Is phpcsstandards/phpcsdevcs a legitimate Composer package for Laravel projects?

No, this package is not legitimate for Laravel. It claims to be a PHP_CodeSniffer ruleset but lacks a public repository, has an impossible 2025 release date, and is designed for sniff developers—not Laravel applications. Avoid it entirely.

Why does this package show a 2025 release date when it’s clearly fake?

The 2025 release date is a red flag indicating this is likely a fake or corrupted package. Real packages on Packagist have valid, past release dates. This suggests the package is either a placeholder, malicious, or incorrectly scraped from an unreliable source.

Can I use this ruleset with PHP_CodeSniffer in Laravel for code standards?

No, this package is not usable in Laravel. It’s intended for PHP_CodeSniffer *sniff developers*, not end users. Laravel projects should use PSR-12, Laravel Pint, or other established rulesets for consistent code quality.

How do I install this package via Composer if there’s no repository?

You cannot install this package via Composer because it lacks a public repository. Even if you try, the missing source code and invalid metadata make it impossible to verify or use safely. This violates Composer’s security and dependency resolution rules.

What are the security risks of using this package in a Laravel project?

The risks are severe: no source visibility means potential malicious code, dependency vulnerabilities, or data corruption. Since the package is unverifiable and lacks a repository, it could compromise your CI/CD pipeline or introduce hidden backdoors.

Are there any alternatives to this package for custom PHPCS rules in Laravel?

Yes, use Laravel Pint (built for Laravel) or create custom PHPCS sniffs by extending existing PSR-12 rules. Avoid this package—it’s not designed for Laravel and offers no maintainable path for customization.

Will this package work with PHP_CodeSniffer 3.x or 4.x in Laravel?

No, this package cannot be verified for compatibility with any PHPCS version. Without a repository or source code, you have no way to test or confirm its functionality, making it unusable in production or development.

Can I manually clone a hidden repository to use this ruleset?

No, you should never manually clone unknown repositories for Composer packages. This violates security best practices and could expose your project to vulnerabilities. Stick to officially documented, Packagist-hosted packages.

How does this package affect Laravel’s CI/CD pipeline if installed?

Installing this package would break your CI/CD pipeline due to missing dependencies, invalid metadata, and unverified code. It lacks proper integration with Laravel’s tooling, so any attempt to use it would require manual fixes—highly discouraged.

Is there any maintenance or community support for this package?

No, there is no maintenance or community support. Without a public repository, you cannot file issues, submit PRs, or receive updates. This makes it impossible to resolve bugs or adapt to future Laravel or PHPCS changes.

Weave Code

Code Weaver

Helps Laravel developers discover, compare, and choose open-source packages. See popularity, security, maintainers, and scores at a glance to make better decisions.

Phpcsdevcs Laravel Package

phpcsstandards/phpcsdevcs

phpcsdevcs provides a set of PHP_CodeSniffer rules and configuration to enforce consistent coding standards across PHP projects. Drop-in standards for PHPCS with sensible defaults, helping teams catch style issues early and keep code clean and uniform.

View on GitHub

Deep Wiki

Context7

Coding Standards ruleset for the code in external standards for PHP_CodeSniffer.

