Search engines like to snoop on all of your files, so be careful what you leave lying around. All it takes is a simple Google Dork to find sensitive data in an exposed `.env` and your app will be compromised...
https://securinglaravel.com/security-tip-protect-your-env-file/#Laravel