Skip to content

test(security): add security-specific test suite #102

Open
Open
test(security): add security-specific test suite#102
Labels
complexity:mediumLess than 1 daylang:phpPHP/Laravelpriority:mediumNormal queuetype:featureNew feature or enhancement
@Snider

Description

@Snider
Snider
opened on Feb 4, 2026

Finding

No dedicated security test suite exists to verify input sanitisation, authentication, authorisation, and CSRF protections.

Fix

Create a security-focused test suite covering OWASP Top 10 scenarios relevant to the framework.

Acceptance Criteria

  • XSS injection tests for input sanitisation
  • SQL injection tests for query building
  • CSRF protection verification
  • Authentication bypass attempt tests
  • Authorisation boundary tests (tenant isolation)
  • SSRF prevention tests
  • Tests use Pest syntax and are in a dedicated Tests/Security/ directory

Metadata

Metadata

Assignees

No one assigned

    Labels

    complexity:mediumLess than 1 daylang:phpPHP/Laravelpriority:mediumNormal queuetype:featureNew feature or enhancement

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions