spatie/security-advisories-health-check

Release 1.3.0

A Laravel Health check to security advisories for PHP packages

Homepage Packagist PHP

Keywords
laravel, spatie, security-advisories-health-check
License
MIT

Documentation

A Laravel Health check to security advisories for PHP packages

Latest Version on Packagist Total Downloads

This package contains a Laravel Health check that can report any known security issues with the installed PHP packages in your application.

The security advisories are fetched from Packages and are sources from GitHub, and other sources.

// typically, in a service provider

use Spatie\Health\Facades\Health;
use Spatie\SecurityAdvisoriesHealthCheck\SecurityAdvisoriesCheck;

Health::checks([
    SecurityAdvisoriesCheck::new()->retryTimes(5),
]);

Caching

By default, this package will make an HTTP request to Packagist every time the health check runs. To reduce API calls and improve performance, you can enable caching by calling cacheResultsForMinutes():

use Spatie\Health\Facades\Health;
use Spatie\SecurityAdvisoriesHealthCheck\SecurityAdvisoriesCheck;

Health::checks([
    SecurityAdvisoriesCheck::new()
        ->retryTimes(5)
        ->cacheResultsForMinutes(60),     // Enables caching for 1 hour
]);

Using Custom Cache

You can also provide your own PSR-16 compatible cache instance:

use Illuminate\Support\Facades\Cache;
use Spatie\Health\Facades\Health;
use Spatie\SecurityAdvisoriesHealthCheck\SecurityAdvisoriesCheck;

Health::checks([
    SecurityAdvisoriesCheck::new(
        packagistClient: null,
        cache: Cache::store('redis')    // Use Redis cache store
    )->cacheResultsForMinutes(120),     // Cache for 2 hours
]);

Configuration Options

SecurityAdvisoriesCheck::new()
    ->retryTimes(3)                     // Number of retry attempts on failure
    ->cacheResultsForMinutes(120)       // Cache duration in minutes
    ->ignorePackage('vendor/package')   // Ignore specific packages
    ->ignoredPackages([                 // Ignore multiple packages
        'vendor/package1',
        'vendor/package2'
    ]);

Documentation

The documentation of this package is available inside the docs of Laravel Health.

Support us

We invest a lot of resources into creating best in class open source packages. You can support us by buying one of our paid products.

We highly appreciate you sending us a postcard from your hometown, mentioning which of our package(s) you are using. You'll find our address on our contact page. We publish all received postcards on our virtual postcard wall.

Testing

composer test

Changelog

Please see CHANGELOG for more information on what has changed recently.

Contributing

Please see CONTRIBUTING for details.

Security Vulnerabilities

Please review our security policy on how to report security vulnerabilities.

Credits

License

The MIT License (MIT). Please see License File for more information.

Stats

Dependencies
1
Dependent packages
4
Dependent repositories
4
Total releases
9
Latest release
First release
Stars
43
Forks
7
Watchers
2
Contributors
11
Repository size
77.1 KB
SourceRank
15

Releases

1.3.0
1.2.1
1.2.0
1.1.0
1.0.2
1.0.1
1.0.0
0.0.2
0.0.1

Contributors

Freek Van der Herten Sergey Kudashev dependabot[bot] github-actions[bot] Emaad Ali Alex Vanderbist Mattias Geniar Niels Vanpachtenbeke Chris Ware Fraser Murray


See all contributors

Login to resync this project