Commit 3d0a0f9a authored by Fabrice Gangler's avatar Fabrice Gangler 🎨
Browse files

CHORE(QA): add sensiolabs/security-checker dependency

documentation:
https://phpqa.io/projects/security-checker.html
https://github.com/sensiolabs/security-checker

install:
composer require --dev sensiolabs/security-checker

Refs: #25
parent ba53b03d
......@@ -42,6 +42,7 @@
"jakub-onderka/php-parallel-lint": "^1.0",
"phpmd/phpmd": "^2.8",
"phpro/grumphp": "^0.18.0",
"sensiolabs/security-checker": "^6.0",
"symfony/browser-kit": "5.0.*",
"symfony/css-selector": "5.0.*",
"symfony/debug-pack": "*",
......
......@@ -4,7 +4,7 @@
"Read more about it at https://getcomposer.org/doc/01-basic-usage.md#composer-lock-the-lock-file",
"This file is @generated automatically"
],
"content-hash": "dea16d94bd4214cba1790ddf47dd5874",
"content-hash": "5fa612fd13e35b76af8b03c02f72ad1a",
"packages": [
{
"name": "doctrine/annotations",
......@@ -6886,6 +6886,54 @@
],
"time": "2019-10-24T14:27:39+00:00"
},
{
"name": "sensiolabs/security-checker",
"version": "v6.0.3",
"source": {
"type": "git",
"url": "https://github.com/sensiolabs/security-checker.git",
"reference": "a576c01520d9761901f269c4934ba55448be4a54"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/sensiolabs/security-checker/zipball/a576c01520d9761901f269c4934ba55448be4a54",
"reference": "a576c01520d9761901f269c4934ba55448be4a54",
"shasum": ""
},
"require": {
"php": ">=7.1.3",
"symfony/console": "^2.8|^3.4|^4.2|^5.0",
"symfony/http-client": "^4.3|^5.0",
"symfony/mime": "^4.3|^5.0",
"symfony/polyfill-ctype": "^1.11"
},
"bin": [
"security-checker"
],
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "6.0-dev"
}
},
"autoload": {
"psr-4": {
"SensioLabs\\Security\\": "SensioLabs/Security"
}
},
"notification-url": "https://packagist.org/downloads/",
"license": [
"MIT"
],
"authors": [
{
"name": "Fabien Potencier",
"email": "fabien.potencier@gmail.com"
}
],
"description": "A security checker for your composer.lock",
"time": "2019-11-01T13:20:14+00:00"
},
{
"name": "symfony/browser-kit",
"version": "v5.0.4",
......
......@@ -16,6 +16,7 @@ parameters:
git_pre_commit:
tasks:
- composer
- securitychecker
# - phpcs
- phpmd
- phplint
......@@ -132,11 +133,12 @@ parameters:
##
## PHP Copy/Paste Detector: https://github.com/phpro/grumphp/blob/master/doc/tasks/phpcpd.md
## -----> scan every file, everytime!
## -----> not work with PHP 7.2 and symfony/console 5.0 (need PHP 7.3)
# phpcpd:
# metadata:
# blocking: false
# priority: 0
# directory: '.'
# directory: ['.']
# exclude: ['vendor', 'tests/Fixture', 'tests/TestCase']
# names_exclude: []
# regexps_exclude: []
......@@ -187,6 +189,14 @@ parameters:
# strings: false
# triggered_by: ['php']
##
## Security Checker: https://github.com/phpro/grumphp/blob/master/doc/tasks/securitychecker.md
securitychecker:
lockfile: ./composer.lock
format: ~
end_point: ~
timeout: ~
run_always: false # only run when the composer.lock file has changed
##
## JsonLint: https://github.com/phpro/grumphp/blob/master/doc/tasks/jsonlint.md
jsonlint:
ignore_patterns: []
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment