# App Debug Analyzer

Category Severity Time To Fix
🛡️ Security ⚠️ Critical 1 minute

Class: Enlightn\Enlightn\Analyzers\Security\AppDebugAnalyzer

# Introduction

This analyzer checks to see whether your app debug is set to true while your application is in production. If it is, this is an extremely critical security risk.

This is probably the highest security risk for any Laravel app. If your app debug mode is on while your application is in production, depending on your installed packages, you may expose sensitive environment variables such as your database credentials, your e-mail service credentials, your cloud service credentials or your cache server credentials. Not only that, you also risk exposing the source code along with complete stack traces when exceptions are thrown.

Laravel Debug Mode Security Risk

# How To Fix

Simply turn off your app debug mode by setting your APP_DEBUG environment variable in your .env file:


# References