Apps

Remove sensitive information from Laravel apps

ADVERTISEMENT
Laravel Scrubber is a Laravel package to scrub sensitive information that ensures operational security policies are not accidentally leaked or not by developers.

You can use this package in a number of ways:

First, this package detects and scrubs log messages and context patterns:

 1Log::info('some message', [

 2    'context' => 'accidental',

 3    'leak_of' => [

 4        'jwt' => '<insert jwt token here>'

 5    ]

 6]);

 7 

 8// testing.INFO: some message {"context":"accidental","leak_of":{"jwt": '**redacted**'}}

 9 

10Log::info('<insert jwt token here>');

11 

12// testing.INFO: **redacted**


Second, you can use the scrubber directly to process data in an array and mark it as redacted:

 1Scrubber::processMessage([




2 'context' => 'accidental',
ADVERTISEMENT


Leave a Comment