Is zendframework/zend-diactoros safe to use?

zendframework/zend-diactoros has 1 known vulnerabilities on the latest version (2.2.1). DepScope rates its health at 5/100 (critical risk).

What is the latest version of zendframework/zend-diactoros?

The latest version of zendframework/zend-diactoros is 2.2.1, released 2019-11-13.

Does zendframework/zend-diactoros have known vulnerabilities?

Yes. zendframework/zend-diactoros has 1 known vulnerabilities. See depscope.dev/pkg/composer/zendframework/zend-diactoros for details.

Is zendframework/zend-diactoros deprecated?

Yes, zendframework/zend-diactoros is deprecated: laminas/laminas-diactoros

What are alternatives to zendframework/zend-diactoros?

DepScope has no curated alternatives for zendframework/zend-diactoros at this time.

What license does zendframework/zend-diactoros use?

zendframework/zend-diactoros is licensed under BSD-3-Clause.

zendframework/zend-diactoros

composerv2.2.1deprecated

PSR HTTP Message implementations

License BSD-3-Clausepermissive53 versions3 deps

/ 100

Health

find alternative

zendframework/zend-diactoros is deprecated — find an alternative

Update to >= 2.8.1 to fix known vulnerabilities

Low health score (5/100)
1 high severity vulnerabilities
Package is deprecated

Health breakdown0 – 100

0/25

maintenance

0/20

popularity

20/25

security

15/15

maturity

0/15

community

Vulnerabilities

1 high

Advisories (1)

Severity	ID	Summary	Fixed in
high	GHSA-f6p5-76fp-m248	URL Rewrite vulnerability in multiple zendframework components	2.8.1

Maintainer trust

Active maintainers (3m)

1

Contributors (12m)

0

Primary author dominance

0%

GitHub stars

1,532

single active maintainer 3marchived repo

Health History

Dependency Tree

License Audit

Dependencies (3)

php psr/http-factory psr/http-message

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/composer/zendframework/zend-diactoros

Last updated · 2019-11-13T19:16:13+00:00