mibu/laravel-defaulto

Maintainers

Details

github.com/michael-bullimore-uk/laravel-defaulto

Source

Issues

Installs: 27

Dependents: 0

Suggesters: 0

Security: 0

Stars: 1

Watchers: 1

Forks: 0

Open Issues: 0

dev-develop 2023-11-10 14:28 UTC

Requires

Requires (Dev)

MIT e7a844e6b1ca3ed3f9b9351de8c8e11cf0b32679

laraveldefaulto

This package is auto-updated.

Last update: 2024-09-10 16:18:40 UTC

README

Laravel Defaulto

This is WIP, please do not use in production.

About

A package that overrides the default Laravel configuration with secure defaults, plus some opinionated boilerplate (that can be disabled).

Features

  • Secure config by default
    • Increased bcrypt hashing cost
    • Encrypted session data
    • Expire cookies on browser close
    • Prevent CSR cookies
    • HTTPS only cookies
    • ...
  • Eloquent
    • Req. morph map
    • Strict mode
  • Immutable dates

TODO

  • Is there a way to enforce install of the Roave Security Advisories package as a dev dependency?
  • Tests, tests, tests.

Documentation

//

Installation

//

Please do not blindly use this package in production without thoroughly testing the implementation.

Security

Please do not report security related issues publicly.

License

MIT License