Executes composer audit with GrumPHP. Since Composer 2.4 there is a new command called audit, that lists reported security vulnerabilities on current package versions. If the task encounters a vulnerable version, a warning is displayed.
Install composer package
composer require --dev madikon/grumphp-composer-auditAdd the extension loader to your grumphp.yml
grumphp:
extensions:
- Madikon\GrumphpComposerAudit\Extension\LoaderDefault configuration for grumphp
grumphp:
tasks:
composer_audit:
path: ./
format: table | sumary | jsonResults in the folowing command line call
composer audit --working-dir=path --format=format