sharryy/docker-sandbox
A simple, secure and fluent PHP API for running untrusted code in isolated Docker containers.
时间:2026-06-22 14:33
vectorbross/basetheme
Default Vector bross Drupal basetheme
时间:2026-06-22 08:59
jeffersongoncalves/laravel-favicon-proxy
A Laravel package that proxies and server-side caches website favicons (Google S2 by default) behind a same-origin route, so visitors' browsers never hit the third-party favicon service. Validates the upstream content-type, sends nosniff, negative-caches failures and falls back to a transparent pixe
时间:2026-06-22 00:17
jeffersongoncalves/laravel-npm-readme
A Laravel package that fetches an npm package's README from the registry document, renders the markdown and caches the resulting HTML. The default renderer strips raw HTML; provide your own renderer callable (and sanitize) to keep it. Rendered HTML is untrusted — sanitize it before display.
时间:2026-06-21 23:23
amreljako/cybercart
A secure, headless, high-performance embedded e-commerce core engine for Laravel with regional Arab & Gulf payments integration.
时间:2026-06-20 23:08
jeffersongoncalves/laravel-ssrf-guard
A Laravel package that protects outbound HTTP requests from SSRF (Server-Side Request Forgery): it validates that a URL's host resolves only to public IPs (denying private, reserved, loopback and link-local ranges by default), pins the connection to the validated IP to close the DNS-rebinding TOCTOU
时间:2026-06-20 19:58
jeffersongoncalves/laravel-locale-cookie
A Laravel middleware that resolves the application locale from a cookie, validating the requested value against a configurable list of supported locales and falling back to a sensible default when the cookie is missing or unknown. Cookie name, supported locales, and fallback locale are all driven by
时间:2026-06-20 19:57
jeffersongoncalves/laravel-markdown
A shared CommonMark renderer for Laravel with GitHub Flavored Markdown, optional heading permalinks, and server-side syntax highlighting (class-based tokens) via tempest/highlight. Safe by default: raw HTML is escaped unless you opt in to html_input=allow for trusted content. Requires PHP 8.4 becaus
时间:2026-06-20 19:57
abdian/laravel-upload-guard
Secure file upload validation for Laravel — fail-closed scanning for polyglot web shells, malicious PDFs/SVGs, zip bombs, Office macros, and spoofed MIME types.
时间:2026-06-20 15:49
waaseyaa/frankenphp
Optional FrankenPHP dev-runtime for Waaseyaa — auto-installs the FrankenPHP binary and serves the app via `waaseyaa dev` (the Laravel Octane model). Not part of core/cms/full; default-installed in the skeleton.
时间:2026-06-20 15:17
shaxzodbek-uzb/laravel-model-mcp
Auto-expose Eloquent models as policy-enforced MCP tools. Safe-by-default CRUD over the Model Context Protocol, gated by your Laravel Policies, scoped to your tenant, and audited.
时间:2026-06-20 12:23
drupal/http_purger_recipe
A default Easy Email template configured to override all emails sent from the site.
时间:2026-06-20 08:05
securecrypto/laravel-encryption
Professional Laravel package for secure encryption with Strategy Pattern, SOLID principles, and modern PHP 8.2+ features
时间:2026-06-19 18:38
mralaminahamed/secure-custom-fields-stubs
Secure Custom Fields (ACF-compatible) function and class declaration stubs for static analysis.
时间:2026-06-19 11:29
karan-safaie-qadi/pdo-module
Secure PDO database connection module with environment support
时间:2026-06-19 08:29