Planned · Software Dev · Laravel · OWASP

Security-First Laravel SaaS Starter Template

A production-ready, open-source Laravel SaaS boilerplate with security built in from day one — OWASP Top 10 mitigations, RBAC, CSRF protection, rate limiting, AES-256 encryption at rest, and an audit log. Intended as both a learning artefact and a reusable foundation for secure web applications.

Overview

Currently in planning. This project will be an open-source Laravel SaaS starter template with security built in from the foundation up, rather than bolted on afterwards — combining Laravel experience from Arkesel with OWASP/Security+ study.

Planned features

OWASP Top 10 mitigations built into the template by default
Role-based access control (RBAC)
CSRF protection and rate limiting
AES-256 encryption at rest for sensitive data
Audit logging for security-relevant actions

Status

Building in 2026 — check back for updates, or follow the GitHub repo (link to be added once development begins).

LaravelOWASPRBACOpen Source

Repo: Coming soon — building in 2026 ← All Projects