# App Debug Analyzer
| Category | Severity | Time To Fix |
|---|---|---|
| 🛡️ Security | ⚠️ Critical | 1 minute |
Class: Enlightn\Enlightn\Analyzers\Security\AppDebugAnalyzer
# Introduction
This analyzer checks to see whether your app debug is set to true while your application is in production. If it is, this is an extremely critical security risk.
This is probably the highest security risk for any Laravel app. If your app debug mode is on while your application is in production, depending on your installed packages, you may expose sensitive environment variables such as your database credentials, your e-mail service credentials, your cloud service credentials or your cache server credentials. Not only that, you also risk exposing the source code along with complete stack traces when exceptions are thrown.
# How To Fix
Simply turn off your app debug mode by setting your APP_DEBUG environment variable in your .env file:
APP_DEBUG=false