PHP language logo

PHP static code analysis

Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your PHP code

  • .Bug
  • .Security Vulnerability
  • .Security Hotspot
  • .Code Smell

Frameworks

Support for Laravel and Symfony

Dedicated rule profiles for Drupal, PSR-2

Test frameworks

PHPUnit

PHP Coverage of OWASP TOP 10 2017

PHP coverage of OWASP TOP 10 2017


Security
Vulnerability
Security
Hotspot
A1 Injection
A2 Broken Authentication
A3 Sensitive Data Exposure
A4 XML External Entities (XXE)
A5 Broken Access control
A6 Security misconfigurations
A7 Cross Site Scripting (XSS)
A8 Insecure Deserialization
A9 Using Components with known vulnerabilities
A10 Insufficient logging and monitoring