Phpstan Safe Rule Laravel Package

Product Decisions This Supports

• Enables proactive bug prevention by identifying unsafe patterns (e.g., null dereferences, type errors) during static analysis, reducing post-release incidents and technical debt
• Supports build vs buy decisions by providing a specialized, maintenance-free rule instead of custom tooling development
• Strengthens CI/CD quality gates to enforce consistent safety checks, aligning with reliability-focused roadmap initiatives
• Reduces manual code review overhead by automating detection of common anti-patterns before merging

When to Consider This Package

• ✅ Adopt when your team already uses PHPStan and needs to enforce safer coding practices for null safety, type consistency, or deprecated function calls
• ✅ Ideal for medium/large codebases where consistency and early bug detection reduce incident response costs
• ✅ When CI/CD pipelines require stricter quality checks without runtime changes or performance overhead
• ❌ Avoid if PHPStan isn’t part of your toolchain (consider Psalm or custom linters instead)
• ❌ Not cost-effective for tiny projects where manual review suffices or if rules don’t match your specific risk patterns
• ❌ If your team requires highly custom rules beyond this package’s scope (e.g., domain-specific logic checks)

How to Pitch It (Stakeholders)

• Executives: “This tool integrates with our existing PHPStan setup to catch critical bugs before production—like null pointer exceptions or unsafe API calls—reducing costly incidents and improving customer trust. It’s a zero-runtime-overhead addition to our quality gates, delivering high ROI with minimal engineering effort.”
• Engineering: “Installs in minutes via PHPStan config, runs in CI to flag unsafe patterns (e.g., improper null handling, deprecated functions) without disrupting workflows. Ensures consistent code quality across the team while freeing up review cycles for higher-value work.”