From 6481f4321db9763bac18932bfbab25d3094d42cf Mon Sep 17 00:00:00 2001
From: Niels Keurentjes <niels.keurentjes@omines.com>
Date: Fri, 7 Feb 2025 12:53:40 +0100
Subject: [PATCH] Remove reference to Local PHP Security Checker

Local PHP Security Checker has been archived in favor of composer audit months ago.
---
 setup.rst | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/setup.rst b/setup.rst
index 1fc65f23856..117de9dd66c 100644
--- a/setup.rst
+++ b/setup.rst
@@ -249,9 +249,9 @@ workflows to make them fail when there are vulnerabilities.
 .. tip::
 
     In continuous integration services you can check security vulnerabilities
-    using a different stand-alone project called `Local PHP Security Checker`_.
-    This is the same project used internally by ``check:security`` but much
-    smaller in size than the entire Symfony CLI.
+    by invoking `composer audit`. This uses the same data internally as
+    ``check:security`` but does not require installing the entire Symfony CLI
+    during CI or on CI workers.
 
 Symfony LTS Versions
 --------------------
@@ -318,7 +318,6 @@ Learn More
 .. _`The Symfony Demo Application`: https://github.com/symfony/demo
 .. _`Symfony Flex`: https://github.com/symfony/flex
 .. _`PHP security advisories database`: https://github.com/FriendsOfPHP/security-advisories
-.. _`Local PHP Security Checker`: https://github.com/fabpot/local-php-security-checker
 .. _`Symfony releases`: https://symfony.com/releases
 .. _`Main recipe repository`: https://github.com/symfony/recipes
 .. _`Contrib recipe repository`: https://github.com/symfony/recipes-contrib