Merge pull request #1097 from youchenlee/secure-default-config

Fix: Enable mimetype validation by default and remove svg from whilte…

Author: youchenlee

README.md

@@ -64,7 +64,9 @@ We are also going to gain more integration like vue.js and Laravel Nova. Any PR
 
  * [All contibutors](https://github.com/UniSharp/laravel-filemanager/graphs/contributors) from GitHub. (issues / PR)
  * [@taswler](https://github.com/tsawler) the original author of this package.
- * Nathan for providing security suggestions.
+ * Security contributors (sort by alphabet)
+    * Ayon Hasan (@lollipopl337)
+    * Nathan
  * [@mdnazmulhasan27771](https://github.com/mdnazmulhasan27771) the designer of our logo. (Licensed CC BY 4.0)
 
 ### Credits

src/config/lfm.php

@@ -55,7 +55,6 @@
                 'image/pjpeg',
                 'image/png',
                 'image/gif',
-                'image/svg+xml',
                 'application/pdf',
                 'text/plain',
             ],
@@ -69,7 +68,6 @@
                 'image/pjpeg',
                 'image/png',
                 'image/gif',
-                'image/svg+xml',
             ],
         ],
     ],
@@ -102,7 +100,7 @@
 
     'should_validate_size'     => false,
 
-    'should_validate_mime'     => false,
+    'should_validate_mime'     => true,
 
     // behavior on files with identical name
     // setting it to true cause old file replace with new one