You code in PHP and composer is your dependency manager?
You don't yet have a dependency analysis process in your continuous integration and testing system?
With Security Audit, track easily the dependencies of your PHP projects.
Dependency analysis is a method for identifying security vulnerabilities in your project. With the Security Audit application you can quickly identify vulnerabilities and abandonned packages.
The content of your composer.lock file is analysed is analyzed automatically and we make no other use of it.
Likewise, your personal data is only used to identify you or send you daily or weekly alerts.
Would you like more information about our data protection policy?
After each analysis, you benefit from a table tracking the versions used by your application.
Connect your project to your Git repository to have an automatic update of your audit report.
Add badges directly to the README.md file of your projects, so you will be informed of the presence of new vulnerabilities or abandoned packages.
Symfony Insight | Security Audit | |
---|---|---|
Dependency Analysis | ||
Code quality | ||
Documentation and good practices | ||
Architecture and design | ||
Alerts and notifications | ||
Version tracking | ||
Integration with CI/CD | ||
Historical comparison | ||
Team collaboration | ||
Free plan | ||
Premium plan | ||
Security Analysis | ||
Detailed reports | ||
Configuration control | ||
Performance | ||
Technical support | ||
Continuous integration | ||
Compliance audit | ||
Analyse statique du code | ||
Dynamic code analysis | ||
Data Integrity Analysis | ||
Detection of common vulnerabilities | ||
Secrets management | ||
Log analysis |
Indeed, Security Audit does not cover all Symfony Insight features, but we are working to complement the analysis of dependencies and stack components with static analysis of source code for our clients' projects. This static analysis is currently artisanal using tools like SonarQube, PHPStan... Contact us for more information.
FAST
Analysis of dependencies from
a composer.lock
Analysis of dependencies
from a Git repository
Create a project to benefit from
advanced features
ADVANCED
Register with a
GitHub account or email
Save your analyzes
in a project
Receive daily
or weekly alerts by email
Sharing reports
with your team
Visualize the roadmap
of your versions
Compare your analysis history
Start nowPREMIUM
Unlimited number of projects
Unlimited instant analyses
Unlimited number of teams
Unlimited number of
members in your teams