PHPackages sun-asterisk/laravel-security-checker - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. sun-asterisk/laravel-security-checker ActiveLibrary sun-asterisk/laravel-security-checker ===================================== Laravel composer.lock vulnerabilities checker v0.1.0(5y ago)419MITPHPPHP >=7.1.3 Since Sep 13Pushed 5y ago1 watchersCompare [ Source](https://github.com/sun-asterisk-research/laravel-security-checker)[ Packagist](https://packagist.org/packages/sun-asterisk/laravel-security-checker)[ RSS](/packages/sun-asterisk-laravel-security-checker/feed)WikiDiscussions master Synced 1mo ago READMEChangelogDependencies (3)Versions (2)Used By (0) Laravel Security Checker ======================== [](#laravel-security-checker) Integrate [sensiolabs/security-checker](https://github.com/sensiolabs/security-checker) to your Laravel project. Add a command to check the project dependencies in `composer.lock` against the [Symfony Security Advisories Database](https://security.symfony.com/) Installation ------------ [](#installation) Using composer: ``` composer require sun-asterisk/laravel-security-checker ``` For Laravel 5.4 and earlier, add the service provider to your config/app.php. ``` 'providers' => [ // ... SunAsterisk\LaravelSecurityChecker\ServiceProvider::class // ... ]; ``` Usage ----- [](#usage) The security checker is provided as an Artisan command ``` php artisan security:check ``` [![screenshot.png](screenshot.png)](screenshot.png) The command exit with status code 1 if vulnerabilities are found so you can use it in your CI pipeline. ### Writing report to file [](#writing-report-to-file) In addition to printing vulnerable packages, you can generate a report file. JSON & JUnit format report are supported. Generate a JSON report: ``` php artisan security:check --report-json=security-check.json ``` Generate a JUnit report: ``` php artisan security:check --report-junit=security-check.xml ``` ### Health Score 21 — LowBetter than 19% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity10 Limited adoption so far Community7 Small or concentrated contributor base Maturity39 Early-stage or recently created project Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Unknown Total 1 Last Release 2067d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/01095cc9776c6f3df56447cb6015fe03f71db5a373a2590811880231db105a35?d=identicon)[thphuong](/maintainers/thphuong) --- Top Contributors [![thphuong](https://avatars.githubusercontent.com/u/62600631?v=4)](https://github.com/thphuong "thphuong (3 commits)") ### Embed Badge ![Health badge](/badges/sun-asterisk-laravel-security-checker/health.svg) ``` [![Health](https://phpackages.com/badges/sun-asterisk-laravel-security-checker/health.svg)](https://phpackages.com/packages/sun-asterisk-laravel-security-checker) ``` ### Alternatives [anourvalar/eloquent-serialize Laravel Query Builder (Eloquent) serialization 11320.2M21](/packages/anourvalar-eloquent-serialize)[namu/wirechat A Laravel Livewire messaging app for teams with private chats and group conversations. 54324.5k](/packages/namu-wirechat)[statamic-rad-pack/runway Eloquently manage your database models in Statamic. 135192.6k5](/packages/statamic-rad-pack-runway) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)