Weave Code
Security Advisories Laravel Package
roave/security-advisories
Composer dev-only package that blocks installing dependencies with known security vulnerabilities by adding conflict rules. No runtime code or API—just prevents insecure versions during composer require/update to keep your PHP/Laravel supply chain safer.
|
Package
|
Score
|
Description
|
Stars
|
Likes
|
Forks
|
Downloads
|
Issues
|
Score
|
Opportunity
|
License
|
Last Release
|
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| icanhazstring/composer-unused | 0.78 | composer-unused detects and removes unused Composer dependencies in PHP/Laravel projects. It analyzes your codebase to find packages not referenced, reports what can be safely removed, and helps keep composer.json/lock lean and maintainable. | 1,676 | 1,678 | 57 | 220K | 10 | 42.2 | 39.4 | MIT | 2 months ago | |
| shipmonk/composer-dependency-analyser | 0.77 | Fast, zero-dependency tool to analyze Composer dependencies. Detects unused, shadowed, and misplaced packages/extensions by scanning your autoload paths. Works out of the box, highly configurable, and very performant (15k files in ~2s). Compatible with PHP 7.2–8.5. | 609 | 604 | 13 | 569K | 17 | 34.2 | 55.5 | MIT | 4 months ago | |
| composer/composer | 0.73 | Composer is the de facto PHP dependency manager. Declare project requirements in composer.json, install/update packages from Packagist, and lock versions for reproducible builds. Supports private repositories and integrates with common VCS tools like Git. | 29,363 | 29,421 | 4,775 | 3M | 116 | 89.3 | 60.2 | MIT | 1 week ago | |
| laminas/laminas-coding-standard | 0.58 | Provides Laminas PHP coding standard rules and tooling to enforce consistent code style and quality across projects, integrating with CI to automate checks and help teams follow Laminas conventions. | 33 | 33 | 17 | 53K | 5 | 27.0 | 54.2 | BSD-3-Clause | 10 months ago | |
| dealerdirect/phpcodesniffer-composer-installer | 0.56 | Composer installer plugin that automatically discovers and installs PHP_CodeSniffer coding standards (rulesets) from Composer packages. It configures PHPCS installed_paths for you, avoiding manual symlinks and configuration. Supports PHPCS 3/4 and Composer 2.2+. | 596 | 603 | 39 | 4M | 8 | 34.0 | 66.3 | MIT | 4 months ago | |
| paragonie/random_compat | 0.55 | PHP 5 polyfill for random_bytes() and random_int(), providing secure, cryptographically strong randomness on older PHP versions. Uses the best available system sources and falls back safely, helping apps generate tokens, keys, IDs, and nonces consistently across environments. | 8,165 | 8,189 | 147 | 10M | 5 | 59.7 | 51.2 | MIT | 4 years ago | |
| jolicode/jolinotif | 0.55 | Cross-platform PHP library for sending desktop notifications from CLI scripts or cron jobs on Linux, macOS, Windows, and WSL. Create notifications with title, body, icon, and OS-specific options, or use the bundled jolinotif CLI command. | 1,438 | 1,445 | 99 | 267K | 1 | 39.3 | 36.9 | MIT | 4 months ago |
Weaver
How can I help you explore Laravel packages today?