Freek Van der Herten's blog on Laravel, PHP and AI

Laravel Query Builder v7: a must-have package for building APIs in Laravel original

Mar 16th 2026 by Freek Van der Herten – 6 minute read

We just released v7 of spatie/laravel-query-builder, our package that makes it easy to build flexible API endpoints. If you're building an API with Laravel, you'll almost certainly need to let consumers filter results, sort them, include relationships and select specific fields. Writing that logic by hand for every endpoint gets repetitive fast, and it's easy to accidentally expose columns or relationships you didn't intend to.

Our query builder takes care of all of that. It reads query parameters from the URL, translates them into the right Eloquent queries, and makes sure only the things you've explicitly allowed can be queried.

// GET /users?filter[name]=John&include=posts&sort=-created_at

$users = QueryBuilder::for(User::class)
    ->allowedFilters('name')
    ->allowedIncludes('posts')
    ->allowedSorts('created_at')
    ->get();

// select * from users where name = 'John' order by created_at desc

This major version requires PHP 8.3+ and Laravel 12 or higher, and brings a cleaner API along with some features we've been wanting to add for a while.

Let me walk you through how the package works and what's new.

A GitHub Issue Title Compromised 4,000 Developer Machines

Mar 16th 2026 – grith.ai

A deep dive into "Clinejection", where an attacker injected a prompt into a GitHub issue title, which an AI triage bot interpreted as an instruction. The resulting chain led to cache poisoning, credential theft, and a compromised npm package that silently installed a second AI agent on 4,000 developer machines.

New and improved settings screens in Flare

Mar 14th 2026 – flareapp.io

We gave all the settings screens in Flare a fresh coat of paint. Consistent layouts, better forms, improved navigation and plenty of small details that make the experience calmer and more focused.

Laravel Site Search v3 is here: crawl and search your entire site using just your database original

Mar 12th 2026 by Freek Van der Herten – 5 minute read

We're proud to release v3 of laravel-site-search, a package that crawls and indexes your entire site. Think of it as your own private Google. Point it at a URL, let it crawl every page, and get full-text search results back.

Previous versions required Meilisearch as the search engine. That works well, but it means running a separate service.

With v3, your application's own database is all you need. It supports SQLite, MySQL, PostgreSQL, and MariaDB out of the box, and it's the new default.

Let me walk you through it.

How to easily access private properties and methods in PHP original

Mar 12th 2026 by Freek Van der Herten – 7 minute read

Sometimes you need to access a private property or method on an object that isn't yours. Maybe you're writing a test and need to assert some internal state. Maybe you're building a package that needs to reach into another object's internals. Whatever the reason, PHP's visibility rules are standing in your way.

Our spatie/invade package provides a tiny invade function that lets you read, write, and call private members on any object.

You probably shouldn't reach for this package often. It's most useful in tests or when you're building a package that needs to integrate deeply with objects you don't control.

Let me walk you through how it works.

Quick tips: Sending Laravel output to Ray automatically

Mar 11th 2026 – myray.app

A handy overview of the Ray configuration options in Laravel. You can automatically send duplicate queries, slow queries, exceptions, and dump output straight to Ray without adding any ray() calls to your code.

Creating The Perfect Claude Code Status Line

Mar 10th 2026 – www.aihero.dev

A walkthrough of building a useful Claude Code status line that shows your current repo, git branch, staged/unstaged changes, and context window usage percentage. The context percentage is the most valuable part: it helps you know when to compact or start a fresh session before quality degrades.

Selfish AI

Mar 9th 2026 – www.garfieldtech.com

Larry Garfield argues that the AI coding conversation focuses too much on individual productivity and ignores the broader societal costs.

Oh Dear is now mobile-friendly

Mar 7th 2026 – ohdear.app

Every page in Oh Dear now works on mobile. Not just slapped-on media queries, but reworked layouts: a floating action button for navigation, dedicated mobile card views for monitor lists, scrollable tables with fade hints, and bigger touch targets throughout. Over 160 Blade templates were touched.

AI Doesn't Reduce Work, It Intensifies It

Mar 6th 2026 – hbr.org

A Berkeley Haas study of 200 employees found that AI makes workers take on more, not less. The productivity gains are real, but exhausting.

