Installation Guide

Requirements

• PHP 8.1 or higher
• Laravel 11.0 or 12.0
• Livewire 3.0 (for audit command)

Installation via Composer

Install the package using Composer:

composer require darvis/livewire-injection-stopper

The package will automatically register itself via Laravel's package discovery.

Publishing Configuration

Optionally, publish the configuration file to customize settings:

php artisan vendor:publish --tag=livewire-injection-stopper-config

This creates config/livewire-injection-stopper.php where you can customize:

• Blocked user agents
• Blocked IP addresses
• Whitelisted routes
• Response status codes
• Logging preferences

Verification

Verify the installation by running the security audit:

php artisan livewire-injection-stopper:audit

The middleware is automatically applied to all web routes and will start blocking spam bots immediately.

Custom Exception Handler Note

If your app overrides report() in app/Exceptions/Handler.php and manually calls Sentry, make sure you skip reporting for silenced bot exceptions.

Example:

use Darvis\LivewireInjectionStopper\Exceptions\SilentExceptionHandler;

public function report(Throwable $exception)
{
	if (config('livewire-injection-stopper.silence_locked_property_exceptions', true)
		&& SilentExceptionHandler::shouldSilence($exception)) {
		SilentExceptionHandler::handle($exception);

		return;
	}

	parent::report($exception);
}

Next Steps

• Configure the middleware
• Run the security audit
• Learn about Livewire security