Barry vd. Heuvel barryvdh

## PRODSECBUG-2198-2.2-CE-2019-03-25-08-43-16-framework.patch
diff --git a/DB/Adapter/Pdo/Mysql.php b/DB/Adapter/Pdo/Mysql.php
index 1449d6d..38085a3 100644
--- a/DB/Adapter/Pdo/Mysql.php
+++ b/DB/Adapter/Pdo/Mysql.php
@@ -2904,7 +2904,7 @@ class Mysql extends \Zend_Db_Adapter_Pdo_Mysql implements AdapterInterface
                 if (isset($condition['to'])) {
                     $query .= empty($query) ? '' : ' AND ';
                     $to     = $this->_prepareSqlDateCondition($condition, 'to');
-                    $query = $this->_prepareQuotedSqlCondition($query . $conditionKeyMap['to'], $to, $fieldName);
+                    $query = $query . $this->_prepareQuotedSqlCondition($conditionKeyMap['to'], $to, $fieldName);

## composer.json
  "require-dev": {
      "barryvdh/laravel-debugbar": "^3",
      "barryvdh/laravel-ide-helper": "^2.4",
      "filp/whoops": "~2.0",
      "mockery/mockery": "^1.0",
      "nikic/php-parser": "^4.0",
      "nunomaduro/collision": "^1.0",
      "phpro/grumphp": "^0.14.2",
      "phpunit/phpunit": "~7.0",
      "sensiolabs/security-checker": "^5.0",

## Httpd.conf
# Rewrite the WS requests
RewriteCond %{REQUEST_URI}  ^/socket.io            [NC]
RewriteCond %{QUERY_STRING} transport=websocket    [NC]
RewriteRule /(.*)           ws://localhost:6001/$1 [P,L]

# Rewrite the HTTP requests
ProxyPass        /socket.io http://localhost:6001/socket.io
ProxyPassReverse /socket.io http://localhost:6001/socket.io

# For API requests

## HorizonDatabaseQueue.php
<?php

namespace App\Libraries\Queue;

use Illuminate\Events\Dispatcher;
use Illuminate\Queue\DatabaseQueue;
use Illuminate\Support\Str;
use Laravel\Horizon\Events\JobDeleted;
use Laravel\Horizon\Events\JobPushed;
use Laravel\Horizon\Events\JobReleased;

## deploy.php
desc('Tail your laravel.log file');
task('tail', function () {

    $numLines = isVerbose() ? '100' : '1000';
    $tail = "tail -n {$numLines} {{deploy_path}}/current/storage/logs/laravel*.log ";
    if (!isVerbose()) {
        // Change -P to -E, depending on OS or grep version.
        $tail .= '| grep -i -P "^\[\d{4}\-\d{2}\-\d{2} \d{2}:\d{2}:\d{2}\]|Next [\w\W]+?\:" | tail -n 100 ';
    }
    $output = run($tail);

## imageoptim.sh
#!/bin/bash
find ./media -mmin -1440 -type f -iname '*.gif' -exec sh -c 'gifsicle -b -O3 "{}"' \;
find ./media -mmin -1440 -type f -iname '*.png' -exec optipng -o7 -strip all -preserve '{}' \;
find ./media -mmin -1440 -type f -iname '*.jpg' -exec jpegoptim --strip-all -m85 -o -p {} \;

## forge.nginx.conf
# FORGE CONFIG (DOT NOT REMOVE!)
include forge-conf/default/before/*;

upstream fastcgi_backend {
   server   unix:/var/run/php/php7.1-fpm.sock;
}

server {
    listen 80 default_server;
    listen [::]:80 default_server;

## ForceHttps.php
<?php

namespace App\Http\Middleware;

use Closure;

class ForceHttps
{
    /**
     * Force non-local requests to be HTTPS

## ControllerInspector.php
<?php

namespace App\Libraries;

use ReflectionClass;
use ReflectionMethod;
use Illuminate\Support\Str;

/**
 * @deprecated since version 5.2.

## .htaccess
# Turn off all options we don't need.
Options None
Options +FollowSymLinks
# Set the catch-all handler to prevent scripts from being executed.
SetHandler Security_Do_Not_Remove_This_Line
<Files *>
  # Override the handler again if we're run later in the evaluation list.
  SetHandler Security_Do_Not_Remove_This_Line
</Files>
# If we know how to do it safely, disable the PHP engine entirely.