The Local PHP Security Checker is a command line tool that checks if your PHP application depends on PHP packages with known security vulnerabilities. It uses the Security Advisories Database behind the scenes.
Download a binary from the Releases page on Github, rename it to local-php-security-checker and make it executable.
Source code and additional information can be found here: https://github.com/fabpot/local-php-security-checker