Change security check to composer audit

.github/workflows/daily-security-check.yml

@@ -19,9 +19,9 @@ jobs:
         uses: andstor/file-existence-action@v2
         with:
           files: "composer.lock"
-      - name: Run php local security checker
-        if: steps.check_composer.outputs.files_exists == 'true'
-        uses: symfonycorp/security-checker-action@v4
+      -   name: Vulnerability check
+          run: php composer audit
+          if: steps.check_composer.outputs.files_exists == 'true'
 
       # node-yarn checks
       - name: Check for node-yarn project
@@ -99,4 +99,4 @@ jobs:
           SLACK_MESSAGE: 'Dependency check failed :crying_cat_face:'
           SLACK_TITLE: ${{ github.repository }} wants attention
           SLACK_USERNAME: NightlySecurityCheck
-          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}
+          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}

composer.json

@@ -20,7 +20,6 @@
         "knplabs/knp-paginator-bundle": "^5.9",
         "nelmio/security-bundle": "^2.12",
         "openconext/monitor-bundle": "^3.0",
-        "sensiolabs/security-checker": "^6.0",
         "surfnet/stepup-bundle": "^5.0",
         "surfnet/stepup-middleware-client-bundle": "^4.1",
         "surfnet/stepup-saml-bundle": "^4.3.2",