gitwtfhub

wtf is laravel-honeypot?

spatie/laravel-honeypot — explained in plain English

Analysis updated 2026-07-17 · repo last pushed 2026-06-02

1,565PHPAudience · developerComplexity · 1/5MaintainedSetup · easy

TL;DR

A Laravel package that blocks spam form submissions using invisible honeypot fields and timing checks, avoiding CAPTCHAs entirely.

Mindmap

mindmap
  root((repo))
    What it does
      Invisible honeypot fields
      Timing-based detection
      Silent rejection
    Tech stack
      PHP
      Laravel
      Blade
      Middleware
    Use cases
      Block spam bots
      Protect contact forms
      Skip CAPTCHAs
    Framework support
      Livewire
      Inertia
      Jetstream

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

Why would anyone build with this?

REASON 1

Add invisible honeypot fields to a Laravel contact form to silently block bot submissions.

REASON 2

Protect Livewire or Inertia-powered forms from spam without adding CAPTCHA friction for real users.

REASON 3

Reject form submissions that arrive impossibly fast, indicating an automated bot.

REASON 4

Disable honeypot protection during automated testing so the test suite runs without false rejections.

What's in the stack?

PHPLaravelBlade

How it stacks up

spatie/laravel-honeypotyyx990803/laravel-vue-cli-3david-crty/databasement
Stars1,565841815
LanguagePHPPHPPHP
Last pushed2026-06-022019-04-24
MaintenanceMaintainedDormant
Setup difficultyeasymoderateeasy
Complexity1/53/52/5
Audiencedeveloperdeveloperops devops

Figures from each repo's GitHub metadata at analysis time.

How do you spin it up?

Difficulty · easy Time to first run · 5min

If enabled globally, every form on the site must include the honeypot field or legitimate submissions get blocked.

Yoink these prompts

Prompt 1
Add spatie/laravel-honeypot to my Laravel contact form using the x-honeypot Blade component and ProtectAgainstSpam middleware.
Prompt 2
Show me how to configure laravel-honeypot to work with a Livewire form component.
Prompt 3
How do I disable laravel-honeypot during my Laravel test suite so tests don't get blocked as spam?
Prompt 4
Explain how laravel-honeypot's timing check works and how to adjust the minimum submission time.
Prompt 5
Set up laravel-honeypot as a global middleware across my whole Laravel app and add the honeypot field to every form.

Frequently asked questions

wtf is laravel-honeypot?

A Laravel package that blocks spam form submissions using invisible honeypot fields and timing checks, avoiding CAPTCHAs entirely.

What language is laravel-honeypot written in?

Mainly PHP. The stack also includes PHP, Laravel, Blade.

Is laravel-honeypot actively maintained?

Maintained — commit in last 6 months (last push 2026-06-02).

How hard is laravel-honeypot to set up?

Setup difficulty is rated easy, with roughly 5min to a first successful run.

Who is laravel-honeypot for?

Mainly developer.

View the repo → Decode another repo

This repo across BitVibe Labs

Don't trust strangers blindly. Verify against the repo.