PHPackages                             jkribeiro/drupal-composer-paranoia - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. jkribeiro/drupal-composer-paranoia

Abandoned → [https://github.com/drupal-composer/drupal-paranoia](/?search=https%3A%2F%2Fgithub.com%2Fdrupal-composer%2Fdrupal-paranoia)Composer-plugin[Security](/categories/security)

jkribeiro/drupal-composer-paranoia
==================================

Composer plugin to improve the security of composer-based Drupal projects by moving all PHP files out of docroot.

1.x-dev(8y ago)414.2kGPL-2.0+PHP &gt;=5.4.5

Since Apr 11Compare

[ Source](https://github.com/jkribeiro/drupal-composer-paranoia)[ Packagist](https://packagist.org/packages/jkribeiro/drupal-composer-paranoia)[ RSS](/packages/jkribeiro-drupal-composer-paranoia/feed)WikiDiscussions Synced 1mo ago

READMEChangelogDependencies (2)Versions (1)Used By (0)

### README not available

The README for this package hasn't been synced yet. View it on [GitHub](https://github.com/jkribeiro/drupal-composer-paranoia).

###  Health Score

25

—

LowBetter than 37% of packages

Maintenance20

Infrequent updates — may be unmaintained

Popularity23

Limited adoption so far

Community2

Small or concentrated contributor base

Maturity42

Maturing project, gaining track record

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Unknown

Total

1

Last Release

2950d ago

### Community

Maintainers

![](https://www.gravatar.com/avatar/82291593cc1356f74a314304499ad8aa14c24ca61f99e6be72d24e21844457ab?d=identicon)[jkribeiro](/maintainers/jkribeiro)

### Embed Badge

![Health badge](/badges/jkribeiro-drupal-composer-paranoia/health.svg)

```
[![Health](https://phpackages.com/badges/jkribeiro-drupal-composer-paranoia/health.svg)](https://phpackages.com/packages/jkribeiro-drupal-composer-paranoia)
```

###  Alternatives

[defuse/php-encryption

Secure PHP Encryption Library

3.9k162.4M212](/packages/defuse-php-encryption)[roave/security-advisories

Prevents installation of composer packages with known security vulnerabilities: no API, simply require it

2.9k97.3M6.4k](/packages/roave-security-advisories)[mews/purifier

Laravel 5/6/7/8/9/10 HtmlPurifier Package

2.0k16.7M112](/packages/mews-purifier)[drupal/core-vendor-hardening

Hardens the vendor directory for when it's in the docroot.

174.5M28](/packages/drupal-core-vendor-hardening)[acmephp/ssl

PHP wrapper around OpenSSL extension providing SSL encoding, decoding, parsing and signing features

141.2M4](/packages/acmephp-ssl)[mxr576/ddqg-composer-audit

Drupal Dependency Quality Gate Composer Audit plugin

1056.7k2](/packages/mxr576-ddqg-composer-audit)

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)