This Docker image packs the php security checker into a standalone docker image which can be used in pipelines to check for known security issues in you're composer dependencies.
The Security checker is executable from everywhere in the image by calling "local-security-checker"
Example setup for the gitlab-ci
# Checks the composer dependencies for known security flaws
Check Composer packages:
stage: testing
image: ghcr.io/arne1303/php-security-checker-docker:main
when: always
script:
- local-security-checker