This is a small but handy package to prevent malicious code execution coming into your application through uploaded images. It was created after being inspired by @appelsiini's talk on How to Hack your Laravel Application
You can install the package via composer:
composer require laravel-at/laravel-image-sanitizeRegister the ImageSanitizeMiddleware in your App\Http\Kernel class
protected $routeMiddleware = [
// ...
'image-sanitize' => \LaravelAt\ImageSanitize\ImageSanitizeMiddleware::class,
];Then, just use it in your Controller's constructor
public function __construct()
{
$this->middleware('image-sanitize');
}Or use it in your routes/web.php file
Route::post('/files', 'FileController@upload')
->name('file.upload')
->middleware(['image-sanitize']);If you want to learn more about middlewares, please check out the official Laravel documentation
composer testPlease see CHANGELOG for more information on what has changed recently.
Please see CONTRIBUTING for details.
If you discover any security related issues, please email adrian@nuernberger.me instead of using the issue tracker.
- Adrian Nürnberger
- Mathias Onea
- Logo by Caneco
The MIT License (MIT). Please see License File for more information.