/** * Composer/PHP supply-chain scanner. * * Detects supply-chain risks in composer.json and composer.lock: packages * matching curated threat-intel IOCs (composer: prefixed package entries), * non-https dist/source URLs, and repositories entries served over plain * http. */ import type { Finding } from "./types.js"; import { type FeedIOC } from "./threat-intel.js"; /** * Check if a file is a Composer-related file. */ export declare function isComposerFile(filename: string): boolean; /** * Scan Composer files in a directory. */ export declare function scanComposerFiles(dir: string): Finding[]; /** * Scan composer.json content. */ export declare function scanComposerJsonContent(content: string, relativePath: string, feed?: FeedIOC[]): Finding[]; /** * Scan composer.lock content. */ export declare function scanComposerLockContent(content: string, relativePath: string, feed?: FeedIOC[]): Finding[]; //# sourceMappingURL=composer-scanner.d.ts.map