Security Issue No1 Suggestion: Masking by default the information that resides in .env file!

Posted 4 months ago by klodj

I've been working on a project and saw that when a certain exception ocured the error displayed all the information inside .env file.

That's a huge seccurity issue and my suggestion is to mask that information by default in the variables blacklist!

Why not making it default by laravel?!

Thank You

Please sign in or create an account to participate in this conversation.

Laracasts Mascot

Hi, Have We Met Yet?

Did you know that, in addition to the forum, Laracasts includes well over 1000 lessons on modern web development? All for the price of one lunch out per month.

Sign Me Up


Reply to

Use Markdown with GitHub-flavored code blocks.