This package ensures that your application doesn’t have installed dependencies with known security vulnerabilities.
The checks are only executed when adding a new dependency via
composer requireor when running
composer update: deploying an application with a valid
composer installwon’t trigger any security versions checking.
Every two weeks I send out a newsletter containing lots of interesting stuff for the modern PHP developer. You can expect quick tips, links to interesting tutorials, opinions and packages. Want to learn the cool stuff? Then sign up now!