WordPress Security Advisories

Published On2019-12-14

Inspired Roave/SecurityAdvisories, I have created a similar package that aims to provide rudimentary protection against installing known WordPress core packages, plugins, and themes. Introducing WordPress Security Advisories!

This is a metapackage, which means it does not add any functional code to your application. This file is purely a JSON file that contains a list of package conflicts, which instructs composer to block installation of known vulnerable packages.

To make use of this, add this package to your composer setup:

composer require --dev phpwatch/wordpress-security-advisories:dev-master

After adding this package, if you try to require a package with a known vulnerability, it will be blocked.

Recent Articles on PHP.Watch

All ArticlesFeed
Attributes in PHP 8

Attributes in PHP 8

A comprehensive guide to PHP 8's new Attributes
PHP Ternary and php ternary Coalescing Operators

PHP Ternary and php ternary Coalescing Operators

A quick guide on PHP's Ternary Operators and Coalescing operators
Liskov Substitution Principle in PHP

Liskov Substitution Principle in PHP

How Liskov Substitution Principle applies to PHP, and PHPs contravariance and covariance.
Subscribe to PHP.Watch newsletter for monthly updates

You will receive an email on last Saturday of every month and on major PHP releases with new articles related to PHP, upcoming changes, new features and what's changing in the language. No marketing emails, no selling of your contacts, no click-tracking, and one-click instant unsubscribe from any email you receive.