Linux command
security-checker 命令
文本
复制后可按需替换文件名、目录或参数。
常用示例
Check project
security-checker security:check
Check specific file
security-checker security:check [composer.lock]
Output as JSON
security-checker security:check --format=json
Check with end-of-life
security-checker security:check --end-point=[url]
说明
security-checker audits PHP project dependencies for known security vulnerabilities by analyzing the composer.lock file against the FriendsOfPHP security advisories database. It identifies installed packages with published CVEs or security issues. The tool returns a non-zero exit code when vulnerabilities are found, making it suitable for CI/CD pipeline integration as a gate check. Output is available in text, JSON, and YAML formats for both human review and programmatic processing by other tools.
参数
- security:check
- Check for vulnerabilities.
- --format _FMT_
- Output format (text, json, yaml).
- --end-point _URL_
- Custom vulnerability DB.
- --timeout _SEC_
- Request timeout.
- -v
- Verbose output.
FAQ
What is the security-checker command used for?
security-checker audits PHP project dependencies for known security vulnerabilities by analyzing the composer.lock file against the FriendsOfPHP security advisories database. It identifies installed packages with published CVEs or security issues. The tool returns a non-zero exit code when vulnerabilities are found, making it suitable for CI/CD pipeline integration as a gate check. Output is available in text, JSON, and YAML formats for both human review and programmatic processing by other tools.
How do I run a basic security-checker example?
Run `security-checker security:check` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does security:check do in security-checker?
Check for vulnerabilities.