rogarithm/php-security-linter
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
18 Commits 1 Branch 1 Tag
b7457a4dc78e4e480d1b7060fefba48e309f8416
Commit Graph

7 Commits

Author SHA1 Message Date
Yutaka Kurosaki
91bcb53ab5 Add PHP_MEMORY_LIMIT option for install.sh 
- Document environment variable usage: PHP_MEMORY_LIMIT=2048M ./install.sh
- Update both English and Japanese sections

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 16:05:42 +09:00
Yutaka Kurosaki
c562116568 Add PHP memory limit documentation for Docker builds 
- Document --build-arg PHP_MEMORY_LIMIT option for large projects
- Default is 1024M, can increase to 2048M or more as needed
- Update Dockerfile version label to 0.0.1
- Add notes in both English and Japanese sections

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 16:04:56 +09:00
Yutaka Kurosaki
d407e95d1c Improve Docker installation documentation 
- Reorganize Installation section with Docker as primary method
- Add step-by-step Docker build and run instructions
- Show direct docker run commands without wrapper script
- Make wrapper script optional
- Fix directory name to php-security-linter
- Update both English and Japanese sections

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 16:02:03 +09:00
Yutaka Kurosaki
62a4d499ae Update repository URLs to Gitea 
- Change all URLs from github.com to opensource.rogarithm.net
- Update Docker image references to local build (php-security-linter:latest)
- Fix Gitea Issues URL in CONTRIBUTING.md

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 12:07:21 +09:00
Yutaka Kurosaki
208227b77e Prepare for OSS release v0.0.1 
Version updates:
- Set version to 0.0.1 across all files
- Update CLI banner, SARIF output, and documentation

New files:
- LICENSE: MIT license
- CHANGELOG.md: Initial changelog with all features
- CONTRIBUTING.md: Contribution guidelines

composer.json enhancements:
- Add version, keywords, homepage, support URLs
- Add authors section
- Add require-dev for PHPUnit

README.md updates:
- Update repository URLs to security-linter/php-laravel
- Update Docker image references

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 11:57:18 +09:00
Yutaka Kurosaki
dbbde1cc45 Add documentation for Laravel-specific security detection 
- Add section 8 to DETECTION_RULES.md covering:
  - Mass Assignment detection patterns
  - Raw SQL injection detection
  - CSRF protection checks
  - File upload validation rules
  - Route authentication middleware
  - Rate limiting detection
- Update README.md with Laravel-specific security in
  detectable vulnerabilities section (ja/en)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 21:45:26 +09:00
Yutaka Kurosaki
6280290898 Initial commit: PHP/Laravel Security Linter v1.0.0 
A static security analysis tool for PHP and Laravel applications
with recursive taint analysis capabilities.

Features:
- Comprehensive vulnerability detection (XSS, SQL Injection,
  Command Injection, Path Traversal, CSRF, Authentication issues)
- Recursive taint analysis across function calls
- Blade template analysis with context-aware XSS detection
- Smart escape detection and escape bypass detection
- Syntax highlighting in terminal output
- Multi-language support (Japanese/English)
- Docker support for easy deployment
- Multiple output formats (text, JSON, HTML, SARIF, Markdown)
- CI/CD integration ready (GitHub Actions, GitLab CI)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 15:18:53 +09:00