# fraudlabspro/magento2

> FraudLabs Pro Fraud Prevention plugin that screen the order transaction for online frauds. Fraud Prevention extension for Magento 2.

`composer require fraudlabspro/magento2`

Canonical URL: https://packagento.com/fraudlabspro/magento2

## At a glance

- **Vendor**: fraudlabspro (https://packagento.com/fraudlabspro.md)
- **Latest version**: 2.8.0 — released 2026-06-04
- **Pricing**: Free
- **Package type**: Magento 2 module
- **Status**: active, accepting new buyers

## Installation

Packagento is licence-gated, so even free packages need a licence on a project before Composer can resolve them.

1. **Sign in or create an account** at https://packagento.com/customer/account/.

2. **Add the package to your account.** Open https://packagento.com/fraudlabspro/magento2 and complete the free checkout. A licence is minted automatically.

3. **Create or pick a project, then activate the licence on it.**
   - Projects represent the Magento installs you deploy to. Manage them at https://packagento.com/projects/.
   - Activate the new licence on the project you'll deploy this package to. Activation is what generates the Composer credentials scoped to that project.

4. **Add the project credentials to your Magento codebase.**

   Grab the project's public + private key from https://packagento.com/projects/ (open the project, then its Credentials tab), and add them to `auth.json`:

   ```json
   {
     "http-basic": {
       "packagento.com": {
         "username": "ppk_live_...",
         "password": "psk_live_..."
       }
     }
   }
   ```

   Add the Packagento Composer repository to `composer.json`:

   ```json
   {
     "repositories": [
       { "type": "composer", "url": "https://packagento.com" }
     ]
   }
   ```

5. **Install and apply.**

   ```bash
   composer require fraudlabspro/magento2:*
   bin/magento setup:upgrade
   bin/magento setup:di:compile
   bin/magento cache:flush
   ```

## What it does

FraudLabs Pro Fraud Prevention plugin that screen the order transaction for online frauds. Fraud Prevention extension for Magento 2.

## README

This extension helps user to screen the order transaction for online frauds in Magento easily. An example of order transaction is the credit card order. It checks each order transaction that been performed and provides user the fraud validation result on the Magento order details page.

The features of this extension are:

* Fraud analysis and scoring
* IP address geolocation & proxy validation
* Email address validation
* Credit card issuing bank validation
* Transaction velocity validation
* Device transaction validation
* Blacklist validation
* Custom rules trigger
* Email notification of fraud orders
* Mobile app notification of fraud orders

This extension requires a valid API key to function. Please sign up for a free API key at https://www.fraudlabspro.com/sign-up.

## Installation

### Install Manually

1.  Download the FraudLabs Pro plugin from the FraudLabs Pro GitHub site at https://github.com/fraudlabspro/magento2.
2.  Create a folder and name as Hexasoft.
3.  Unzip the file that downloaded from FraudLabs Pro GitHub site, rename it to FraudLabsPro and transfer it into Hexasoft folder.
4.  Upload the Hexasoft folder to the subdirectory of Magento installation root directory as: magento2/app/code/
5.  Login to the Magento admin page and disable the cache under the System -> Cache Management page. 
6.  At the Linux server command line enter the following command in the Magento root directory: php bin/magento setup:upgrade

### Install via Composer

1.  At the Linux server command line enter the following command in Magento root directory: composer require hexasoft/module-fraudlabspro
2.  Next continue by entering: composer update
3.  Then follow by: php bin/magento setup:upgrade

For more detail information please refer https://www.fraudlabspro.com/tutorials/how-to-install-fraudlabs-pro-plugin-on-magento2.

## Changelog

Revision History for FraudLabs Pro Magento2

2.8.0 2026-05-18
        Supported bill_to parameter for Screen Order API.

2.7.5 2025-08-07
        Fixed security vulnerabilities.

2.7.4 2025-07-04
        Fixed Creation of dynamic property deprecated functionality error.

2.7.3 2025-02-27
        Updated all FraudLabs Pro API to v2.

2.7.1 2025-02-24
        Updated Fraud Validation Report.

2.7.0 2024-12-04
        Added Enable Debug Log feature.

2.6.1 2024-11-19
        Fixed undefined array key warning.

2.6.0 2024-10-03
        Supported Adobe Commerce (cloud).

2.5.0 2024-07-10
        Added Auto-Sync order status feature.

2.4.0 2023-12-27
        Updated to FraudLabs Pro API v2.

2.3.4 2023-08-03
        Updated user guide.

2.3.3 2022-12-01
        Removed Agent JavaScript v3.

2.3.2 2022-10-07
        Supported item type classification.

2.3.1 2022-09-23
        Fixed missing device information issue.

2.3.0 2022-09-02
        Implemented new Agent JavaScript.

2.2.8 2022-08-16
        Added payment_gateway information for screen/order API.

2.2.7 2022-07-29
        Added coupon code information for screen/order API.

2.2.6 2022-05-10
        Updated fraud report display.

2.2.5 2021-08-04
        Updated order feedback fields.

2.2.4 2021-04-13
        Updated Settings page to include Approve Status change.

