PkgRadar

Composer · packagist.org

ecodev/felix

Php Backtick Shell: Backtick shell-out with variable interpolation.

Why PkgRadar flagged 17.0.2

SeveritySignalEvidence
mediumPhp Backtick ShellBacktick shell-out with variable interpolation. · Ecodev-felix-0c5f3d1/src/Service/Bvr.php
mediumPhp Backtick ShellBacktick shell-out with variable interpolation. · Ecodev-felix-0c5f3d1/src/Service/DataRestorer.php
mediumPhp Shell Callexec / system / passthru / shell_exec / proc_open — process spawning. · Ecodev-felix-0c5f3d1/src/DBAL/Logging/Connection.php
mediumPhp Shell Callexec / system / passthru / shell_exec / proc_open — process spawning. · Ecodev-felix-0c5f3d1/src/Service/AbstractDatabase.php
mediumPhp Shell Callexec / system / passthru / shell_exec / proc_open — process spawning. · Ecodev-felix-0c5f3d1/src/Service/Mailer.php

Scanned versions

VersionVerdictScoreScanned (UTC)
17.0.2Review252026-05-27

Block this in CI

PkgRadar gates ecodev/felix (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem composer ecodev/[email protected]
Start free — 25 scans / moView full evidence