages                             grasmash/drupal-security-warning - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. grasmash/drupal-security-warning

ActiveComposer-plugin[Security](/categories/security)

grasmash/drupal-security-warning
================================

Warns users installing Drupal project versions not supported by Security Team.

2.0.0(3w ago)72.2M↑10.7%6[2 issues](https://github.com/grasmash/drupal-security-warning/issues)[1 PRs](https://github.com/grasmash/drupal-security-warning/pulls)1GPL-2.0-or-laterPHPPHP &gt;=8.1CI passing

Since Dec 16Pushed 3w agoCompare

[ Source](https://github.com/grasmash/drupal-security-warning)[ Packagist](https://packagist.org/packages/grasmash/drupal-security-warning)[ RSS](/packages/grasmash-drupal-security-warning/feed)WikiDiscussions master Synced yesterday

READMEChangelog (4)Dependencies (12)Versions (7)Used By (1)

[![Tests](https://github.com/grasmash/drupal-security-warning/actions/workflows/test.yml/badge.svg)](https://github.com/grasmash/drupal-security-warning/actions/workflows/test.yml) [![Latest Stable Version](https://camo.githubusercontent.com/d5421b7973c6a9d133f9537797f6f3a9eeb226382dc4e2c05d9a1a3d23da8cb1/68747470733a2f2f706f7365722e707567782e6f72672f677261736d6173682f64727570616c2d73656375726974792d7761726e696e672f762f737461626c65)](https://packagist.org/packages/grasmash/drupal-security-warning) [![Total Downloads](https://camo.githubusercontent.com/3d47d6193571a10cbfcdbeefdc6e1851fadabda89240bd21f41e090c749473a5/68747470733a2f2f706f7365722e707567782e6f72672f677261736d6173682f64727570616c2d73656375726974792d7761726e696e672f646f776e6c6f616473)](https://packagist.org/packages/grasmash/drupal-security-warning) [![License](https://camo.githubusercontent.com/de62764ae9a749339a5109fb5748e54f017e5f145e2fd5a2981fb5f8978c18e1/68747470733a2f2f706f7365722e707567782e6f72672f677261736d6173682f64727570616c2d73656375726974792d7761726e696e672f6c6963656e7365)](https://packagist.org/packages/grasmash/drupal-security-warning)

This Composer plugin will display a warning when users install or update Drupal packages that are not supported by the Drupal Security team, as per the [Security Advisory Policy](https://www.drupal.org/security-advisory-policy).

Installing or updating a "non-covered" Drupal package will display:

```
You are using Drupal packages that are not supported by the Drupal Security Team!
  - drupal/consumers:1.0.0-beta1: Project has not opted into security advisory coverage!
  - drupal/inline_entity_form:1.0.0-beta1: Beta releases are not covered by Drupal security advisories.
  - drupal/scheduled_updates:1.0.0-alpha6: Project has not opted into security advisory coverage!
  - drupal/diff:1.0.0-RC1: RC releases are not covered by Drupal security advisories.
  - drupal/seckit:1.0.0-alpha2: Alpha releases are not covered by Drupal security advisories.
  - drupal/security_review:dev-1.x: Dev releases are not covered by Drupal security advisories.
See https://www.drupal.org/security-advisory-policy for more information.

```

Requirements
------------

[](#requirements)

- PHP 8.1+
- Composer 2.x

Installation
------------

[](#installation)

```
composer require grasmash/drupal-security-warning

```

###  Health Score

61

—

FairBetter than 98% of packages

Maintenance89

Actively maintained with recent releases

Popularity46

Moderate usage in the ecosystem

Community14

Small or concentrated contributor base

Maturity76

Established project with proven stability

 Bus Factor1

Top contributor holds 87.5% of commits — single point of failure

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Every ~1154 days

Total

4

Last Release

22d ago

Major Versions

1.1.1 → 2.0.02026-06-11

PHP version history (2 changes)1.0.0PHP &gt;=5.3.0

2.0.0PHP &gt;=8.1

### Community

Maintainers

![](https://www.gravatar.com/avatar/1f0a67482f1db7967656e00f2671283ce1aa4ee8ecb934104bfaf39774a9d563?d=identicon)[grasmash](/maintainers/grasmash)

---

Top Contributors

[![grasmash](https://avatars.githubusercontent.com/u/539205?v=4)](https://github.com/grasmash "grasmash (14 commits)")[![hussainweb](https://avatars.githubusercontent.com/u/1040271?v=4)](https://github.com/hussainweb "hussainweb (1 commits)")[![mikemadison13](https://avatars.githubusercontent.com/u/22753451?v=4)](https://github.com/mikemadison13 "mikemadison13 (1 commits)")

---

Tags

securitydrupal

###  Code Quality

TestsPHPUnit

Code StylePHP\_CodeSniffer

### Embed Badge

![Health badge](/badges/grasmash-drupal-security-warning/health.svg)

```
[![Health](https://phpackages.com/badges/grasmash-drupal-security-warning/health.svg)](https://phpackages.com/packages/grasmash-drupal-security-warning)
```

###  Alternatives

[phpseclib/phpseclib

PHP Secure Communications Library - Pure-PHP implementations of RSA, AES, SSH2, SFTP, X.509 etc.

5.6k465.6M1.5k](/packages/phpseclib-phpseclib)[defuse/php-encryption

Secure PHP Encryption Library

3.9k175.2M254](/packages/defuse-php-encryption)[mews/purifier

Laravel 5/6/7/8/9/10 HtmlPurifier Package

2.0k18.7M143](/packages/mews-purifier)[robrichards/xmlseclibs

A PHP library for XML Security

41484.3M150](/packages/robrichards-xmlseclibs)[spatie/laravel-csp

Add CSP headers to the responses of a Laravel app

86611.1M25](/packages/spatie-laravel-csp)[drupal/core-vendor-hardening

Hardens the vendor directory for when it's in the docroot.

174.9M48](/packages/drupal-core-vendor-hardening)

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)