2.2.3 2020-09-15
        Fixed IP address parsing issue.

2.2.2 2020-08-12
        Added csp whitelist.

2.2.1 2020-06-10
        Added new result fields.

2.2.0 2020-04-10
        Support product SKU validation.

2.1.0 2019-10-09
        Support notification based on fraud status using Zapier.

2.0.13 2019-05-24
        Added is_phone_verified field.

2.0.12 2019-02-21
        Capture real IP behind firewalls and proxies.

2.0.11 2018-07-24
        Fix compatibility issue.

2.0.10 2017-10-25
        Changed plugin configuration setting.

2.0.9 2017-10-20
        Fixed name fields input for screen/order API.

2.0.8 2017-10-20
        Fixed device information capture issue.

2.0.7 2017-09-15
        Added new fields for screen/order API.

2.0.6 2017-08-24
        Fixed IP detection when Magento is running behind a reverse proxy server.

2.0.5 2017-05-18
        Added "Blacklist" button.

2.0.4 2017-03-21
        Fixed result display issue.

2.0.0 2016-06-15
        First Release

## Recent Versions

| Version | Released |
|---|---|
| 2.8.0 | 2026-06-04 |
| 2.7.5 | 2025-08-07 |
| 2.7.4 | 2025-07-04 |
| 2.7.3 | 2025-03-03 |
| 2.7.1 | 2025-02-24 |
| 2.7.0 | 2024-12-13 |
| 2.6.1 | 2024-11-19 |
| 2.6.0 | 2024-10-04 |
| 2.5.0 | 2024-07-10 |
| 2.4.0 | 2023-12-28 |

Showing 10 of 38 versions. Full release history on https://packagento.com/fraudlabspro/magento2.

## Dependencies

### Require

| Package | Constraint |
|---|---|
| php | >=5.5 |

## Quality

Latest release (2.8.0) fails the Packagento QA pipeline. Verdicts below are per-cell (Magento line × PHP version) for the matrixed tools, and run-once for the static / security tiers.


### Compatibility

Each Magento line is installed on its supported PHP versions, then the module is built (DI compile + static-content deploy). Cells show passed / failed / untested; staircase gaps render as `–`.

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | Pass | Pass | – | – |
| 2.4.8 | – | Pass | Pass | – |
| 2.4.9 | – | – | Pass | Pass |


### Code Quality

Advisory checks against the module's source. Never affect the Compatibility verdict — a phpcs finding can't make a module incompatible.

#### Static Analysis

Coding standards (phpcs), mess detection (phpmd), copy-pasted code (cpd), PHP cross-version compatibility, composer.json validity. Each runs once for the whole module.

| Tool | Status | Findings | Summary |
|---|---|---|---|
| PHPCS | Warning | 827 | 827 warnings (ruleset: Magento2) — 608 auto-fixable with phpcbf |
| PHPMD | Warning | 11 | 11 rule violations (ExcessiveClassComplexity:2, CyclomaticComplexity:2, NPathComplexity:2, ExcessiveMethodLength:2, MissingImport:2) |
| Cpd | Warning | 4 | 4 duplicated chunks spanning 131 total lines (min-lines=5, min-tokens=70) |
| Composer validate | Info | 1 | valid; 1 advisory note (composer validate --strict) |

#### PHPStan

Type-checks the module against a real Magento install. Re-runs per Magento + PHP version because resolvable symbols differ between releases.

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | 38 | 38 | – | – |
| 2.4.8 | – | 38 | 38 | – |
| 2.4.9 | – | – | 38 | 38 |


### Tests

Unit and integration suites run per Magento + PHP cell. Test failures speak to the module's behaviour, not its compatibility with a line, so they're reported here separately.

#### Unit Tests

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | N/A | N/A | – | – |
| 2.4.8 | – | N/A | N/A | – |
| 2.4.9 | – | – | N/A | N/A |

#### Integration Tests

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | N/A | N/A | – | – |
| 2.4.8 | – | N/A | N/A | – |
| 2.4.9 | – | – | N/A | N/A |


### Security

Dependency-advisory audit (composer audit) plus a source malware scan. A malware detection fails the version outright.

| Tool | Status | Findings | Summary |
|---|---|---|---|
| Composer audit | Pass | 0 |  |
| Malware scan | Pass | 0 |  |

## Licence and pricing

Free. A licence is still minted on checkout and bound to your project for Composer access — no payment step.

Refundable within 14 days of first purchase via https://packagento.com/account/refunds/.

## Install via Claude Code or any MCP client

The Packagento MCP server can run the licence + project + Composer steps above in one tool call:

```
purchase_and_install_packages(
  composer_names=["fraudlabspro/magento2"],
  project_id="proj_xxx"
)
```

This handles cart, checkout, licence minting, project activation, and writes auth.json credentials. Connect a client with `claude mcp add packagento https://mcp.packagento.com`. Full setup at https://packagento.com/docs/mcp-setup.

## Vendor

fraudlabspro is a Magento 2 vendor on Packagento. See https://packagento.com/fraudlabspro.md for their full catalogue.