Symfony Station Communiqué — 10 February 2023. A look at Symfony, Drupal, PHP, and Cybersecurity news.

Reuben Walker, Jr. - Feb 11 '23 - - Dev Community

This communiqué originally appeared on Symfony Station, your source for cutting-edge Symfony, PHP, and Cybersecurity news.

Welcome to this week's Symfony Station Communiqué. It's your review of the essential news in the Symfony and PHP development communities. We also cover the cybersecurity world and the Fediverse.

Please take your time and enjoy the items most relevant and valuable to you.

As always, thanks to Javier Eguiluz and Symfony for sharing our latest communiqué in their Week of Symfony.

My opinions will be in bold.


Many of the items we curate are on Medium. I recommend investing in a membership, as you can access everything you want to read. It’s a small investment in boosting your career. As you may have noticed, non-members can only access a limited number of articles per month.

Become a member here! The compensation we receive from your use of this link helps pay for our weekly communiqué.


Symfony logo

Symfony

As always, we will start with the official news from Symfony.Highlight -> “This week, Symfony 4.4.50, 5.4.20, 6.0.20, 6.1.12, and 6.2.6 were released to address some security issues related to CSRF tokens and cookie headers in HTTP Cache. Moreover, we celebrated the companies that back Symfony 6.2 development and announced the SymfonyLive Paris 2023 conference workshops.“

A Week of Symfony #840 (30 January - 5 February 2023)

Symfony announced:

SymfonyLive Paris 2023 - The schedule is complete and online!

SymfonyLive Paris 2023 - Symfony and Hotwire: make an interactive front-end without too much effort

SymfonyLive Paris 2023 - Tests in a Symfony application

SymfonyCasts continued its API Platform course.

This week on SymfonyCasts


Featured Item

Featured item graphic

Software Crisis says:

I’ve pointed out before that Programming is a Pop Culture. But, this isn’t an issue that’s specific to programming or software development. It’s an issue that plagues the entire tech industry.

Tech Companies Are Irrational Pop Cultures

So true. Unfortunately.

And in a similar more optimistic vein Brandeis Marshall says:

Say Goodbye to the Tech-First Era, The humanity-first movement is here and staying awhile


This Week

Nacho Colomina Torregrosa explains:

Making a Symfony third-party bundle extensible

Serializing API outputs with Symfony serializer

Manuel Canga shows us how to:

Fix Symfony 6.x tests with PHPUnit 10

The Register reports:

HeadCrab bots pinch 1,000+ Redis servers to mine coins

Yan Ivanov explores:

Optimizing One-To-Many Doctrine collections

Jolicode shows us:

How to Fix Memory Leak in Doctrine Migrations

eCommerce

Lemberg Solutions shows us:

How to Build a B2B eCommerce Marketplace with Drupal Commerce?

CMSs

The Drop Times interviews Adam Varn of Florida DrupalCamp:

Don't Exert Too Much Effort on Headless: Adam Varn | FLDC

Andrey Rudenko reviews Drupal’s new:

Claro Admin Theme

!#Code looks at:

Drupal 10: Migrating Flags With The Migrate Module

The Droptimes’ Sebin A Jacog asks:

Wish Drupal Would Offer an Official JavaScript Client Sometime: Brian Perry
I think this may be in the works (but I’m not sure).

Speaking of which, Specbee shares:

Taming JavaScript in Drupal (Includes FAQs)

Golems asks:

What is Data Persistence?

WebWash examines:

Customize View Fields using Twig in Drupal

If you aren’t familiar with the Twig templating engine, see our article, Twig: The Ultimate Guide to the Premier PHP Templating Language.

Drupal and PHPStan developer extraordinaire Matt Glaman explores:

Using the new add_suggestion Twig filter in Drupal 10

Yay Twig!

He also has:

phpstan-drupal 0.12.15: Improved detection of deprecated service usage

And:

Auto discovery of global commands in Drush

And he has a book coming out today:

Drupal 10 Development Cookbook Releasing Tomorrow

I have ordered the print version, Matt. So slow down now, bro. I'll buy you a beer at Florida DrupalCamp. ;)

Systemseed looks at:

10 Tips for a Successful Web Development Project for Charities, Nonprofits and NGOs

Pantheon announced:

Pantheon’s LocalDev will be Discontinued in June 2023

Previous Weeks

Ulrich shows us how to:

Manage Elasticsearch indices with elasticsearch-php library

Annai Magazine explores:

New features of the Drupal Group Module 2.0.0/3.0.0

John Freeman looks at the:

Locality of (Code) Behavior

PHP logo

PHP

This Week

Morteza Poussaneh shares:

Package Manager(s?) in PHP

Max Zhuk has:

Design Patterns in PHP 8: State

Laravel Learn examines:

Manipulating Data with Ease: Understanding the Power of Map, Filter, and Fold in PHP

Alin Pintilie looks at:

PHP Iterator

Victor Todoran says:

Not All Exceptions Are The Same

Nikola Stojiljkovic shares:

The most efficient way to debug problems with PHPUnit mocks

Rector PHP shows us:

How to Upgrade to PHPUnit 10 in Diffs

LordNeic provides an:

Introduction to Pest Testing in PHP

And Laravel News shares:

Testing JSON: API Endpoints with PestPHP

Frontend and accessibility legend Jason Knight starts a great series:

“Poor Man’s” CMS From The Ground Up — Part 1, Planning And Defines

“Poor Man’s” CMS From The Ground Up — Part 2, Outer Markup And Templates

This is an excellent lesson in architecture.

