Need help with Drupal or Grav admin, site building, design, or content? Contact us!   


Back to top with progress scrollbar

Symfony Station Communiqué - 26 January 2024

By Reuben Walker, 26 January, 2024
Small robot reading a book

Welcome to this week's Symfony Station communiqué. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. Because open-source equals open societies, peeps. We also cover the cybersecurity world and the Fediverse (more open-source).

There is good content in all of our categories, so please take your time and enjoy the items most relevant and valuable to you. This is why we publish on Fridays. So you can savor it over your weekend. 😉

Or jump straight to your favorite section.

Once again, thanks go out to Javier Eguiluz and Symfony for sharing our communiqué in their Week of Symfony.

My opinions will be in bold. And will often involve cursing.


Featured Item

Nothing stood out this week. Not even the article I published. ;) So, I am going to feature a series.

Drupalize Me starts a cool one:

Part 1: HttpKernel in Drupal (Spotlight on Symfony in Drupal)

Part 2: EventDispatcher in Drupal (Spotlight on Symfony in Drupal)


Symfony

As always, we will start with the official news from Symfony.

Highlight -> "This week, we celebrated the SymfonyOnline January 2024 conference with great success. The development activity was less intense than usual because of the online conference and mostly focused on fixing bugs of stable Symfony versions."

A Week of Symfony #890 (15-21 January 2024)

They also have:

SymfonyOnline January 2024 was amazing!

SymfonyCasts has:

This week on SymfonyCasts

This Week

Roberto Butti explores:

Building a Command Line Tool with PHP and Symfony Console

Mounir Mouih shows us:

How to Manage Tasks with the Symfony Scheduler Component: A Deep Dive

Alberto Robles continues a series:

Part 2: Building a Million-Dollar Startup — Creating Books in Seconds with AI and Symfony

Part 3 - Building a Million-Dollar Startup — Creating Books in Seconds with AI and Symfony

BTW, learn from this but don't do it.

Jakub Skowrun shares:

Web Application Security: An Introduction to CSRF Tokens in Symfony

eCommerce

bitExpert shows us how to:

Customize the Sylius Checkout

Dragan Rapić helps in:

Understanding Routing and Navigation in Shopware 6

Platforms

Tech Tales examines:

Mastering Laravel Routes: A Comprehensive Guide for All Skill Levels

It must be routing week.

CMSs

TYPO3 Developer Days issues a:

Call for Papers

Nitsan looks at:

TYPO3 v13 Roadmap Release Announcement - What's to Expect?

Wolfgang Wagner explores:

Insights from the TYPO3 newsletter survey

Sebastian Klein shares:

Notes on the TYPO3 v12 upgrade

He has a very well-designed site as well.

Joomla! Community Magazine has:

The January Issue

Standout articles include:

Creating a custom Form field type in Joomla 5 using the Modal Select example

Book Review - Developing Extensions for Joomla! 5 by Carlos M. Cámara Mora

Dollar Dev examines the:

Component Accredible Credential for Joomla 5 (Part 1)

Component Accredible Credential for Joomla 5 (Part 2)

Note that The Drupal Association commissioned Cure53 to audit Drupal auto updates code:

We're getting closer to making automatic updates happen in Drupal, a highly requested feature. To ensure we maintain Drupal's excellent security reputation, we're investing heavily in securing the automatic updates process. On Drupal.org, we're using the TUF framework to secure updates.

Last year, we joined forces with OSTIF and Include Security to check the PHP-TUF and Rugged implementations on the server side.

This year, we're taking security seriously by auditing the actual Drupal code that handles updates on the client side, and we're partnering with Cure53 for this important task.

The Drop Times looks at:

Drupal Droid - The Custom Drupal GPT by Michael Miles

ADCI show us:

How to upgrade Drupal 7 and Drupal 8 to Drupal 10

Prometsource publishes:

Drupal SEO: The Ultimate Guide [2024]

They aren't kidding.

Specbee explores:

(Not Just Any) Drupal VS WordPress Blogpost - Your Top 5 FAQs Answered

Kevin Gautreau examines:

Drupal - Nouveau module : Database Dashboard

The Russian Lullably shows us:

How to set up a local development environment (LDE) for Drupal

Strange name for a blog from Spain.

ImageX Media has a case study by industry:

Libraries Going Digital: A Guide Through Useful Features For Library Websites, and How Drupal Fits In

Golems covers:

Innovative Approaches to Creating Slideshows Using Drupal Views

Computer Minds says:

Aegir 3 and Drupal 10: eeek!

Four Kitchens has:

Tips for upgrading a Drupal site to CKEditor5

And we have a new article:

How Goals It? An Update on last year's Website Tech Goals and what's in store for 2024

Previous Weeks

StrangeBuzz looks at:

Installing and using php-cs-fixer

Juanjo Conejero looks at:

Creando un bundle de Symfony desde Cero


PHP

This Week

The Grumpy Programmer says:

Wait long enough and sometimes good things happen...

Antonio Silva explores:

PHP 8 news: Nullsafe Operator

Dragan Rapić examines:

PHP Performance Optimization: A Structured Approach to Speeding Up Your Code

Kamil Ruczyński has a free book:

Unit Testing Tips

Good resource. And be sure to Buy Him a Coffee if you read it.

PHPulse asks:

What Is the Best Way to Secure PHP Sessions?

Laravel News show us how to:

Write Tabular Assertions with Pest and PHPUnit

Vasil Dakov looks at:

Dependency Inversion in PHP

Navid Vakili explores:

Fibers in PHP: Empowering Concurrent Excellence

JetBrains published:

PHP Annotated – January 2024

Sven Luijten examines:

Using interfaces in third-party packages

Arthur Acquaints looks at:

Isolating Nextcloud app dependencies with php-scoper

Doeke Norg details:

The infamous Repository Pattern in PHP

Imam Ali Mustofa has this delight:

The PHP library for Turso HTTP

Previous Weeks

Aleksander Tabor explores:

Assertions in PHP

App Threat says:

DepScan ❤️ PHP


More Programming

Duke University has a helpful class:

Modern Plain Text Computing

This is a course I need to take. And might.

Free Code Camp show us:

How to Secure Your Web Server with Continuous Integration Using NGINX and CircleCI

Stephanie Eckles makes:

A Call for Consensus on HTML Semantics

Kinsta shares:

Mastering advanced CSS techniques: a deep dive into transitions, animations, and transforms

Jesus, I love Jason Knight:

Four Things HTML / CSS “Framework Stupid” Developers Don’t Seem To Understand

Thomas Broyer is:

Making Web Component properties behave closer to the platform

David Bryant Copeland looks at:

Web Components in Earnest

Johan Halse with more reasons why React sucks:

Concatenating text

Which anyone with a brain has known for years.

Free Code Camp explores:

CSS Units – When to Use rem, em, px, and More

Very helpful for responsive design.

GitHub has:

10 unexpected ways to use GitHub Copilot

Sara Soueidan examines:

Accessible notifications with ARIA Live Regions (Part 1)

Great stuff in great detail.


Fighting for Democracy

Please visit our Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually).

The cyber response to Russia’s War Crimes and other douchebaggery

CNBC reports:

Apple forced to offer rivals access to mobile payment tech in EU antitrust case

The Verge reports:

Meta will forced to let EU users unlink their Instagram, Facebook, and Messenger info ahead of DMA

DarkReading reports:

US, UK, AU Officials Sanction 33-Year-Old Russian Medibank Hacker

The Register reports:

Trickbot malware scumbag gets five years for infecting hospitals, businesses

TechCrunch reports:

Feds kick off National AI Research Resource with pilot program live today

NextCloud releases:

Statement - Nextcloud stands for an open and free society

AKA Fuck off Nazis. I'm so glad I'm slowly moving to them from Google.