Frequently asked questions about Phpcsdevcs

Is phpcsstandards/phpcsdevcs a legitimate Composer package for Laravel projects?: No, this package is not legitimate for Laravel. It claims to be a PHP_CodeSniffer ruleset but lacks a public repository, has an impossible 2025 release date, and is designed for sniff developers—not Laravel applications. Avoid it entirely.
Why does this package show a 2025 release date when it’s clearly fake?: The 2025 release date is a red flag indicating this is likely a fake or corrupted package. Real packages on Packagist have valid, past release dates. This suggests the package is either a placeholder, malicious, or incorrectly scraped from an unreliable source.
Can I use this ruleset with PHP_CodeSniffer in Laravel for code standards?: No, this package is not usable in Laravel. It’s intended for PHP_CodeSniffer *sniff developers*, not end users. Laravel projects should use PSR-12, Laravel Pint, or other established rulesets for consistent code quality.
How do I install this package via Composer if there’s no repository?: You cannot install this package via Composer because it lacks a public repository. Even if you try, the missing source code and invalid metadata make it impossible to verify or use safely. This violates Composer’s security and dependency resolution rules.
What are the security risks of using this package in a Laravel project?: The risks are severe: no source visibility means potential malicious code, dependency vulnerabilities, or data corruption. Since the package is unverifiable and lacks a repository, it could compromise your CI/CD pipeline or introduce hidden backdoors.
Are there any alternatives to this package for custom PHPCS rules in Laravel?: Yes, use Laravel Pint (built for Laravel) or create custom PHPCS sniffs by extending existing PSR-12 rules. Avoid this package—it’s not designed for Laravel and offers no maintainable path for customization.
Will this package work with PHP_CodeSniffer 3.x or 4.x in Laravel?: No, this package cannot be verified for compatibility with any PHPCS version. Without a repository or source code, you have no way to test or confirm its functionality, making it unusable in production or development.
Can I manually clone a hidden repository to use this ruleset?: No, you should never manually clone unknown repositories for Composer packages. This violates security best practices and could expose your project to vulnerabilities. Stick to officially documented, Packagist-hosted packages.
How does this package affect Laravel’s CI/CD pipeline if installed?: Installing this package would break your CI/CD pipeline due to missing dependencies, invalid metadata, and unverified code. It lacks proper integration with Laravel’s tooling, so any attempt to use it would require manual fixes—highly discouraged.
Is there any maintenance or community support for this package?: No, there is no maintenance or community support. Without a public repository, you cannot file issues, submit PRs, or receive updates. This makes it impossible to resolve bugs or adapt to future Laravel or PHPCS changes.

Popularity trends

Recorded values over time (once-a-day snapshots). May 8, 2026 – Jun 6, 2026

GitHub · stars

GitHub · forks

GitHub · watchers

Packagist · monthly downloads

View on GitHub

Stars

Favorites

Forks

Score

14.4

Score breakdown

Sum of components, capped 0–100. Halved if archived.

Stars

input: 9

+0.0
Forks

input: 1

+0.0
Open issues + PRs

input: 5

+0.5
Releases

input: 10

+3.0
Recency

input: 180

+10.1
Issue opportunity

input: 4

+0.6
Laravel News mentions

input: 0

+0.0
Dependents

input: 0

+0.0

Total 14.3

Opportunity

44.9

Opportunity score breakdown

Hidden gem signal × 0.65 + contribution need × 0.35, scaled by health factor.

Hidden gem

log(monthly_downloads / (stars + 1)) × 25

72.8
Contribution need

open_issues + open_prs: 5

3.8
Health factor

archived + recency + open issues

×0.92

Total 44.9

License

LGPL-3.0

Last release

Dec 8, 2025

Watchers

Downloads

8K/mo

Dependents

Open issues

Weaver

How can I help you explore Laravel packages today?

Conversation history is not saved when not logged in.

Add packages to context

No packages found.

hamzi/corewatch

minionfactory/raw-hydrator

hexters/coinpayment

rjcodes/rjcms

act-training/laravel-permissions-manager

alimarchal/laravel-chart-of-accounts

babenkoivan/elastic-scout-driver

mkwebdesign/filament-watchdog-v5

renatomarinho/laravel-page-speed

zedmagdy/filament-business-hours

renatovdemoura/blade-elements-ui

devgeek/beacon-admin

benjamin-rqt/data-watcher-bundle

atriumphp/atrium

sandermuller/package-boost-laravel

sandermuller/boost-skills

redaxo/core

yusufgenc/filament-api-forge

l3aro/rating-star-for-filament

leek/filament-subtenant-scope