Claudio Ribeiro has a:

Quick Tip: How To Check if a Variable Is Set in PHP

DevNest explores:

Profile Guided Optimization (PGO) with PHP

Symfony Station favorite Andrei Birta examines:

Building Scalable Systems with the Open-Closed Principle

Tom Smykowski looks at:

PHP 8.2+ Boosts Memory Beasts On MacOS

William P continues his series:

30 Days of Automated Testing:Using PHPUnit【D16】

30 Days of Automated Testing:Using PHPUnit【D17】

30 Days of Automated Testing:Using PHPUnit【D18】

30 Days of Automated Testing:Using PHPUnit【D19】

30 Days of Automated Testing:Using PHPUnit【D20】

Derick Rethans has an:

Xdebug Update: January 2023

Previous Weeks

Camilo Herrera looks at:

Malware Detection in Web scripts with Regex, md5 checksum and PHP

Code logo

Other

Please visit our Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually).

The cyber response to Russia’s War Crimes and other douchebaggery

Darkreading opines:

Lessons From the Cold War: How Quality Trumps Quantity in Cybersecurity

The Hacker News reports:

U.K. and U.S. Sanction 7 Russians for TrickBot, Ryuk, and Conti Ransomware Attacks

The Guardian reports:

TikTok: how the west has turned on gen Z’s favorite app

TechCrunch reports:

Senate committee presses Meta over data access by developers in “high risk” countries, per 2018 app audit

EU’s top diplomat fires warning shot at Elon Musk over Twitter disinformation

The Guardian reports:
Fury in Ukraine as Elon Musk’s SpaceX limits Starlink use for drones

The Evil Empire Strikes Back

The Hacker News reports:

Russian Hackers Using Graphiron Malware to Steal Data from Ukraine

Wired reports:

The Kremlin Has Entered the Chat

The Guardian reports:

State-linked hackers in Russia and Iran are targeting UK groups, NCSC warns

The Journal of Intelligence, Conflict, and Warfare reports:

Russia's Role in the Far-Right Truck Convoy

Bloomberg reports:

TikTok Reveals Russian Disinformation Network Targeting European Users

The Register reports:

Surprise! China's top Android phones collect way more info

That’s a sarcastic “Surprise!” in the headline.

Business Insider reports:

Hackers tied to North Korea stole $630 million in crypto last year in their biggest haul ever, UN reportedly finds

The New York Times reports:

Disinformation Researchers Raise Alarms About A.I. Chatbots

The Guardian has an opinion piece reporting on:

A world in which your boss spies on your brainwaves? That future is near.

Wired asks:

Want to Delete Your Twitter DMs? Good Luck With That

Cybersecurity/Privacy

Ars Technica reports:

Hackers are selling a service that bypasses ChatGPT restrictions on malware

VentureBeat reports on:

Getting results from your zero-trust initiatives in 2023

The Markup shares:

Blacklight – The Markup

This is a very helpful tool. Very.

Bleeping Computer reports:

Clop ransomware flaw allowed Linux victims to recover files for months

The Hacker News reports:

Encrypted Messaging App Exclu Used by Criminal Groups Cracked by Joint Law Enforcement

More

ZDNets’ Jack Wallen shares:

My idea for a great new beginner-friendly Linux distribution

Business Insider reports:

OpenAI makes a ChatGPT-like tool called Codex that can write software. Here's why Codex won't replace developers and will instead create more demand for their skills.

Let’s hope this is true.

Visual Studio shares:

CodeGPT: write and improve code using AI

Infoworld reports:

Visual Studio Code 1.75 brings configuration profiles

TechCrunch reports:

GitHub CEO on why open source developers should be exempt from the EU’s AI Act

Releem looks at:

How MySQL Configuration Impacts the Performance of Web Applications

Planetscale explores:

Common MySQL errors and how to fix them

I found this holiday series a little late, but 12 Days of Web shares:

HTML Dialog | 12 Days of Web

CSS Subgrid | 12 Days of Web

Smashing Mag shows us:

How To Build A Magazine Layout With CSS Grid Areas

Alex Russell looks at:

The Market for Lemons - Infrequently Noted

Another piece on why JavaScript SPA platforms suck.

The Performance Inequality Gap, 2023

Here’s another one via Infrequently.

And here’s a Svele resource for you if you have to use a JS frontend:

SvelteStorm: Svelte’s First IDE

Jangwook Kim shares:

A Comprehensive Guide to Debugging Svelte Applications

Fediverse

Ross Schulman shares:

The Breadth of the Fediverse

Cloudfare says:

Welcome to Wildebeest: the Fediverse on Cloudflare

This is big news.

Fastly offers a similar service:

Fastly and the Fediverse, pt.1

Wired reports:

The Mastodon Bump Is Now a Slump

While it has a clickbait title that is inaccurate, this article covers a good development. The lazy and stupid people have left Mastodon.

Speaking of which Canadian online reports:

Journalists, You’re Walking Away From A Goldmine

And TechDirt counters with:

Lazy Reporters Claiming Fediverse Is ‘Slumping,’ Despite Massive Increase In Usage

CTAs

Do you own or work for an organization that would be interested in our promotion opportunities? Or supporting our journalistic efforts? If so, please get in touch with us. We’re in our infancy, so it’s extra economical. 😉

More importantly, if you are a Ukrainian company with coding-related products, we can offer free promotion on our Support Ukraine page. Or, if you know of one, get in touch.

Keep coding Symfonistas!

Visit our Communiqué Library

You can find a vast array of curated evergreen content.

Author

https://miro.medium.com/max/1200/1*B3RcgIbAiytfjynP-oiOMg.jpeg

Reuben Walker

Founder
Symfony Station

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .