“You manage your PHP project dependencies with Composer, right? But are you sure that your project is not dependent on a package with known security issues? The SensioLabs security advisories checker is a simple tool, available as a web service or as an online application, that uses the information from your
composer.lock file to check for known security vulnerabilities. This checker is a frontend for the security advisories database.” / SensioLabs.
Source: Check your PHP project for known security issues – SensioLabs Security Advisories Checker