milenmk / laravel-blacklist
A Laravel package for blacklist validation of user input
Requires
- php: ^8.0
- illuminate/support: ^8.0|^9.0|^10.0|^11.0|^12.0
Requires (Dev)
- brianium/paratest: ^7.9
- laravel/pint: ^1.13
- orchestra/testbench: ^10.2
- phpunit/phpunit: ^12.1
- squizlabs/php_codesniffer: ^3.11
- tightenco/duster: ^3.1
Conflicts
- laravel/framework: <8.0
This package is auto-updated.
Last update: 2025-04-26 02:56:03 UTC
README
A Laravel package for blacklist validation of user input. Includes both system blacklist words and profanity/offensive terms, with the flexibility to choose which lists to use. Uses whole word matching to prevent false positives.
Installation
You can install the package via composer:
composer require milenmk/laravel-blacklist
Configuration
The package works out of the box with default settings, but you can customize it by publishing the config file:
php artisan vendor:publish --tag=blacklist-config
This will create a config/blacklist.php file where you can:
- Choose which word lists to use (system blacklist, profanity, or both)
- Customize the blacklisted terms in each list
Note: If you don't publish the config file, the package will use the default configuration with the 'blacklist' mode enabled.
Configuration Options
The package provides three modes for filtering content:
// config/blacklist.php return [ // Choose which lists to use: 'blacklist', 'profanity', or 'both' 'mode' => 'blacklist', // System blacklist words (usernames, reserved terms, etc.) 'blacklist' => [ 'admin', 'system', // ... ], // Profanity and offensive terms 'profanity' => [ // Common profanity words // ... ], ];
Usage
Basic controller
use Milenmk\LaravelBlacklist\BlacklistService; class YourController { protected BlacklistService $blacklistService; public function __construct(BlacklistService $blacklistService) { $this->blacklistService = $blacklistService; } public function store(Request $request) { // Validate request... // Check fields against blacklisted words $blacklistErrors = $this->blacklistService->checkFields([ 'name' => $request->input('name'), 'email' => $request->input('email'), // Add any other fields you want to check ]); if (!empty($blacklistErrors)) { return redirect()->back()->withErrors($blacklistErrors); } // Continue with your logic... } }
Livewire component
use Livewire\Component; use Milenmk\LaravelBlacklist\BlacklistService; class YourComponent extends Component { protected BlacklistService $blacklistService; public function mount(): void { $this->blacklistService = app(BlacklistService::class); }
Livewire form
use Livewire\Form; use Milenmk\LaravelBlacklist\BlacklistService; class YourForm extends Form { protected BlacklistService $blacklistService; public function __construct($componentOrService = null, $propertyName = null) { parent::__construct($componentOrService, $propertyName); $this->blacklistService = app(BlacklistService::class); } }
Advanced Usage
Custom Log Channel
You can specify a custom log channel:
$blacklistErrors = $this->blacklistService->checkFields([ 'name' => $request->input('name'), 'email' => $request->input('email'), ], 'security');
Switching Modes
You can change the filtering mode in your config file:
// config/blacklist.php 'mode' => 'blacklist', // Only check system blacklist words // OR 'mode' => 'profanity', // Only check profanity/offensive words // OR 'mode' => 'both', // Check both lists
The error messages will indicate which list the matched term belongs to:
- "The {field} contains the blacklisted word: "{term}""
- "The {field} contains the profanity word: "{term}""
Word Matching
This package uses whole word boundary matching to prevent false positives. For example:
- "admin" will match in "admin user" but not in "administrator" or "badminton"
- "damn" will match in "that's damn good" but not in "condamnation"
This ensures that legitimate content isn't incorrectly flagged while still catching problematic terms.
License
The MIT License (MIT). Please see License File for more information.