Keep your supply chain secure with patches for new security vulnerabilities.
Stay covered with easy licensing policy enforcement and intellectual property indemnification.
Ensure your open source dependencies are actively maintained, both now and into the future.
Choose the best open source packages from the start—and then stay on the best releases.
Take a seat at the table with the creators behind the software you use.
Works with GitHub, GitLab, Bitbucket, and more. Support for every cloud platform.
roave/security-advisories is a PHP library that prevents installation of composer packages with known security vulnerabilities: no API, simply require it.
roave/security-advisories is available via the Packagist package manager.