Download the PHP package stratos/laravel-toolbox without Composer
On this page you can find all versions of the php package stratos/laravel-toolbox. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Table of contents
Download stratos/laravel-toolbox
More information about stratos/laravel-toolbox
Files in stratos/laravel-toolbox
Download stratos/laravel-toolbox
More information about stratos/laravel-toolbox
Files in stratos/laravel-toolbox
Vendor stratos
Package laravel-toolbox
Short Description A collection of development CLI tools for Laravel
License MIT
Homepage https://github.com/sabristratos/laravel-toolbox
Package laravel-toolbox
Short Description A collection of development CLI tools for Laravel
License MIT
Homepage https://github.com/sabristratos/laravel-toolbox
FAQ
After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.
Example:
Example:
If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
Some PHP packages are not free to download and because of that hosted in private repositories.
In this case some credentials are needed to access such packages.
Please use the auth.json textarea to insert credentials, if a package is coming from a private repository.
You can look here for more information.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Please rate this library. Is it a good library?
Informations about the package laravel-toolbox
Laravel Toolbox
A collection of powerful CLI development tools for Laravel that help you maintain code quality, security, and consistency through static analysis.
Requirements
- PHP 8.2+
- Laravel 11 or 12
Installation
Optionally publish the configuration file:
Commands
All commands are prefixed with toolbox: and support JSON output for CI/CD integration.
toolbox:scan-env
Scan for environment variable issues: undefined, undocumented, and unused variables.
| Option | Description |
|---|---|
--path |
Paths to scan (default: app/, config/, routes/, database/) |
--env-file |
Path to .env file |
--example-file |
Path to .env.example file |
--type |
Filter by issue type: all, undefined, undocumented, unused |
--json |
Output results as JSON |
--fail-on-issues |
Exit with error code if issues found (for CI/CD) |
--ignore-dynamic |
Ignore dynamic env() calls |
Issue Types:
- Undefined (critical): Variables used in code but not defined in .env
- Undocumented (low): Variables in .env but missing from .env.example
- Unused (medium): Variables defined but never referenced in code
toolbox:scan-n1
Scan code for potential N+1 query problems using static analysis.
| Option | Description |
|---|---|
--path |
Path to scan (default: app) |
--models-path |
Path to Eloquent models (default: app/Models) |
--views-path |
Path to Blade views (default: resources/views) |
--json |
Output results as JSON |
--severity |
Filter by severity: all, high, medium, low |
--fail-on-issues |
Exit with error code if issues found |
Detection Features:
- Discovers Eloquent models and relationships automatically
- Detects relationship access inside loops
- Scans Blade templates for N+1 patterns
- Tracks variable types across code flow
- Checks for missing eager loads
toolbox:scan-queries
Scan code for query performance issues and SQL injection risks.
| Option | Description |
|---|---|
--path |
Path to scan (default: app) |
--json |
Output results as JSON |
--severity |
Filter by severity: all, critical, high, medium, low |
--type |
Filter by type: all, select-star, missing-limit, loop-query, raw-query, inefficient |
--fail-on-issues |
Exit with error code if issues found |
Issue Types:
- raw_query (critical): Raw SQL queries that may be vulnerable to injection
- loop_query (high): Database queries executed inside loops
- select_star (medium): Using
SELECT *instead of specific columns - inefficient (medium): Inefficient query patterns
- missing_limit (low): Queries without LIMIT clause
toolbox:scan-routes
Scan routes for missing handlers and orphaned resources.
| Option | Description |
|---|---|
--pages-path |
Path to Inertia pages (default: resources/js/Pages) |
--views-path |
Path to Blade views (default: resources/views) |
--json |
Output results as JSON |
--missing-only |
Only show missing handlers |
--orphans-only |
Only show orphaned items |
Detection Features:
- Missing controller classes or methods
- Orphaned controller methods (not routed)
- Orphaned Blade views (not referenced)
- Orphaned Inertia components (React/Vue)
- Automatic framework detection (Inertia React vs Vue)
toolbox:scan-security
Scan code for common security vulnerabilities.
| Option | Description |
|---|---|
--path |
Paths to scan (default: app/, config/, resources/views/, .env) |
--type |
Filter by vulnerability type |
--severity |
Filter by severity: all, critical, high, medium |
--json |
Output results as JSON |
--fail-on-issues |
Exit with error code if issues found |
Security Detectors:
- SQL Injection - Detects potential SQL injection vulnerabilities
- XSS - Detects cross-site scripting vulnerabilities
- Mass Assignment - Detects unguarded model assignments
- Command Injection - Detects command injection risks
- Hardcoded Secrets - Detects hardcoded API keys and secrets
- File Operations - Detects path traversal vulnerabilities
- Debug Mode - Detects debug mode enabled in production
- Deserialization - Detects unsafe unserialize() calls
toolbox:scan-dead-code
Scan for unused classes, methods, functions, traits, interfaces, constants, and properties.
| Option | Description |
|---|---|
--path |
Path to scan (default: app) |
--type |
Filter by type: all, class, method, function, trait, interface, constant, property |
--severity |
Filter by severity: all, high, medium, low |
--json |
Output results as JSON |
--fail-on-issues |
Exit with error code if issues found |
Detection Features:
- Two-pass AST analysis for accurate detection
- Tracks class instantiation, method calls, and property access
- Handles type hints, use statements, and inheritance
- Smart exclusions for Laravel entry points (Controllers, Commands, etc.)
