id: laravel-debug-enabled

info:
  name: Laravel Debug Enabled
  author: notsoevilweasel
  severity: medium
  description: |
    Laravel with APP_DEBUG set to true is prone to show verbose errors.
  remediation: |
    Disable Laravel's debug mode by setting APP_DEBUG to false.
  metadata:
    max-request: 1
  tags: debug,laravel,misconfig

http:
  - method: GET
    path:
      - "{{BaseURL}}/_ignition/health-check"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - can_execute_commands

      - type: status
        status:
          - 200