Add composer audit to CI pipeline

theodo-group / LLPhant

LLPhant - A comprehensive PHP Generative AI Framework using OpenAI GPT 4. Inspired by Langchain

MIT License

806 stars 80 forks source link

Add composer audit to CI pipeline #182

Closed f-lombardo closed 2 months ago

f-lombardo commented 2 months ago

I think it would be useful to add composer audit somewhere in the CI pipeline to check vulnerabilities in dependencies. To do that we could chance either .github/workflows/tests.yml or the test script in composer.json. What do you think @MaximeThoonsen ?

MaximeThoonsen commented 2 months ago

good idea, I added it 👍️