happytodev/blogr-comments
Comment system for Blogr CMS — threaded comments, moderation, voting, anti-spam, and notifications
时间:2026-06-11 16:02
mandrael/contao-form-csrf-fix
Behebt das Problem "Ungültiges Anfrage-Token" (HTTP 400), auf das Erstbesucher beim Absenden eines Contao-Formulars stoßen können (contao/contao#2820). Rein serverseitig, ohne JavaScript.
时间:2026-06-11 00:28
masq/guardian
Suspicion-scoring trust & moderation engine for Laravel. Pluggable detectors accrue suspicion points; thresholds flag, restrict, queue for review, or ban.
时间:2026-06-07 21:54
padosoft/laravel-rebel-bot-protection
Pluggable anti-bot / CAPTCHA gate for Laravel Rebel: server-side verification of Cloudflare Turnstile, Google reCAPTCHA v3 and hCaptcha tokens, fail-closed by default and fully audited. Part of padosoft/laravel-rebel-*.
时间:2026-06-03 10:24
padosoft/laravel-rebel-recovery
High-assurance account recovery for Laravel Rebel: single-use HMAC-hashed recovery (backup) codes, generated once at enrolment, with anti-ATO checks. Part of padosoft/laravel-rebel-*.
时间:2026-06-03 09:41
padosoft/laravel-rebel-channels
Channel/provider abstraction (SMS/WhatsApp/voice) for Laravel Rebel: verification routing with fallback, cooldown, multi-dimensional rate limiting, and anti toll-fraud/IRSF defences. Part of padosoft/laravel-rebel-*.
时间:2026-06-03 09:36
irfanokr/laravel-secure-bridge
Signed, timestamped, replay-protected and optionally AES-256-GCM-encrypted request/response bridge between a JavaScript front-end (SPA or Blade + AJAX) and a Laravel API. Framework-agnostic JS client. Works on Laravel 5.5 through 12 and PHP 7.1+.
时间:2026-06-02 09:49
oihana/php-middleware
Composable PHP middleware helpers — security headers (HSTS, CSP, X-Frame-Options, Referrer-Policy, X-Content-Type-Options), CORS with preflight, CSRF, request-id, maintenance mode, rate limiting. PSR-7 compatible, zero magic strings.
时间:2026-05-27 10:20
bamise/framework
Secure enterprise CRUD library for PHP 8.4+ — hexagonal architecture, DDD, PSR standards, JWT/CSRF/XSS protection, event system.
时间:2026-05-26 21:12
laramint/laravel-security-scanner
Laravel-aware security rules for php-security-scanner. Detects Laravel SQL injection (DB::raw, whereRaw), mass assignment, debug/dd leaks, unsafe validators, CSRF bypass, insecure cookies, env exposure, Blade raw echo, open redirect, Http SSRF, Storage/File path traversal, file-upload validation gap
时间:2026-05-15 01:29
vortos/vortos-security
Vortos enterprise security — HTTP headers, CORS, CSRF, IP filtering, request signing, encryption, secrets, and data masking
时间:2026-05-10 12:02
ricventu/laravel-anti-xss
Laravel wrapper for voku/anti-xss — Facade, service, validation rule, middleware and Blade directive to sanitize XSS in strings.
时间:2026-05-06 12:54
azaharizaman/nexus-aml-compliance
Anti-Money Laundering (AML) risk assessment and transaction monitoring with SAR generation - atomic, framework-agnostic package
时间:2026-05-04 18:20
wttks/mailform
PHP メールフォームフレームワーク。CSRF / Honeypot / レート制限 / AI スパム判定の多段防御、確認画面フロー、マルチフォーム共通設定、リアルタイムバリデーションを内蔵。
时间:2026-04-30 03:24