Support the ongoing development of Laravel.io →
johantux
posted 8 years ago
Security
Last updated 3 years ago.
0
grahamcampbell
replied 8 years ago

/vendor/psy/psysh/src/Psy/Shell.php

Not malware (unless your connection was compromised). You can verify this yourself by reading the source code.

/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php

That other file has absolutely nothing to do with Psy/Shell.php. In fact, you probably shouldn't even have that file on your production server. Install your dependencies using --no-dev.

0
Parth Trivedi parth5049
replied 8 years ago

I also received a similar email from GoDaddy flagging the following files as malware.

public_html/app/vendor/psy/psysh/src/Psy/ExecutionLoop/ForkingLoop.php

public_html/app/vendor/psy/psysh/src/Psy/ExecutionLoop/Loop.php

It is the same package of Psy. Does anyone know how to resolve this?

0
motorcityhosting
replied 7 years ago

I believe its sucuri (the protection go daddy uses) I just got this email:

Warning: File possibly compromised: ./application/vendor/psy/psysh/src/Psy/ExecutionLoop/ForkingLoop.php (php.backdoor.psyshell.001). Manual review recommended. Warning: File possibly compromised: ./application/vendor/psy/psysh/src/Psy/ExecutionLoop/Loop.php (php.backdoor.psyshell.001). Manual review recommended.

0

Sign in to participate in this thread!

Eventy

Your banner here too?

JohanTux johantux Joined 14 Jul 2016

Moderators

We'd like to thank these amazing companies for supporting us

Eventy NativePHP
Fathom
Forge
Envoyer
Beyond Code
BairesDev
N-iX
Litslink

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

X (Twitter) Bluesky Bluesky GitHub

The community

Laravel Laravel Laravel News Laravel News
Laracasts Laracasts Laravel Podcast Laravel Podcast
© 2025 Laravel.io - All rights reserved.
Terms of service Privacy policy Advertise