PHPackages nedbase/composer-audit-common-report-formats-plugin - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [DevOps & Deployment](/categories/devops) 4. / 5. nedbase/composer-audit-common-report-formats-plugin ActiveComposer-plugin[DevOps & Deployment](/categories/devops) nedbase/composer-audit-common-report-formats-plugin =================================================== Common report formats for the composer audit command, usable for CI processes v1.0.0(2y ago)215.3k↓11.7%[1 issues](https://github.com/nedbase/composer-audit-common-report-formats-plugin/issues)MITPHPPHP ^7.2.5 || ^8.0 Since Mar 14Pushed 1y ago5 watchersCompare [ Source](https://github.com/nedbase/composer-audit-common-report-formats-plugin)[ Packagist](https://packagist.org/packages/nedbase/composer-audit-common-report-formats-plugin)[ RSS](/packages/nedbase-composer-audit-common-report-formats-plugin/feed)WikiDiscussions main Synced 1mo ago READMEChangelog (1)Dependencies (5)Versions (2)Used By (0) Common report formats for Composer Audit ======================================== [](#common-report-formats-for-composer-audit) This package provides several common report formats for the `composer audit` command, that was introduced in Composer 2.4. The plugin uses the output generated by the `composer audit` format, augments the data where needed, and outputs it in the requested format. Currently, JUnit and Trivy formats are supported. Installation ------------ [](#installation) You can either require the package globally or as a dev dependency for your project. To make the plugin globally available run the following command: ``` composer global require nedbase/composer-audit-common-report-formats-plugin ``` To add the plugin available for a specific project, you may add it as a dev dependency: ``` composer require --dev nedbase/composer-audit-common-report-formats-plugin ``` Usage ----- [](#usage) To generate a JUnit formatted audit report, run the following command: ``` composer audit:junit ``` To generate a Trivy formatted audit report, run the following command: ``` composer audit:trivy ``` The same options and arguments that exist on Composer's native `audit` command are available for the `audit:[format]`command, except for the `--format` option, as the report format is implied by the `audit:[format]` command itself. So to generate a JUnit formatted audit report of regular dependencies only (so no dev dependencies) you may run: ``` composer audit:junit --no-dev ``` ### Technical documentation [](#technical-documentation) For the full documentation, including the technical documentation of the code, see the [Documentation](docs/README.md). --- ![Nedbase Logo - White](https://camo.githubusercontent.com/45b4e1b6e9a7497ce001fea161d759911f5320a9a5eee7126add8ece06f1d2a0/68747470733a2f2f6173736574732e6e6564626173652e6e6c2f6e622d6c6f676f2d626c61636b2e706e67)Developed and maintained in 🇳🇱 by [Nedbase](https://www.nedbase.nl/). ### Health Score 29 — LowBetter than 59% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity29 Limited adoption so far Community9 Small or concentrated contributor base Maturity46 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Unknown Total 1 Last Release 795d ago ### Community Maintainers ![](https://avatars.githubusercontent.com/u/1777679?v=4)[Nedbase BV](/maintainers/nedbase)[@nedbase](https://github.com/nedbase) --- Top Contributors [![leonboot](https://avatars.githubusercontent.com/u/1777675?v=4)](https://github.com/leonboot "leonboot (24 commits)") --- Tags composerAuditcireportsjunittrivy ### Code Quality TestsPHPUnit Static AnalysisPsalm Type Coverage Yes ### Embed Badge ![Health badge](/badges/nedbase-composer-audit-common-report-formats-plugin/health.svg) ``` [![Health](https://phpackages.com/badges/nedbase-composer-audit-common-report-formats-plugin/health.svg)](https://phpackages.com/packages/nedbase-composer-audit-common-report-formats-plugin) ``` ### Alternatives [saggre/phpdocumentor-markdown Markdown template for phpDocumentor3 2079.5k30](/packages/saggre-phpdocumentor-markdown)[norsys/rothenberg Tool which allow a developper to create or maintain a Symfony application or a Symfony bundle very easily and without install something on his workstation 2410.6k3](/packages/norsys-rothenberg)[enygma/composerclean An additional command for Composer that removes configured files/directory 181.8k](/packages/enygma-composerclean) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)