Security Tips

Security Tips

Security Tip: Protecting Production APIs

[Tip#29] Protecting the integrity of your data is just as important as stopping hackers.

Security Tips

Security Tip: composer audit

[Tip#28] Composer 🥰

Security Tips

Security Tip: Leaking Model Existence

[Tip#27] Observing the existence of something you can't access still tells you something important, even if you can't access it.

Security Tips

Security Tip: Watch Out for Type Juggling

[Tip#26] Type Juggling is still very much a problem.

Security Tips

Security Tip: Login Logging

[Tip#25] Try saying that fast 3 times...

Security Tips

Security Tip: Use Route Groups!

[Tip#24] It may sound trivial, but it's easy to overlook.

Security Tips

Security Tip: Scoping Bindings

[Tip#23] Because who doesn't love to scope their bindings?

Security Tips

Security Tip: Validating HTML & Markdown Input!

[Tip#22] Validating user input is easy to forget without adding HTML or Markdown into the mix!

Security Tips

Security Tip: Non-production Mail Sending

[Tip#21] It may seem strange but non-production mail can be a security risk.

Security Tips

Security Tip: Be Careful of Auth Helpers!

[Tip#20] Laravel's helpers are great, but make sure you know everything they do before you use them.

Security Tips

Security Tip: Cryptographically Secure Randomness

[Tip#19] Because all randomness should be cryptographically secure.

Security Tips

Security Tip: Keep Dependencies Updated

[Tip#18] Dependencies are security risks, especially if you have a lot of them or don't keep them updated...