Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
This project will read the composer.lock file in the Drupal root, and create a report containing installed Composer packages that have known security vulnerabilities. It uses the SensioLabs Security Checker package and service to complete this task, but is also capable of having that service swapped out should something else be more suitable.
Git clone command:
git clone --branch 8.x-1.x http://git.drupal.org/sandbox/chapabu/2693291.git
Manual reviews:
Comments
Comment #2
PA robot CreditAttribution: PA robot commentedThere are some errors reported by automated review tools, did you already check them? See http://pareview.sh/pareview/httpgitdrupalorgsandboxchapabu2693291git
Fixed the git clone URL in the issue summary for non-maintainer users.
We are currently quite busy with all the project applications and we prefer projects with a review bonus. Please help reviewing and put yourself on the high priority list, then we will take a look at your project right away :-)
Also, you should get your friends, colleagues or other community members involved to review this application. Let them go through the review checklist and post a comment that sets this issue to "needs work" (they found some problems with the project) or "reviewed & tested by the community" (they found no major flaws).
I'm a robot and this is an automated message from Project Applications Scraper.
Comment #3
th_tushar CreditAttribution: th_tushar commentedHi @chapabu,
Please update the issue description about the project in detail.
Also fix the issues reported by the Pareview tool, and mark the project status to "Need Review". So that the reviewers can review your project. To speed up the project application review process, please review other 3 projects in issue queue and tag your issue with "Pareview: review bonus" tag.
Thanks for your contribution!!
Comment #4
chapabu CreditAttribution: chapabu as a volunteer commentedComment #5
chapabu CreditAttribution: chapabu as a volunteer commentedI updated Coder to the latest dev release and managed to replicate and fix the PAReview failures. The only remaining failure is in one of the PHPSpec tests, where I'm using the
::class
keyword. I'm guessing PAReview is running PHP 5.4. Minimum requirements for D8 are 5.5, so I don't think this is really an issue.I'll try to review some other projects over the weekend, as I didn't get a chance today.
Comment #6
chapabu CreditAttribution: chapabu as a volunteer commentedComment #7
panshulk CreditAttribution: panshulk commentedAutomated Review
There is an error reported by http://pareview.sh/pareview/httpgitdrupalorgsandboxchapabu2693291git. Please look into it
Manual Review
This review uses the Project Application Review Template.
Comment #8
klausi@panshulk: looks like you forgot to change the status. Are there any blockers left after your review or should this now be RTBC instead?
Comment #9
panshulk CreditAttribution: panshulk commentedyes skipped changing the status by mistake :)
Comment #10
DamienMcKennaThanks for your contribution, Matt!
I updated your account so you can promote this to a full project and also create new projects as either a sandbox or a "full" project.
Here are some recommended readings to help with excellent maintainership:
You can find lots more contributors chatting on IRC in #drupal-contribute. So, come hang out and stay involved!
Thanks, also, for your patience with the review process. Anyone is welcome to participate in the review process. Please consider reviewing other projects that are pending review. I encourage you to learn more about that process and join the group of reviewers.
Thanks to the dedicated reviewer(s) as well.