Laravel 9.23 Released
The Laravel team released 9.23 with an artisan docs command, Vite support for CSP/SRI, a new fluent JSON assertion method and more. Let's take a look at the latest Laravel 9 release:
Artisan docs command
Tim MacDonald contributed a new amazing artisan docs
command, giving developers quick access to website documentation from the command line:
# Opens a choice dialog you can use to type what you want
php artisan docs
# Opens the validation docs
php artisan docs validation
Things get really crazy, when, let's say you want to go to the unique validation rule on the validation docs page:
php artisan docs validation unique
# partial searches, will open the unique validation rule
php artisan docs va un
Here's an example of the default behavior when you don't pass a page to the command:
Fluent JSON whereNot assertion
Mateus Guimarães contributed a whereNot()
JSON testing assertion:
$response
->assertJson(fn (AssertableJson $json) =>
$json->where('id', 1)
->where('name', 'Victoria Faith')
->whereNot('status', 'pending')
->missing('password')
->etc()
);
Delete a model quietly
Anjorin Damilare contributed a deleteQuietly()
model method to delete a model from the database without raising any events:
use App\Models\Flight;
$flight = Flight::find(1);
$flight->deleteQuietly();
Conditionable trait added to Filesystem adapters
Ralph J. Smit contributed adding the Conditionable
trait to Filesystem to allow you to use when()
and unless()
methods:
Storage::disk('public')
->when(true)
->delete('StardewTaylor.png');
Vite support for CSP, SRI, and arbitrary values
Tim MacDonald contributed first-party support for the Vite implementation to create a nonce that will be used on all generated script and style tags:
use Illuminate\Support\Facades\Vite;
class ContentSecurityPolicy
{
public function handle($request, $next)
{
// You need to call this function **before** resolving the response
// so that 3rd parties can use the same nonce throughout the request
// lifecycle e.g. Ziggy
Vite::useCspNonce();
return $next($response)->withHeaders([
'Content-Security-Policy' => "script-src 'nonce-".Vite::cspNonce()."'",
]);
}
}
This subject is pretty heavy, so I recommend reading through the description on Pull Request #43442 to get the full details. Also, the Laravel Vite documentation has been updated with Script & Style Tag Attributes section to help you get started.
Release Notes
You can see the complete list of new features and updates below and the diff between 9.22.0 and 9.23.0 on GitHub. The following release notes are directly from the changelog
Added
- Added whereNot method to Fluent JSON testing matchers (#43383)
- Added deleteQuietly method to Model and use arrow func for related methods (#43447)
- Added conditionable trait to Filesystem adapters (#43450)
- Introduce artisan docs command (#43357)
- Added Support CSP nonce, SRI, and arbitrary attributes with Vite (#43442)
- Support conditionables that get condition from target object (#43449)
- Added
whereIn
toIlluminate/Routing/RouteRegistrar::allowedAttributes
(#43509)
Fixed
- Prevent redis crash when large number of jobs are scheduled for a specific time (#43310)