- Excludes magic methods and framework lifecycle methods
- Configurable severity per issue type
Issue Types:
- unused_class (medium): Classes never instantiated or referenced
- unused_method (medium/high): Methods never called (high for private)
- unused_function (medium): Standalone functions never called
- unused_trait (medium): Traits never used
- unused_interface (low): Interfaces never implemented
- unused_constant (low): Class constants never accessed
- unused_property (low/medium): Properties never accessed (medium for private)
toolbox:scan-dependencies
Scan for dependency issues: high coupling, circular dependencies, and dependency injection problems.
| Option | Description |
|---|---|
--path |
Path to scan (default: app) |
--type |
Filter by type: all, high-coupling, circular, concrete, unused, unstable |
--severity |
Filter by severity: all, critical, high, medium, low |
--max-dependencies |
Threshold for high coupling detection (default: 7) |
--json |
Output results as JSON |
--fail-on-issues |
Exit with error code if issues found |
Detection Features:
- Analyzes constructor dependency injection
- Builds dependency graph for cycle detection
- Calculates instability metrics for each class
- Tracks which dependencies are actually used
- Configurable allowed concrete dependencies (framework classes)
Issue Types:
- circular_dependency (critical): Circular dependency chain detected (A→B→C→A)
- high_coupling (high): Class has too many constructor dependencies (>7 default)
- concrete_dependency (medium): Depending on concrete class instead of interface
- unused_dependency (medium): Injected dependency is never used in the class
- unstable_dependency (low): Stable class depends on unstable class
toolbox:scan-translations
Scan for translation issues: missing keys, unused translations, and inconsistencies.
| Option | Description |
|---|---|
--path |
Paths to scan for translation usages |
--lang |
Path to lang directory (default: lang/) |
--locale |
Check specific locale only |
--type |
Filter by type: all, missing, unused, inconsistent |
--json |
Output results as JSON |
--fail-on-issues |
Exit with error code if issues found |
Issue Types:
- missing (medium): Translation key used but not defined
- unused (low): Translation defined but never used
- inconsistent (medium): Key present in some locales but missing in others
toolbox:remove-comments
Remove comments from PHP files while preserving DocBlocks.
| Option | Description |
|---|---|
--path |
Directory or file to process (default: app) |
--dry-run |
Preview changes without modifying files |
--force |
Skip confirmation prompt |
--backup |
Create .bak files before modifying |
Features:
- Preserves DocBlocks (/* ... /)
- Excludes Blade templates automatically
- Shows all comments with line numbers before removal
- Displays summary with bytes saved
CI/CD Integration
All scan commands support --json and --fail-on-issues flags for pipeline integration:
Configuration
The configuration file allows you to customize scan paths, ignored patterns, and severity levels for each scanner.
Key configuration sections:
Roadmap
Future commands and features planned for Laravel Toolbox:
Code Quality
- [ ] toolbox:scan-complexity - Analyze cyclomatic complexity and suggest refactoring
- [x] toolbox:scan-dead-code - Detect unused classes, methods, and variables (implemented)
- [x] toolbox:scan-dependencies - Analyze class dependencies and coupling (implemented)
- [ ] toolbox:scan-duplicates - Find duplicate or similar code blocks
Database & Models
- [ ] toolbox:scan-migrations - Detect migration issues (missing indexes, large columns)
- [ ] toolbox:scan-models - Validate model configurations (fillable, casts, relationships)
- [ ] toolbox:generate-indexes - Suggest database indexes based on query analysis
- [ ] toolbox:scan-seeders - Validate seeder data integrity
API & Routes
- [ ] toolbox:scan-api - Validate API responses against documentation
- [ ] toolbox:generate-openapi - Generate OpenAPI spec from routes and controllers
- [ ] toolbox:scan-rate-limits - Check rate limiting configuration
Testing
- [ ] toolbox:scan-coverage - Identify untested code paths
- [ ] toolbox:generate-tests - Generate test stubs for controllers/services
- [ ] toolbox:scan-test-quality - Analyze test quality and assertions
Performance
- [ ] toolbox:scan-cache - Detect caching opportunities
- [ ] toolbox:scan-lazy-load - Find assets that should be lazy-loaded
- [ ] toolbox:profile-boot - Analyze application boot performance
Code Generation
- [ ] toolbox:make-service - Generate service class with interface
- [ ] toolbox:make-action - Generate single-action class
- [ ] toolbox:make-dto - Generate data transfer object
- [ ] toolbox:make-enum - Generate PHP enum with methods
Maintenance
- [ ] toolbox:cleanup-logs - Clean old log files with retention policy
- [ ] toolbox:cleanup-cache - Clear stale cache entries
- [ ] toolbox:cleanup-storage - Find orphaned files in storage
Documentation
- [ ] toolbox:generate-docs - Generate API documentation from DocBlocks
- [ ] toolbox:scan-docblocks - Validate DocBlock completeness
DevOps
- [ ] toolbox:check-config - Validate configuration for production
- [ ] toolbox:check-permissions - Verify file/directory permissions
- [ ] toolbox:check-health - Comprehensive application health check
Contributing
Contributions are welcome! Please ensure:
- Code follows PSR-12 and uses strict types
- All new commands extend
BaseCommand - Tests are written using Pest
- Run
composer formatbefore submitting
License
MIT License. See LICENSE for details.
All versions of laravel-toolbox with dependencies
PHP Build Version
Package Version
Requires
php Version
^8.2
illuminate/console Version ^11.0|^12.0
illuminate/support Version ^11.0|^12.0
nikic/php-parser Version ^5.0
illuminate/console Version ^11.0|^12.0
illuminate/support Version ^11.0|^12.0
nikic/php-parser Version ^5.0
The package stratos/laravel-toolbox contains the following files
Loading the files please wait ...