treblle/security-headers

A collection of HTTP middleware classes to improve the security headers in your Laravel application.

Maintainers

Details

github.com/Treblle/security-headers

Homepage

Source

Issues

Installs: 3 767

Dependents: 0

Suggesters: 0

Security: 0

Stars: 82

Watchers: 4

Forks: 5

Open Issues: 1

0.0.3 2023-06-05 09:40 UTC

Requires

  • php: ^8.2

Requires (Dev)

MIT f03729aa31e9f86eb28f839946df2b4e319a0c02

documentationapimonitoringlaraveldebugingtreblle

This package is auto-updated.

Last update: 2024-04-13 14:29:26 UTC

README

68747470733a2f2f747265626c6c652d6769746875622e73332e75732d656173742d312e616d617a6f6e6177732e636f6d2f6769746875622d6865616465722e6a7067

Treblle Security Headers

Integrations   •   Website   •   Docs   •   Blog   •   Twitter   •   Discord

Latest Version Total Downloads MIT Licence Tests

Treblle makes it super easy to understand what’s going on with your APIs and the apps that use them. Just by adding Treblle to your API out of the box you get:

  • Real-time API monitoring and logging
  • Auto-generated API docs with OAS support
  • API analytics
  • Quality scoring
  • One-click testing
  • API management on the go
  • and more...

Requirements

  • PHP 8.2

Installation

You can install Treblle Security Headers via Composer. Simply run the following command:

composer require treblle/security-headers

Getting started

To start, you need to publish the configuration.

php artisan vendor:publish --provider="Treblle\SecurityHeaders\Providers\PackageServiceProvider" --tag="security-headers"

This is the default content of the config file that will be published at config/headers.php:

return [
    'remove' => [
        'X-Powered-By',
        'x-powered-by',
        'Server',
        'server',
    ],

    'referrer-policy' => 'no-referrer-when-downgrade',

    'strict-transport-security' => 'max-age=31536000; includeSubDomains',

    'certificate-transparency' => 'enforce, max-age=30',

    'permissions-policy' => 'autoplay=(self), camera=(), encrypted-media=(self), fullscreen=(), geolocation=(self), gyroscope=(self), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=(self), usb=()',

    'content-type-options' => 'nosniff',
];

Community 💙

First and foremost: Star and watch this repository to stay up-to-date.

Also, follow our Blog, and on Twitter.

You can chat with the team and other members on Discord and follow our tutorials and other video material at YouTube.

Treblle Discord

Treblle YouTube

Treblle on Twitter

How to contribute

Here are some ways of contributing to making Treblle better:

  • Try out Treblle, and let us know ways to make Treblle better for you. Let us know here on Discord.
  • Join our Discord and connect with other members to share and learn from.
  • Send a pull request to any of our open source repositories on Github. Check the contribution guide on the repo you want to contribute to for more details about how to contribute. We're looking forward to your contribution!

Contributors

A table of avatars from the project's contributors