Yutaka Kurosaki
6280290898
A static security analysis tool for PHP and Laravel applications with recursive taint analysis capabilities. Features: - Comprehensive vulnerability detection (XSS, SQL Injection, Command Injection, Path Traversal, CSRF, Authentication issues) - Recursive taint analysis across function calls - Blade template analysis with context-aware XSS detection - Smart escape detection and escape bypass detection - Syntax highlighting in terminal output - Multi-language support (Japanese/English) - Docker support for easy deployment - Multiple output formats (text, JSON, HTML, SARIF, Markdown) - CI/CD integration ready (GitHub Actions, GitLab CI) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
24 lines
539 B
JSON
24 lines
539 B
JSON
{
|
|
"$schema": "https://raw.githubusercontent.com/security-linter/php-laravel/main/schema/config.json",
|
|
"$comment": "Example configuration file for PHP/Laravel Security Linter",
|
|
|
|
"severity": "low",
|
|
"format": "text",
|
|
"lang": "ja",
|
|
"recursiveDepth": 10,
|
|
|
|
"exclude": [
|
|
"custom/legacy/*",
|
|
"app/Console/Commands/*",
|
|
"resources/views/emails/*"
|
|
],
|
|
|
|
"include": [
|
|
"vendor/my-company/*"
|
|
],
|
|
|
|
"includeVendor": false,
|
|
"includeTests": false,
|
|
"noDefaultExcludes": false
|
|
}
|