Laravel Encryption Key
Description
General
- Documentation: https://laravel.com/docs/12.x/encryption
- Summary: The Laravel encryption services provides a simple interface for encrypting and decrypting data, and requires using a key. If one were to have this key, they would be able to execute arbitrary code on the server.
Revoke the secret
To revoke the key, a new secret needs to be generated. All sessions or cookies signed with the key will be invalided.
Check for suspicious activity
Details for Laravel encryption key
-
Family: token
-
Category: other
-
High recall: False
-
Validity check available: False
-
Analyzer available: False
-
Minimum number of matches: 1
-
Occurrences found for one million commits: 144.6
-
Prefixed: False
-
PreValidators:
- type: ContentWhitelistPreValidator
patterns:
- app_key
- type: FilenameBanlistPreValidator
banlist_extensions:
- java
- js
banlist_filenames: []
check_binaries: false
include_default_banlist_extensions: false
ban_markup: false
Examples
- text: |
APP_KEY = base64:zzhwgg8i1ULNH+c8Xgt2Ixf3WT7XSoYNmAtEPvJ54Nk=
apikey: base64:zzhwgg8i1ULNH+c8Xgt2Ixf3WT7XSoYNmAtEPvJ54Nk=
- text: |
APP_KEY=04lNmXX77BdG1KxEGaJEwYo6E18yfHMV
apikey: 04lNmXX77BdG1KxEGaJEwYo6E18yfHMV
