Your requirements could not be resolved to an installable set of packages. Problem 1 - Root composer.json requires google/auth ^1.19 <1.20 -> satisfiable by google/auth[v1.19.0, v1.19.1]. - google/auth[v1.19.0, ..., v1.19.1] require firebase/php-jwt ~5.0 -> found firebase/php-jwt[v5.0.0, ..., v5.5.1] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-2kqm-ps5x-s4f5") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config. Problem 2 - Root composer.json requires google/apiclient ^2.14.0 <2.15.0 -> satisfiable by google/apiclient[v2.14.0]. - google/apiclient v2.14.0 requires google/auth ^1.10 -> satisfiable by google/auth[v1.19.0, v1.19.1]. - google/auth[v1.19.0, ..., v1.19.1] require firebase/php-jwt ~5.0 -> found firebase/php-jwt[v5.0.0, ..., v5.5.1] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-2kqm-ps5x-s4f5") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config. Use the option --with-all-dependencies (-W) to allow upgrades, downgrades and removals for packages currently locked to specific versions.