Security Tips
Security Tip: Validating Array Inputs
[Tip#42] Validating single values is easy, but what about arrays?
Weekly security tips that cover the simpler topics, configuration options, tricks, updates, and anything else security related you need to be aware of.
Security Tips
[Tip#42] Validating single values is easy, but what about arrays?
Security Tips
[Tip#41] It's quite common to inject JSON into Blade templates for various use cases, but is it actually safe to do so? Not really...
Security Tips
[Tip#40] Let's complete the set of request input helpers and their security implications
Security Tips
[Tip #39] Why treat all user input as strings when you can pull out specific values and automatically cast them as the types you're expecting?
Security Tips
[Tip#38] Laravel is full of little helpers and features, and the Timebox is one that's often overlooked.
Security Tips
[Tip#37] If you need to generate passwords in your app, it's important to use a cryptographically secure algorithm. Laravel makes this easy by giving us the Str::password() helper!
Security Tips
[Tip#36] Encoding/serialising data can be risky if you're not using the correct functions.
Security Tips
[Tip#35] It's easy to make innocent changes to one part of your app and forget to check how that flows into other parts of your app
Security Tips
[Tip#34] In September, Laravel 9.32 added the ability to encrypt environment files... but do you need to use it?
Security Tips
[Tip#33] We can easily restrict access to files on remote storage like S3, but what about local files?
Security Tips
[Tip#32] For times when one rate limit just won't do!
Security Tips
[Tip#31] These are my favourite simple security trick to let you know if someone is poking around in your stuff.