Securing Laravel
  • Home
  • In Depth Articles
  • Security Tips
  • Archives
  • About
  • Laravel Security Audits & Pentests
  • Practical Laravel Security Course
Sign in Subscribe
Restack

OpenLampTech - Developer Interview with Stephen Rees-Carter

Joshua Otwell

29 Jun 2023
Share

Read more

Security Tip: Have You Heard Of Slopsquatting?

Security Tip: Have You Heard Of Slopsquatting?

[Tip #132] Your AI agent hallucinates a package name, confidently installs it, and keeps working - except an attacker registered that exact name, packed with malware. Welcome to slopsquatting.

By Stephen Rees-Carter 01 Jul 2026
Security Tip: Safely Updating Dependencies

Security Tip: Safely Updating Dependencies

[Tip #131] Updating packages used to be a no-brainer, but now you need to be careful. Updates may be malicious. But not updating leaves vulns unpatched. So what do you do??? 🤷

By Stephen Rees-Carter 20 Jun 2026
In Depth: Version Numbers Are Vanity Labels

In Depth: Version Numbers Are Vanity Labels

[In Depth #40] We trust version numbers to mean a specific, fixed release - but they're really just labels pointing at a commit, and an attacker can quietly move them. Let's dig into tag hijacking, the attack behind tj-actions and Laravel-Lang. 😈

lock-1 By Stephen Rees-Carter 08 Jun 2026
Security Tip: Secure Your Repositories with Laravel Moat

Security Tip: Secure Your Repositories with Laravel Moat

[Tip #130] Laravel Moat is a new tool that assesses the security posture of your GitHub repositories and recommends ways to tighten the controls protecting them.

By Stephen Rees-Carter 26 May 2026

Securing Laravel

The essential security resource for Laravel developers.

Securing Laravel
  • Subscribe
  • In Depth Articles
  • Security Tips
  • Archives
  • Stephen's Socials
Powered by Ghost