PkgRadar

Composer · packagist.org

jessegall/php-types

Composer Install Scripts Present: composer.json declares pre/post install/update scripts — execute on composer install.

Why PkgRadar flagged v1.4.0

SeveritySignalEvidence
mediumSuspicious Publish Context{"package_age_days":1,"publisher":"Jesse Gall","burst_same_day":2,"burst_week":2,"lure":null,"version_anomaly":false,"new_account":false}

Scanned versions

VersionVerdictScoreScanned (UTC)
v1.4.0Review152026-06-14
v1.2.2Review52026-06-13
v1.3.0Review52026-06-13
v1.2.1Review52026-06-13
v1.2.0Review52026-06-13
v1.0.0Review52026-06-13
v1.0.1Review52026-06-13
v1.1.0Review52026-06-13

Block this in CI

PkgRadar gates jessegall/php-types (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem composer jessegall/[email protected]
Start free — 25 scans / moView full evidence
jessegall/php-types — Composer security scan | PkgRadar