Supply Chain

The supply chain is the set of components, libraries, tools and processes that are used to build an application.

• the application source code, including version management

• the component dependencies, such as composer.json, phive…

• the build and development tools, such as phpunit, static analysis…

• CI pipelines

• Production environment, such as PHP, extensions, virtualization…

• External services, databases, APIs, cloud providers…

Documentation

See also The PHP Stack’s Supply Chain and Supply Chain Security in PHP Projects.

Related : Supply Chain Attack, Composer, Packagist, Package Manager