Is cweagans/composer-patches safe to use?

cweagans/composer-patches has no known vulnerabilities on the latest version (2.0.0). DepScope rates its health at 54/100 (high risk).

What is the latest version of cweagans/composer-patches?

The latest version of cweagans/composer-patches is 2.0.0, released 2025-10-30.

No known vulnerabilities on the latest version of cweagans/composer-patches.

No, cweagans/composer-patches is actively maintained. Latest release: 2.0.0 (2025-10-30).

DepScope has no curated alternatives for cweagans/composer-patches at this time.

cweagans/composer-patches is licensed under BSD-3-Clause.

composerv2.0.0

Provides a way to patch Composer packages.

License BSD-3-Clausepermissive21 versions1 maintainers4 deps

/ 100

Health

safe to use

cweagans/[email protected] is safe to use (health: 54/100)

Health breakdown0 – 100

10/25

maintenance

0/20

popularity

25/25

security

12/15

maturity

7/15

community

Vulnerabilities

none known

Maintainer trust

Active maintainers (3m)

3

Contributors (12m)

6

Primary author dominance

63%

GitHub stars

1,692

Dependencies (4)

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/composer/cweagans/composer-patches

Last updated · 2025-10-30T23:44:22+00:00