Composer CVE check

Docker image that check your PHP dependencies managed by composer for known vulnerabilities using security.sensiolabs.org or versioneye.com.

Usage

docker run -v $(pwd)/composer.lock:/scripts/composer.lock:ro texthtml/composer-cve-check

You can set env var to customize composer-cve-check behavior

SENSIOLABS=false: disable check on sensiolabs.org
VERSIONEYE_PROJECT_ID=.......: versioneye project id to activate check on versioneye
VERSIONEYE_API_KEY=.......: your versioneye API key

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
check.sh		check.sh
renovate.json		renovate.json