Weave Code
Code Weaver
Helps Laravel developers discover, compare, and choose open-source packages. See popularity, security, maintainers, and scores at a glance to make better decisions.
Feedback
Share your thoughts, report bugs, or suggest improvements.
Subject
Message
Log in Register
Home
Packages
Php Deprecation Detector
Assessments

Php Deprecation Detector Laravel Package

wapmorgan/php-deprecation-detector

PhpDeprecationDetector scans PHP projects for deprecated functions, constants, variables, ini directives, behavior changes, and reserved identifiers that may break on newer PHP versions. Available as a PHAR or Composer tool, with console scanning and JSON reports.

View on GitHub
Deep Wiki
Context7

Product Decisions This Supports

  • PHP Version Upgrade Roadmap: Automates detection of deprecated features (functions, constants, ini-directives) to streamline migrations from PHP 5.x to 8.x+. Reduces manual review effort and risk of runtime failures post-upgrade.
  • Technical Debt Reduction: Identifies deprecated code patterns (e.g., magic_quotes_runtime, mcrypt_*) that may break in future PHP versions, enabling proactive refactoring.
  • Build vs. Buy: Replaces custom scripts or manual code reviews with a maintainable, open-source tool. Avoids reinventing wheel for PHP deprecation analysis.
  • CI/CD Integration: Enables automated pre-commit or pre-deploy checks (via JSON/JUnit reports) to block deprecated code from entering production.
  • Compliance & Security: Flags forbidden names/tricks (e.g., reserved identifiers) that could introduce vulnerabilities or compatibility issues.
  • Vendor Lock-in Mitigation: Detects deprecated third-party library usage (e.g., Symfony Console 4.x) to align with ecosystem updates.

When to Consider This Package

  • Adopt if:

    • Your PHP codebase targets PHP 5.3–8.2 and requires migration to newer versions.
    • You lack automated deprecation detection in your CI/CD pipeline.
    • Your team manually reviews deprecated code, leading to inconsistent or delayed fixes.
    • You need machine-readable reports (JSON/JUnit) for integration with tools like SonarQube or GitHub Actions.
    • Your project uses Laravel or Symfony (compatible with Symfony Console 3.4–6.2).

  • Look elsewhere if:

    • Your codebase is already PHP 8.2+ with no near-term upgrade plans.
    • You need static analysis beyond deprecations (e.g., type safety, security vulnerabilities) → consider PHPStan, Psalm, or SonarPHP.
    • You require real-time IDE integration (e.g., PHPStorm plugins) → use PHP Inspections (EA Extended).
    • Your project is monorepo-heavy with non-PHP files → may need custom exclusion logic.
    • You prioritize performance over completeness (this tool scans files line-by-line).

How to Pitch It (Stakeholders)

For Executives:

"This tool automates PHP deprecation detection, reducing upgrade risks and technical debt. For example, it caught 12 deprecated mcrypt_* functions in our legacy codebase—saving weeks of manual review. By integrating it into CI, we’ll block deprecated code from reaching production, cutting future migration costs by ~40% (based on industry benchmarks). It’s lightweight, open-source, and works seamlessly with Laravel/Symfony."

Key Outcomes: ✅ Faster PHP upgrades (e.g., 5.6 → 8.1 in 2 sprints vs. 6). ✅ Proactive risk reduction (no surprise failures post-deploy). ✅ Developer productivity (no more manual grep/Google searches for deprecations).

For Engineering Teams:

*"PhpDeprecationDetector is a CLI tool that scans PHP code for deprecated features (functions, constants, ini-directives) across PHP 5.3–8.2. It’s fast, accurate, and integrates into CI—here’s how to use it:

  1. Install:

    composer global require wapmorgan/php-deprecation-detector

    or download the PHAR.

  2. Scan your codebase:

    phpdd app/ --target 8.1 --exclude vendor,tests --output json --output-file report.json
    • --target: Set the PHP version you’re migrating to (default: 8.0).
    • --exclude: Skip third-party libs/tests (avoids noise).
    • --output json: Generate machine-readable reports for CI tools.

  3. Fix issues:

    • The tool provides line numbers + replacement suggestions (e.g., mcrypt_generic_end()mcrypt_generic_deinit()).
    • Integrate with PHP-CS-Fixer to auto-fix simple deprecations.

Why this over alternatives?

  • More PHP versions covered (5.3–8.2) than tools like deprecation-detector (PHP 7+ only).
  • JSON/JUnit output for CI integration (e.g., fail builds on deprecations).
  • Lightweight: No heavy AST parsing—uses regex/token analysis for speed.

Next Steps:

  • Add to composer.json dev-dependencies.
  • Run in CI (e.g., GitHub Actions) with --fail-on-issues.
  • Pilot on a legacy module first to validate ROI."*

For Developers: *"Run phpdd locally before PRs to catch deprecations early. Example:

phpdd src/ --target 8.2 --quiet

If it finds issues, fix them or suppress with --skip-checks (temporarily)."*

Weaver

How can I help you explore Laravel packages today?

Conversation history is not saved when not logged in.
Prompt
Add packages to context
No packages found.
craftcms/url-validator
directorytree/privacy-filter-classifier
directorytree/privacy-filter
datacore/hub-sdk
develia/commons
cuci/prototurk-sdk
cuci/prototurk-sdk-symfony
develia/geo-bundle
dreamzy/livewire-charts
touchestate-sdk/php-sdk
22h/doctrine-garbage-collection-bundle
agtp/agtp-php
agtp/mod-php
splash/sonata-admin
splash/metadata
splash/openapi
splash/scopes
splash/toolkit
testo/output-teamcity
testo/bridge-symfony