local-php-security-checker
composer-normalize
local-php-security-checker | composer-normalize | |
---|---|---|
5 | 6 | |
1,148 | 1,006 | |
- | 1.6% | |
2.9 | 9.4 | |
10 days ago | 6 days ago | |
Go | PHP | |
GNU Affero General Public License v3.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
local-php-security-checker
-
What are some helpful tools every Laravel CI pipeline should have?
test -d local-php-security-checker || curl -L https://github.com/fabpot/local-php-security-checker/releases/download/v1.2.0/local-php-security-checker_1.2.0_linux_amd64 --output local-php-security-checker chmod +x local-php-security-checker ./local-php-security-checker
-
Unknown error running php bin/console security:check
The best alternative to use now is to download a local-security-checker binary (https://github.com/fabpot/local-php-security-checker/releases), saving it in the bin folder, and running that binary (via bin/local-php-security-checker).
-
PHP libraries and tools
Local PHP Security Checker: PHP security vulnerabilities checker
-
Laravel QR Code Generator Infected with Malware
It looks like they utilize this repo for advisories: https://github.com/FriendsOfPHP/security-advisories/ -- via https://symfony.com/blog/the-php-security-checker-as-a-docker-image
-
Why does validating a user require 14000 files?
https://github.com/fabpot/local-php-security-checker
I agree, composer is not perfect, but before it was worse.
composer-normalize
-
Elevate Your PHP Development Game with Composer Tips
Composer-Normalize: Your Organization Sidekick! Let's talk about keeping things neat and tidy! Enter Composer-Normalize. This nifty tool ensures your composer.json file stays impeccably organized and sorted. No more chaotic dependency lists - it's all about that clean, structured vibe! ππ More info here: https://github.com/ergebnis/composer-normalize
-
The "pds/composer-script-names" standard is now stable
I guess composer normalize is doing those checks since it is validating the composer.json against it's official schema. More at https://github.com/ergebnis/composer-normalize
-
Users of VS Code, what Composer-related features would you like to see?
Use composer-normalize as a formatter
-
PHP libraries and tools
composer-normalize: Provides a composer plugin for normalizing composer.json.
-
Create or Update PR Action
The README itself shows that itβs being used to keep track of Chinese Starbucks stores, download JSON schema updates periodically and even by the Node project itself to keep the license file up to date.
What are some alternatives?
SecurityAdvisories - :closed_lock_with_key: Security advisories as a simple composer exclusion list, updated daily
Composer Merge Plugin - Merge one or more additional composer.json files at Composer runtime
Spout - Read and write spreadsheet files (CSV, XLSX and ODS), in a fast and scalable way
NameSpacer - PHP Class converter to namepaces.
ComposerRequireChecker - A CLI tool to check whether a specific composer package uses imported symbols that aren't part of its direct composer dependencies
Satis - Simple static Composer repository generator - For a full private Composer repo use Private Packagist
GrumPHP - A PHP code-quality tool
Patch Installer - Patch other composer packages on install or update
google-api-php-client-services
Prestissimo - composer parallel install plugin
google-api-php-client - A PHP client library for accessing Google APIs
psalm-plugin-phpunit - A PHPUnit plugin for Psalm