PHPackages sonatype-nexus-community/bach - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. sonatype-nexus-community/bach ActiveProject[Security](/categories/security) sonatype-nexus-community/bach ============================= Dependency vulnerability auditor for PHP 1.0.2(3y ago)1515[3 PRs](https://github.com/sonatype-nexus-community/bach/pulls)Apache-2.0PHP ^7.4.0 || ^8.0 Since Aug 31Compare [ Source](https://github.com/sonatype-nexus-community/bach)[ Packagist](https://packagist.org/packages/sonatype-nexus-community/bach)[ Docs](https://github.com/sonatype-nexus-community/bach)[ RSS](/packages/sonatype-nexus-community-bach/feed)WikiDiscussions Synced 2d ago READMEChangelogDependencies (11)Versions (5)Used By (0) ### README not available The README for this package hasn't been synced yet. View it on [GitHub](https://github.com/sonatype-nexus-community/bach). ### Health Score 29 — LowBetter than 60% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity13 Limited adoption so far Community13 Small or concentrated contributor base Maturity59 Maturing project, gaining track record Bus Factor3 3 contributors hold 50%+ of commits How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~134 days Total 3 Last Release 1446d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/4e54fa9477f167d0cbe4e65c4406363237e0c07b6775626b8f69a2e6c849f265?d=identicon)[sonatype-community](/maintainers/sonatype-community) --- Top Contributors [![allisterb](https://avatars.githubusercontent.com/u/11426372?v=4)](https://github.com/allisterb "allisterb (14 commits)")[![bhamail](https://avatars.githubusercontent.com/u/578919?v=4)](https://github.com/bhamail "bhamail (11 commits)")[![madpah](https://avatars.githubusercontent.com/u/10280392?v=4)](https://github.com/madpah "madpah (8 commits)")[![ken-duck](https://avatars.githubusercontent.com/u/30352045?v=4)](https://github.com/ken-duck "ken-duck (7 commits)")[![DarthHater](https://avatars.githubusercontent.com/u/5544326?v=4)](https://github.com/DarthHater "DarthHater (7 commits)")[![jkowalleck](https://avatars.githubusercontent.com/u/2765863?v=4)](https://github.com/jkowalleck "jkowalleck (2 commits)")[![ndonewar](https://avatars.githubusercontent.com/u/310986?v=4)](https://github.com/ndonewar "ndonewar (2 commits)")[![scherzhaft](https://avatars.githubusercontent.com/u/5504113?v=4)](https://github.com/scherzhaft "scherzhaft (1 commits)")[![hboutemy](https://avatars.githubusercontent.com/u/237462?v=4)](https://github.com/hboutemy "hboutemy (1 commits)") ### Code Quality TestsPHPUnit Code StylePHP\_CodeSniffer ### Embed Badge ![Health badge](/badges/sonatype-nexus-community-bach/health.svg) ``` [![Health](https://phpackages.com/badges/sonatype-nexus-community-bach/health.svg)](https://phpackages.com/packages/sonatype-nexus-community-bach) ``` ### Alternatives [akaunting/laravel-firewall Web Application Firewall (WAF) package for Laravel 999465.8k2](/packages/akaunting-laravel-firewall)[paragonie/certainty Up-to-date, verifiable repository for Certificate Authorities 2642.4M20](/packages/paragonie-certainty)[dgtlss/warden A Laravel package that proactively monitors your dependencies for security vulnerabilities by running automated composer audits and sending notifications via webhooks and email 8745.6k](/packages/dgtlss-warden)[acmephp/core Raw implementation of the ACME protocol in PHP 38973.7k7](/packages/acmephp-core)[nickurt/laravel-pwned-passwords PwnedPasswords for Laravel 11.x/12.x/13.x 187.5k](/packages/nickurt-laravel-pwned-passwords) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)