WordPress Security Advisories

Published On2019-12-14

Inspired Roave/SecurityAdvisories, I have created a similar package that aims to provide rudimentary protection against installing known WordPress core packages, plugins, and themes. Introducing WordPress Security Advisories!

This is a metapackage, which means it does not add any functional code to your application. This file is purely a JSON file that contains a list of package conflicts, which instructs composer to block installation of known vulnerable packages.

To make use of this, add this package to your composer setup:

composer require --dev phpwatch/wordpress-security-advisories:dev-master

After adding this package, if you try to require a package with a known vulnerability, it will be blocked.

Recent Articles on PHP.Watch

All Articles β€’ Feed
PHP 8.0 Thanks ❀

PHP 8.0 Thanks ❀

PHP 8.0.0 is released today πŸŽ‰πŸΎπŸŽŠ. Thank you all of you for your amazing efforts ❀.
PHP's resource to object transformation

PHP's resource to object transformation

A summary of PHP's long-term progress in `resource` objects to class objects
PHP Hash Algorithm Benchmark

PHP Hash Algorithm Benchmark

Benchmarks the performance of hashing algorithms supported in PHP, including MurmurHash in PHP 8.1.
Subscribe to PHP.Watch newsletter for monthly updates

You will receive an email on last Saturday of every month and on major PHP releases with new articles related to PHP, upcoming changes, new features and what's changing in the language. No marketing emails, no selling of your contacts, no click-tracking, and one-click instant unsubscribe from any email you receive.