Upcoming features in early 2021
Direct alerts of security vulnerabilities
We will continuously monitor your Composer packages for security vulnerabilities and alert your team directly if any are found.
Comment functionality per package
Ability to add a comment for a specific package in your project. Useful way of reminding your future self why you couldn't update a package. An example would be if a newer PHP version is needed and you need more time to prepare for that.
Other ideas that are not yet confirmed
Validation of Composer files
Functionality to validate your uploaded Composer files and recommend what to fix. Examples could be to check that the checksum is correct between composer.json and composer.lock. It could also be to suggest that you lock to a specific PHP version to avoid any diffs between your development and production environment.
Recommendation to update PHP version
By selecting your PHP version we can then recommend when we think it's time for you to update it. We can also notify you of any security vulnerabilities in the version you are using. The same could go for MySQL and other services.
Support for other package managers