Use the Hyper key

Mar 5th 2026 – brianlovin.com

Brian Lovin explains how to turn caps lock into a Hyper key that simulates pressing all four modifier keys at once. Use it for instant app switching, Raycast quicklinks, and custom window layouts.

Write Faster PHP Code: Retracing Brent's Steps

Mar 4th 2026

In this Tideways video, Brent's blog post on writing faster PHP is put to the test with real profiling data.

How to tell if you're testing the framework

Mar 4th 2026 – masteringlaravel.io

Joel Clermont shares a simple trick to determine if a test is covering your application logic or just testing Laravel itself. If you can comment out a chunk of your code and the test still passes, it's probably not worth keeping.

Laravel Backup v10: serializable events, resilient multi-destination backups, and more original

Mar 4th 2026 by Freek Van der Herten – 4 minute read

We just released v10 of laravel-backup, our package that creates backups of your Laravel app. The backup is a zip file containing all files in the directories you specify, along with a dump of your database. You can store it on any of the filesystems Laravel supports, and you can even back up to…

Introducing the SHIP Score: Straightforward prioritization for indie founders

Mar 3rd 2026 – deployempathy.substack.com

A simple scoring system for deciding what to build next. Score each idea on Strategic Heft, Income potential, and Perspiration (effort), then rank them to find your highest-ROI opportunities.

Laravel Sitemap v8 is here: automatic splitting, XSL stylesheets, and crawler v9 original

Mar 3rd 2026 by Freek Van der Herten – 3 minute read

We just released v8 of Laravel Sitemap. This package that can generate sitemaps by crawling your entire site or by manually adding URLs. This version upgrades the underlying crawler to v9, adds a couple of nice new features, and cleans up the internals.

Let me walk you through what the package can do and what's new in v8.

A better way to crawl websites with PHP original

Mar 2nd 2026 by Freek Van der Herten – 5 minute read

Our spatie/crawler. package is one of the first one I created. It allows you to crawl a website with PHP. It is used extensively in Oh Dear and our laravel-sitemap package.

Throughout the years, the API had accumulated some rough edges. With v9, we cleaned all of that up and added a bunch of features we've wanted for a long time.

Let me walk you through all of it!

My Claude Code setup original

Mar 2nd 2026 by Freek Van der Herten – 4 minute read

I've been using Claude Code as my daily driver for coding tasks. Over time, I've built up a pretty specific configuration that makes the whole experience better. I keep everything in my dotfiles repo under config/claude/, so it's easy to sync across machines. In this post I'll walk through my setup.…

Generate OG images for your Laravel app original

Feb 26th 2026 by Freek Van der Herten – 5 minute read

When you share a link on Twitter, Facebook, or LinkedIn, the platform shows a preview image. Getting those Open Graph images right usually means either using an external service or setting up a separate rendering pipeline. We just released laravel-og-image, a package that lets you define your OG image as HTML right inside your Blade views. The package takes a screenshot of that HTML and serves it as the OG image. No external API needed, everything runs on your own server.

Let me walk you through what the package can do.

Building a PHP CLI for humans and AI agents with almost no hand-written code original

Feb 25th 2026 by Freek Van der Herten – 6 minute read

We recently released the Flare CLI, a command-line tool to manage your errors and performance data. It also ships with an agent skill that lets AI coding agents use Flare on your behalf.

The CLI has dozens of commands and hundreds of options, yet we only wrote four commands by hand. Our laravel-openapi-cli package made this possible: point it at an OpenAPI spec, and it generates fully typed artisan commands for every endpoint automatically.

Here's how we put it all together.

I'm a Laravel developer at Spatie and Oh Dear. I maintain 300+ open source packages for the Laravel community.

Follow on X

Browse by topic

laravel php ai testing performance architecture best practices spatie package javascript

All topics →

Oh Dear monitors your entire website, so you don't have to. Uptime, SSL certificates, broken links, scheduled tasks, DNS, and more — all in one place.

Get instant notifications when something breaks, paired with a developer friendly API and thorough documentation.

Create a public status page in under a minute. Start your free trial.