Replace Str::random() call with simple inline generator

michaeldyrynda · michaeldyrynda · commit 86f24495bf4d · 2025-09-01T12:05:23.000+09:30
The use of `Str::random()` within the validator can lead to
non-deterministic test outcomes when using random string mocking such as
`Str::createRandomStringsUsing()` or
`Str::createRandomStringsUsingSequence()`.

This simple inline generator needn't be cryptographically secure in this
context as we only need a unique placeholder string.
diff --git a/src/Illuminate/Validation/Validator.php b/src/Illuminate/Validation/Validator.php
@@ -345,7 +345,7 @@ public function __construct(
         array $attributes = [],
     ) {
         if (! isset(static::$placeholderHash)) {
-            static::$placeholderHash = Str::random();
+            static::$placeholderHash = substr(str_shuffle('0123456789abcdefghijklmnopqrstuvwxyz'), 0, 16);
         }
 
         $this->initialRules = $rules;

Original file line number	Diff line number	Diff line change
`@@ -345,7 +345,7 @@ public function __construct(`
`345`	`345`	`array $attributes = [],`
`346`	`346`	`) {`
`347`	`347`	`if (! isset(static::$placeholderHash)) {`
`348`		`- static::$placeholderHash = Str::random();`
	`348`	`+ static::$placeholderHash = substr(str_shuffle('0123456789abcdefghijklmnopqrstuvwxyz'), 0, 16);`
`349`	`349`	`}`
`350`	`350`
`351`	`351`	`$this->initialRules = $rules;`