From efed8f8340a1555cd6ac8665d26955d75ea80c2c Mon Sep 17 00:00:00 2001
From: Niels Keurentjes <niels.keurentjes@omines.com>
Date: Fri, 7 Feb 2025 12:53:40 +0100
Subject: [PATCH 1/2] Remove reference to Local PHP Security Checker

Local PHP Security Checker has been archived in favor of composer audit months ago.
---
 setup.rst | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/setup.rst b/setup.rst
index 1fc65f23856..117de9dd66c 100644
--- a/setup.rst
+++ b/setup.rst
@@ -249,9 +249,9 @@ workflows to make them fail when there are vulnerabilities.
 .. tip::
 
     In continuous integration services you can check security vulnerabilities
-    using a different stand-alone project called `Local PHP Security Checker`_.
-    This is the same project used internally by ``check:security`` but much
-    smaller in size than the entire Symfony CLI.
+    by invoking `composer audit`. This uses the same data internally as
+    ``check:security`` but does not require installing the entire Symfony CLI
+    during CI or on CI workers.
 
 Symfony LTS Versions
 --------------------
@@ -318,7 +318,6 @@ Learn More
 .. _`The Symfony Demo Application`: https://github.com/symfony/demo
 .. _`Symfony Flex`: https://github.com/symfony/flex
 .. _`PHP security advisories database`: https://github.com/FriendsOfPHP/security-advisories
-.. _`Local PHP Security Checker`: https://github.com/fabpot/local-php-security-checker
 .. _`Symfony releases`: https://symfony.com/releases
 .. _`Main recipe repository`: https://github.com/symfony/recipes
 .. _`Contrib recipe repository`: https://github.com/symfony/recipes-contrib

From 89950eee76d1bed44633036ba7acccb5905a1768 Mon Sep 17 00:00:00 2001
From: Javier Eguiluz <javier.eguiluz@gmail.com>
Date: Tue, 11 Mar 2025 17:30:40 +0100
Subject: [PATCH 2/2] Minor tweak

---
 setup.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/setup.rst b/setup.rst
index 117de9dd66c..889df729466 100644
--- a/setup.rst
+++ b/setup.rst
@@ -249,8 +249,8 @@ workflows to make them fail when there are vulnerabilities.
 .. tip::
 
     In continuous integration services you can check security vulnerabilities
-    by invoking `composer audit`. This uses the same data internally as
-    ``check:security`` but does not require installing the entire Symfony CLI
+    by running the ``composer audit`` command. This uses the same data internally
+    as ``check:security`` but does not require installing the entire Symfony CLI
     during CI or on CI workers.
 
 Symfony LTS Versions