Viewing file:  AppDebugAnalyzer.php (1.43 KB) -rw-r--r--
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?php
namespace Enlightn\Enlightn\Analyzers\Security;
use Enlightn\Enlightn\Analyzers\Concerns\ParsesConfigurationFiles;
use Illuminate\Contracts\Config\Repository as ConfigRepository;
class AppDebugAnalyzer extends SecurityAnalyzer
{
use ParsesConfigurationFiles;
/**
* The title describing the analyzer.
*
* @var string|null
*/
public $title = 'Your application hides technical errors in production.';
/**
* The severity of the analyzer.
*
* @var string|null
*/
public $severity = self::SEVERITY_CRITICAL;
/**
* The time to fix in minutes.
*
* @var int|null
*/
public $timeToFix = 1;
/**
* Get the error message describing the analyzer insights.
*
* @return string
*/
public function errorMessage()
{
return "Your app debug is set to true while your application is in production. "
."This can be very dangerous as your app users will be able to view detailed "
."error messages along with stack traces.";
}
/**
* Execute the analyzer.
*
* @param \Illuminate\Contracts\Config\Repository $config
* @return void
*/
public function handle(ConfigRepository $config)
{
if ($config->get('app.debug') &&
in_array($config->get('app.env'), ['prod', 'production', 'live'])) {
$this->recordError('app', 'debug');
}
}
}
|