PHPackages                             sonatype-nexus-community/bach - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. sonatype-nexus-community/bach

ActiveProject[Security](/categories/security)

sonatype-nexus-community/bach
=============================

Dependency vulnerability auditor for PHP

1.0.2(4y ago)141516[3 issues](https://github.com/sonatype-nexus-community/bach/issues)[3 PRs](https://github.com/sonatype-nexus-community/bach/pulls)Apache-2.0PHPPHP ^7.4.0 || ^8.0

Since Aug 31Pushed 3y ago4 watchersCompare

[ Source](https://github.com/sonatype-nexus-community/bach)[ Packagist](https://packagist.org/packages/sonatype-nexus-community/bach)[ Docs](https://github.com/sonatype-nexus-community/bach)[ RSS](/packages/sonatype-nexus-community-bach/feed)WikiDiscussions main Synced 3w ago

READMEChangelogDependencies (11)Versions (5)Used By (0)

 [![](https://github.com/sonatype-nexus-community/bach/raw/main/docs/images/Bach@2x.png)](https://github.com/sonatype-nexus-community/bach/blob/main/docs/images/Bach@2x.png)

[![PHP Version Support](https://camo.githubusercontent.com/aac823971c402bc6ebae4554f9938ddc0a19243025a3b61eaa1096a9e6f4bd35/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f7068702d253545372e342e30253743253545382e302e302d626c7565)](https://camo.githubusercontent.com/aac823971c402bc6ebae4554f9938ddc0a19243025a3b61eaa1096a9e6f4bd35/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f7068702d253545372e342e30253743253545382e302e302d626c7565)[![sonatype-nexus-community](https://camo.githubusercontent.com/5b0a69acce76109a84769211b11d1e57679e2d23aacd9e307e05ead613f03d98/68747470733a2f2f636972636c6563692e636f6d2f67682f736f6e61747970652d6e657875732d636f6d6d756e6974792f626163682e7376673f7374796c653d736869656c64)](https://circleci.com/gh/sonatype-nexus-community/bach)[![GitHub license](https://camo.githubusercontent.com/f2fab0f380f2339c5fcf471a44170967b2f86b1169bf58e713db4d66988f4952/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f6c6963656e73652f736f6e61747970652d6e657875732d636f6d6d756e6974792f62616368)](https://github.com/sonatype-nexus-community/bach/blob/main/LICENSE)[![GitHub issues](https://camo.githubusercontent.com/9f1c24e255728a0c38b69138cddc4f2266cd4df7a2f2a4b19bcf5f68a94a3109/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f6973737565732f736f6e61747970652d6e657875732d636f6d6d756e6974792f62616368)](https://github.com/sonatype-nexus-community/bach/issues)[![GitHub forks](https://camo.githubusercontent.com/2d049a7c505cf5dccad5886954096df08c0aab36faf68b419348ddba393f5e8d/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f666f726b732f736f6e61747970652d6e657875732d636f6d6d756e6974792f62616368)](https://github.com/sonatype-nexus-community/bach/network)[![GitHub stars](https://camo.githubusercontent.com/b9235b2b803264c329dbe5dc37d22b58993865749399848d764431948ab8779b/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f73746172732f736f6e61747970652d6e657875732d636f6d6d756e6974792f62616368)](https://github.com/sonatype-nexus-community/bach/stargazers)

---

Bach
====

[](#bach)

Dependency vulnerability auditor for PHP

Install
-------

[](#install)

```
git clone https://github.com/sonatype-nexus-community/bach.git
cd bach
composer install

```

Help
----

[](#help)

```
> php bach

  Bach  unreleased

  USAGE: bach  [options] [arguments]

  composer Audit Composer dependencies. Enter the path to composer.json after the command.
  iq       Audit Composer dependencies. Enter the path to composer.json after the command.
  pear     Audit PEAR dependencies

```

Example usage
-------------

[](#example-usage)

```
> php bach composer composer.json
 ____                         __
/\  _`\                      /\ \
\ \ \L\ \     __       ___   \ \ \___
 \ \  _
