bitexpert / phing-securitychecker
Security Checker Phing Task
Installs: 17 193
Dependents: 9
Suggesters: 0
Security: 0
Stars: 15
Watchers: 11
Forks: 4
Open Issues: 1
Requires
- php: ^7.1
- ext-json: *
- phing/phing: ^2.8.0
- sensiolabs/security-checker: ^5.0
Requires (Dev)
- phpdocumentor/phpdocumentor: ^2.8
- phpunit/phpunit: 7.5
- squizlabs/php_codesniffer: ^2.3
This package is auto-updated.
Last update: 2021-01-23 08:42:56 UTC
README
A Phing task for interacting with the SensioLabs Security Advisories Checker to check if your application uses dependencies with known security vulnerabilities.
Installation
The preferred way of installing bitexpert/phing-securitychecker
is through Composer. Add bitexpert/phing-securitychecker
as a dependency to
composer.json:
composer.phar require --dev bitexpert/phing-securitychecker
Example
Import the default build.xml to let Phing know about the Security Checker task:
<import file="vendor/bitexpert/phing-securitychecker/build.xml" />
If you imported the default build.xml, you are able to define the lock file path as well the as the webservice endpoint by defining two properties in your main build.xml file:
<property name="securitychecker.lockfile" value="composer.lock" /> <property name="securitychecker.endpoint" value="https://security.symfony.com/check_lock" />
Or define the securitychecker task on your own:
<taskdef name="securitychecker" classname="bitExpert\Phing\SecurityChecker\SecurityCheckerTask" />
Call the task from your build target:
<securitychecker lockfile="composer.lock" />
License
phing-securitychecker is released under the Apache 2.0 license.