PHPackages sharadice/dummy - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Utility & Helpers](/categories/utility) 4. / 5. sharadice/dummy ActiveLibrary[Utility & Helpers](/categories/utility) sharadice/dummy =============== Sharadice Package Dummy 00 Since Mar 20Pushed 5y ago1 watchersCompare [ Source](https://github.com/sharadice/dummy)[ Packagist](https://packagist.org/packages/sharadice/dummy)[ RSS](/packages/sharadice-dummy/feed)WikiDiscussions main Synced 6d ago READMEChangelogDependenciesVersions (1)Used By (0) Why we added a default, publicly available "sharadice/dummy" package? ===================================================================== [](#why-we-added-a-default-publicly-available-sharadicedummy-package) Alex Birsan described a serious security vulnerability that affects package managers for most modern languages, including Composer. In short, the issue is that the package manager usually checks the default publicly available package repository which allows malicious users to substitute the legitimate package hosted on a private repository. ### Health Score 15 — LowBetter than 3% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity0 Limited adoption so far Community7 Small or concentrated contributor base Maturity30 Early-stage or recently created project Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Community Maintainers ![](https://avatars.githubusercontent.com/u/81015287?v=4)[sharadice](/maintainers/sharadice)[@sharadice](https://github.com/sharadice) --- Top Contributors [![sharadice](https://avatars.githubusercontent.com/u/81015287?v=4)](https://github.com/sharadice "sharadice (4 commits)") ### Embed Badge ![Health badge](/badges/sharadice-dummy/health.svg) ``` [![Health](https://phpackages.com/badges/sharadice-dummy/health.svg)](https://phpackages.com/packages/sharadice-dummy) ``` ### Alternatives [prooph/event-sourcing PHP EventSourcing library 267808.5k18](/packages/prooph-event-sourcing)[sybio/gif-frame-extractor PHP class that separates all the frames (and their duration) of an animated GIF 179417.2k8](/packages/sybio-gif-frame-extractor)[dreamonkey/laravel-cloudfront-url-signer Laravel 5.6+ wrapper around CloudFront canned signed URLs 54750.7k](/packages/dreamonkey-laravel-cloudfront-url-signer)[judev/php-htmltruncator HTML Truncation library, ported from the html\_truncator rubygem 26286.5k6](/packages/judev-php-htmltruncator)[paulzi/yii2-sortable Sortable Behavior for Yii2 15310.5k4](/packages/paulzi-yii2-sortable)[causal/extractor This extension detects and extracts metadata (EXIF / IPTC / XMP / ...) from potentially thousand different file types (such as MS Word/Powerpoint/Excel documents, PDF and images) and bring them automatically and natively to TYPO3 when uploading assets. Works with built-in PHP functions but takes advantage of Apache Tika and other external tools for enhanced metadata extraction. 16244.5k](/packages/causal-extractor) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)