PkgRadar

Composer · packagist.org

valkey-io/valkey-glide-php

Php Base64 Eval Chain, Php Shell With Decode, Credential file access

Why PkgRadar flagged v1.1.1

SeveritySignalEvidence
highPhp Base64 Eval Chain
highPhp Shell With Decode

Showing signal labels only. Sign in to view the exact matched indicators for each finding.

Scanned versions

VersionVerdictScoreScanned (UTC)
v1.1.1High risk562026-07-02

Block this in CI

PkgRadar gates valkey-io/valkey-glide-php (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem composer valkey-io/[email protected]
valkey-io/valkey-glide-php — Composer security scan | PkgRadar