WordPress Security Advisories

Published On2019-12-14

Inspired Roave/SecurityAdvisories, I have created a similar package that aims to provide rudimentary protection against installing known WordPress core packages, plugins, and themes. Introducing WordPress Security Advisories!

This is a metapackage, which means it does not add any functional code to your application. This file is purely a JSON file that contains a list of package conflicts, which instructs composer to block installation of known vulnerable packages.

To make use of this, add this package to your composer setup:

composer require --dev phpwatch/wordpress-security-advisories:dev-master

After adding this package, if you try to require a package with a known vulnerability, it will be blocked.

Recent Articles on PHP.Watch

All ArticlesFeed
Install/Upgrade PHP 8.1 on Ubuntu/Debian

Install/Upgrade PHP 8.1 on Ubuntu/Debian

A comprehensive guide on how to install or upgrade to PHP 8.1 on Ubuntu/Debian based systems.
PHP 8.1 Is Released!

PHP 8.1 Is Released!

Over 120 people helped shape PHP 8.1! Here are some posters to celebrate our loud!
Modern PHP data Encryption/Decryption with Sodium extension

Modern PHP data Encryption/Decryption with Sodium extension

An in-depth guide on public-key and secret-key cryptography with Sodium extension in PHP.
Subscribe to PHP.Watch newsletter for monthly updates

You will receive an email on last Wednesday of every month and on major PHP releases with new articles related to PHP, upcoming changes, new features and what's changing in the language. No marketing emails, no selling of your contacts, no click-tracking, and one-click instant unsubscribe from any email you receive.