- Analyze the code to detect potential vulnerabilities (SQL Injection, XSS, CSRF, etc.). - Check the security of `.env` files and suggest improvements on the management of sensitive configurations. - Ensure that routes and middleware are well secured (authentication, authorization, rate limiting). - Check the correct use of Eloquent Guards and Policies. - Ensure that sensitive data is well encrypted with Hash::make() or Crypt::encrypt(). - Check the integrity and security of file uploads (validation, secure storage). - Ensure that API tokens are well protected with Laravel Sanctum or Passport.