# hryvinskyi/magento2-invisible-captcha 3.1.0

> Version 3.1.0 of hryvinskyi/magento2-invisible-captcha, released 2026-07-11.

`composer require hryvinskyi/magento2-invisible-captcha:3.1.0`

Canonical URL: https://packagento.com/hryvinskyi/magento2-invisible-captcha/3.1.0

## At a glance

- **Released**: 2026-07-11
- **Magento**: *
- **PHP**: ~8.1.0||~8.2.0||~8.3.0||~8.4.0||~8.5.0
- **QA**: failing

## What it does

Magento 2 multi-provider invisible captcha & bot protection (Google reCAPTCHA v2/v3/Enterprise and Cloudflare Turnstile) for form-level and route-level protection

## Dependencies

### Require

| Package | Constraint |
|---|---|
| hryvinskyi/magento2-base | ^2.1 |
| hryvinskyi/magento2-configuration-fields | ^1.0.11 |
| hryvinskyi/magento2-theme-assets | ^1.0 |
| magento/framework | * |
| magento/module-backend | * |
| magento/module-catalog | * |
| magento/module-catalog-search | * |
| magento/module-checkout | * |
| magento/module-config | * |
| magento/module-contact | * |
| magento/module-customer | * |
| magento/module-graph-ql | * |
| magento/module-layered-navigation | * |
| magento/module-newsletter | * |
| magento/module-paypal | * |
| magento/module-quote | * |
| magento/module-review | * |
| magento/module-sales-rule | * |
| magento/module-send-friend | * |
| magento/module-store | * |
| magento/module-url-rewrite | * |
| magento/module-webapi | * |
| magento/module-wishlist | * |
| nyholm/psr7 | ^1.5 |
| php | ~8.1.0\|\|~8.2.0\|\|~8.3.0\|\|~8.4.0\|\|~8.5.0 |
| psr/http-client | ^1.0 |
| psr/http-factory | ^1.0 |
| psr/http-message | ^1.0 \|\| ^2.0 |
| symfony/http-client | ^5 \|\| ^6 \|\| ^7 \|\| ^8 |

### Require (dev)

| Package | Constraint |
|---|---|
| roave/security-advisories | dev-latest |

## Quality

Version 3.1.0 fails the Packagento QA pipeline. Verdicts below are per-cell (Magento line × PHP version) for the matrixed tools, and run-once for the static / security tiers.


### Compatibility

Each Magento line is installed on its supported PHP versions, then the module is built (DI compile + static-content deploy). Cells show passed / failed / untested; staircase gaps render as `–`.

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | 1 | 1 | – | – |
| 2.4.8 | – | Pass | Pass | – |
| 2.4.9 | – | – | Pass | Pass |


### Code Quality

Advisory checks against the module's source. Never affect the Compatibility verdict — a phpcs finding can't make a module incompatible.

#### Static Analysis

Coding standards (phpcs), mess detection (phpmd), copy-pasted code (cpd), PHP cross-version compatibility, composer.json validity. Each runs once for the whole module.

| Tool | Status | Findings | Summary |
|---|---|---|---|
| PHPCS | Fail | 270 | 13 errors, 257 warnings (ruleset: Magento2), 10 auto-fixable with phpcbf |
| PHPMD | Warning | 33 | 33 rule violations (MissingImport:12, TooManyPublicMethods:7, NPathComplexity:4, ErrorControlOperator:3, UnusedFormalParameter:3) |
| Cpd | Warning | 9 | 9 duplicated chunks spanning 305 total lines (min-lines=5, min-tokens=70) |
| Composer validate | Info | 21 | valid; 21 advisory notes (composer validate --strict) |

#### PHPStan

Type-checks the module against a real Magento install. Re-runs per Magento + PHP version because resolvable symbols differ between releases.

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | 16 | 16 | – | – |
| 2.4.8 | – | 16 | 15 | – |
| 2.4.9 | – | – | 15 | 15 |


### Tests

Unit and integration suites run per Magento + PHP cell. Test failures speak to the module's behaviour, not its compatibility with a line, so they're reported here separately.

#### Unit Tests

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | N/A | N/A | – | – |
| 2.4.8 | – | N/A | N/A | – |
| 2.4.9 | – | – | N/A | N/A |

#### Integration Tests

| Magento | PHP 8.2 | PHP 8.3 | PHP 8.4 | PHP 8.5 |
|---|---|---|---|---|
| 2.4.7 | Error | Error | – | – |
| 2.4.8 | – | 27 | 27 | – |
| 2.4.9 | – | – | 27 | not tested |


### Security

Dependency-advisory audit (composer audit) plus a source malware scan. A malware detection fails the version outright.

| Tool | Status | Findings | Summary |
|---|---|---|---|
| Composer audit | N/A | 0 | no resolvable dependency tree to audit: |
| Malware scan | Pass | 0 |  |

## Parent package

[hryvinskyi/magento2-invisible-captcha](https://packagento.com/hryvinskyi/magento2-invisible-captcha.md) — full catalogue, pricing, install steps, and vendor info.

