Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.3% on packagist.org
Top 0.4% downloads on packagist.org
Top 0.2% dependent packages on packagist.org
Top 0.2% dependent repos on packagist.org
Top 0.2% forks on packagist.org
Top 0.4% docker downloads on packagist.org

packagist.org : yiisoft/yii2-authclient

External authentication via OAuth and OpenID for the Yii framework

Registry - Source - JSON
purl: pkg:composer/yiisoft/yii2-authclient
Keywords: api, OpenId, oauth, auth, OpenID Connect, yii2, facebook, github, google, hacktoberfest, linkedin, php, twitter, vk
License: BSD-3-Clause
Latest release: 8 days ago
First release: about 10 years ago
Namespace: yiisoft
Dependent packages: 196
Dependent repositories: 1,361
Downloads: 4,654,345 total
Stars: 463 on GitHub
Forks: 245 on GitHub
Docker dependents: 10
Docker downloads: 222,318
Total Commits: 389
Committers: 67
Average commits per author: 5.806
Development Distribution Score (DDS): 0.679
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://github.com/yiisoft, https://opencollective.com/yiisoft, https://tidelift.com/funding/github/packagist/yiisoft/yii2-authclient, https://github.com/sponsors/yiisoft
Last synced: 1 day ago

Low

GSA_kwCzR0hTQS13OHZoLXA3NGoteDl4cM4AA34Q

yii2-authclient vulnerable to possible timing attack on string comparison in OAuth1, OAuth2 and OpenID Connect implementation
Ecosystems: packagist
Packages: yiisoft/yii2-authclient
Source: github
Published: 5 months ago

Moderate

GSA_kwCzR0hTQS1ydzU0LTY4MjYtYzhqNc4AA34O

yiisoft/yii2-authclient's Oauth2 PKCE implementation is vulnerable
Ecosystems: packagist
Packages: yiisoft/yii2-authclient
Source: github
Published: 5 months ago