PHPackages notfloran/phing-composer-security-checker - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. notfloran/phing-composer-security-checker ActiveLibrary[Security](/categories/security) notfloran/phing-composer-security-checker ========================================= Phing task that use Sensio Security Advisories Checker to checks if your application uses dependencies with known security vulnerabilities. v1.0.0(12y ago)7949MITPHP Since Apr 12Pushed 11y ago2 watchersCompare [ Source](https://github.com/notFloran/phing-composer-security-checker)[ Packagist](https://packagist.org/packages/notfloran/phing-composer-security-checker)[ Docs](https://github.com/notFloran/phing-composer-security-checker)[ RSS](/packages/notfloran-phing-composer-security-checker/feed)WikiDiscussions master Synced today READMEChangelogDependencies (1)Versions (2)Used By (0) phing-composer-security-checker =============================== [](#phing-composer-security-checker) [![Packagist](https://camo.githubusercontent.com/b009d0826e88b0e28cc3b3fad9a452ba13adeaf72fe35c2832be4e0be4f62641/687474703a2f2f696d672e736869656c64732e696f2f7061636b61676973742f762f6e6f74666c6f72616e2f7068696e672d636f6d706f7365722d73656375726974792d636865636b65722e737667)](https://packagist.org/packages/notfloran/phing-composer-security-checker)[![Packagist](https://camo.githubusercontent.com/0187a983ab5d5eac4c940b6e48ef3faaa0a9da24652490d81c7cfac74ab076cf/687474703a2f2f696d672e736869656c64732e696f2f7061636b61676973742f64742f6e6f74666c6f72616e2f7068696e672d636f6d706f7365722d73656375726974792d636865636b65722e737667)](https://packagist.org/packages/notfloran/phing-composer-security-checker) A Phing task that use Sensio Security Advisories Checker to checks if your application uses dependencies with known security vulnerabilities. Installation ------------ [](#installation) The preferred way of installation is through Composer. Add `notfloran/phing-composer-security-checker` as a requirement to composer.json: ``` { "require": { "notfloran/phing-composer-security-checker": "~1.0" } } ``` Example ------- [](#example) Let Phing know about the Security Checker task: ``` ``` Then : ``` ``` Or : ``` ``` With all attributes : ``` ``` Attributes : ------------ [](#attributes-) - **file** : path to the composer.lock file (default: composer.lock) - **haltOnError** : indicate if an exception is thrown or not when vulnerabilities are detected (default: true) - **format** : format of the list of vulnerabilities (json or text) (default: text) - **outputProperty** : property name to set with output value License ------- [](#license) phing-composer-security-checker is released under the MIT public license. ### Health Score 31 — LowBetter than 68% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity19 Limited adoption so far Community8 Small or concentrated contributor base Maturity63 Established project with proven stability Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Unknown Total 1 Last Release 4412d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/ec8d36ad687b1fb727bc0f68e8dc16ae31448a24701b24142f95ccb4cbab77a9?d=identicon)[notFloran](/maintainers/notFloran) --- Top Contributors [![notFloran](https://avatars.githubusercontent.com/u/523981?v=4)](https://github.com/notFloran "notFloran (9 commits)") --- Tags composersecurityphing ### Embed Badge ![Health badge](/badges/notfloran-phing-composer-security-checker/health.svg) ``` [![Health](https://phpackages.com/badges/notfloran-phing-composer-security-checker/health.svg)](https://phpackages.com/packages/notfloran-phing-composer-security-checker) ``` ### Alternatives [phpseclib/phpseclib PHP Secure Communications Library - Pure-PHP implementations of RSA, AES, SSH2, SFTP, X.509 etc. 5.6k434.8M1.3k](/packages/phpseclib-phpseclib)[defuse/php-encryption Secure PHP Encryption Library 3.9k162.4M214](/packages/defuse-php-encryption)[mews/purifier Laravel 5/6/7/8/9/10 HtmlPurifier Package 2.0k16.7M113](/packages/mews-purifier)[robrichards/xmlseclibs A PHP library for XML Security 41278.1M118](/packages/robrichards-xmlseclibs)[spatie/laravel-csp Add CSP headers to the responses of a Laravel app 8519.6M19](/packages/spatie-laravel-csp)[jorijn/laravel-security-checker Added Laravel functionality to the Enlightn Security Checker. Adds a command to check for, and optionally emails you, vulnerabilities when they affect you. 2021.8M1](/packages/jorijn-laravel-security-checker) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)