From ca335b6954d5046e5fd34c215f35032b6eb3c902 Mon Sep 17 00:00:00 2001
From: Ilia Chernykh <iliachernykh@yahoo.com>
Date: Fri, 21 Mar 2025 14:52:54 +0500
Subject: [PATCH] Fix the description of $protectFields property

---
 system/BaseModel.php | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/system/BaseModel.php b/system/BaseModel.php
index b0be872050c6..cf8df09998f3 100644
--- a/system/BaseModel.php
+++ b/system/BaseModel.php
@@ -121,9 +121,13 @@ abstract class BaseModel
     protected ?DataConverter $converter = null;
 
     /**
-     * If this model should use "softDeletes" and
-     * simply set a date when rows are deleted, or
-     * do hard deletes.
+     * Determines whether the model should protect field names during
+     * mass assignment operations such as insert() and update().
+     *
+     * When set to true, only the fields explicitly defined in the $allowedFields
+     * property will be allowed for mass assignment. This helps prevent
+     * unintended modification of database fields and improves security
+     * by avoiding mass assignment vulnerabilities.
      *
      * @var bool
      */