404 Media reports:

YouTube Deletes 1,000 Videos of Celebrity AI Scam Ads

The Evil Empire Strikes Back

And:

Founder of Neo-Nazi Group the Base Instructs Followers to Use 'Uncensored' AI

Inside a Global Phone Spy Tool Monitoring Billions

Another evil Israeli company helping other evil fucks get up to evil.

Behind the Blog: AI-Generated Harm and Our Journalism Business

I subscribed today to help them fight this horseshit.

Wired reports:

How a Group of Israel-Linked Hackers Has Pushed the Limits of Cyberwar

Dark Reading reports on more Israeli c^nts:

Pegasus Spyware Targets Togolese Journalists' Mobile Devices

Ars Technica reports:

The life and times of Cozy Bear, the Russian hackers who just hit Microsoft and HPE

AI-generated puffy pontiff image inspires new warning from Pope Francis

Let's hope he excommunicates them and burns them at the stake.

Speaking of which, Venture Beat:

FTC probes Amazon, Alphabet, Microsoft, OpenAI, Anthropic and their massive generative AI deals

Bleeping Computer reports:

Meta won't remove fake Instagram profiles that are clearly catfishing

The Bad Newsletter reports:

All the Garbage I Found On Substack In One Hour - An Update

Read Only Memo shares a:

Substack to Ghost migration guide: How I imported my newsletter and set up Mailgun and Cloudflare

Get the fuck of Substack and move to Ghost or WordPress or any open-source solution.

TechCrunch reports:

NSA is buying Americans’ internet browsing records without a warrant

The Hacker News reports:

Tech Giant HP Enterprise Hacked by Russian Hackers Linked to DNC Breach

Cybersecurity/Privacy

The Hacker News reports:

Critical Jenkins Vulnerability Exposes Servers to RCE Attacks - Patch ASAP!

NBC reports:

Top U.S. cybersecurity watchdog issues emergency directive to federal agencies about popular software

MIT Technology Review reports:

Three technology trends shaping 2024’s elections

Edouard Courty shares:

Content Security Policies (CSP) for dummies


Fediverse

The Fediverse Report has:

Last Week in the Fediverse

We Distribute reports:

Sublinks Aims to Be a Drop-In Replacement for Lemmy

Ryan Barret says:

Moderate people, not code

The problem is it's not as effective. It's easier to block c^ntitry at its roots than individual c^nts.

The Columbia Journalism Review asks:

What is the ‘fediverse,’ and why does Meta want to join it?

Birchtree shares:

Concept: a new Mastodon UX for asking questions

Jason Grom shares:

Why I started Sublinks: A timeline of events

TechCrunch reports:

Deck.blue brings a TweetDeck experience to Bluesky users

CTAs (aka show us some free love)

  • That’s it for this week. Please share this communiqué.
  • Also, please join our newsletter list at the bottom of our site’s pages. Joining gets you each week's communiqué in your inbox (a day early).
  • Follow us on Flipboard or at @symfonystation@phpc.social on Mastodon for daily coverage. Consider joining the @phpc.social instance.
  • Do you like Reddit? Why? Instead, follow us on kbin for a better Fediverse and Symfony-based experience. We have a Symfony Magazine and Collection there.

Do you own or work for an organization that would be interested in our promotion opportunities? Or supporting our journalistic efforts? If so, please get in touch with us. We’re in our infancy, so it’s extra economical. 😉

More importantly, if you are a Ukrainian company with coding-related products, we can offer free promotion on our Support Ukraine page. Or, if you know of one, get in touch.

You can find a vast array of curated evergreen content on our communiques page.

Author

Reuben Walker headshot

Reuben Walker

Founder
Symfony Station

section separator
Article Type
Donate using Liberapay

Symfony Station covers the essential news in the Symfony, PHP, and Fediverse development communities with a focus on protecting democracy. Please use the button above to make a small donation to help cover our out-of-pocket costs. Our labor is provided free of charge to support the communities we write about.

Join our newsletter list

Subscribe to The Payload, our weekly newsletter exploring the Symfony Universe.

  Start exploring!

Please share