New composer audit Command and security audits in Composer 2.4

Published by on

Composer 2.4 features scanning the installed and new packages for known security vulnerabilities. When a new package is installed, or an existing package is updated, Composer looks up the package version numbers on known security vulnerability announcements, and reports if there are any known vulnerabilities in the list of packages.

Read more

Categories: PHP
Tags:

Related Posts

PHP

The ghost domain problem in DNS, and what we’re doing about it

A good write-up on the ghost domain problem in DNS: domains removed from a registry can still appear healthy to uptime checkers because recursive resolvers keep stale delegations warm. The Oh Dear team explains the Read more…

PHP

Multi-Agent Orchestration in Laravel: When You Actually Need It

A practical take on multi-agent setups in Laravel: another agent only earns its place when it needs its own model, tools, or instructions. Good piece on delegation tradeoffs, context handoff, and how to test routing Read more…

PHP

#[RouteParameter] Does Not Bind Your Model

Michael Dyrynda explains a subtle Laravel gotcha: #[RouteParameter] only reads the current route parameter value, it does not perform implicit model binding. Good reminder that the controller signature still matters when you expect a bound Read more…