Projects must not depend on dependencies with known security issues

More information:

The checker detected 2 security issues in package yiisoft/yii2 installed in version
1) class yii\web\ViewAction allowed to include arbitrary files that end with .php.
2) JSON Data encoded for use in HTML was not safe to use in IE6/IE7, possible XSS attacks.

Time to fix: about 1 day
Open Issue Permalink