PkgRadar

Composer · packagist.org

two-inc/magento2

Remote Payload

Why PkgRadar flagged 2.1.1

SeveritySignalEvidence
mediumRemote Payload

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
2.1.1Review62026-07-04

Block this in CI

PkgRadar gates two-inc/magento2 (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem composer two-inc/[email protected]
two-inc/magento2 — Composer security scan | PkgRadar