/** * @param string $composer * @param string $lib * @param string $version * @param array $advisory * @param string $level * @return Issue */ private function createIssue($composer, $lib, $version, array $advisory, $level) { $message = sprintf('package "%s" with the version "%s" have known vulnerabilities', $lib, $version); $issue = new Issue($this, $message); $issue->setDescription($this->createDescription($advisory['title'], $advisory['cve'], $advisory['link'])); $issue->setFile($composer); $issue->setLevel($level); $issue->setExtraInformation(['lib' => $lib, 'version' => $version, 'link' => $advisory['link'], 'cve' => $advisory['cve']]); return $issue; }