Symfony Station Communiqué — 19 July 2024: A Look at Symfony, Drupal, PHP, Cybersec, and Fediverse News!

Reuben Walker, Jr. - Jul 20 - - Dev Community

This communiqué originally appeared on Symfony Station.

Welcome to this week's Symfony Station communiqué. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. That necessitates an opinionated Butlerian jihad against big tech as well as evangelizing for open-source and the Fediverse. We also cover the cybersecurity world. You can't be free without safety and privacy.

There's good content in all of our categories, so please take your time and enjoy the items most relevant and valuable to you. This is why we publish on Fridays. So you can savor it over your weekend.

Or jump straight to your favorite section via our website.

Once again, thanks go out to Javier Eguiluz and Symfony for sharing our communiquéin their Week of Symfony.

My opinions will be in bold. And will often involve cursing. Because humans. Especially tech bros.


Symfony

As always, we will start with the official news from Symfony.

Highlight -> "This week, Symfony continued tweaking and polishing the new features of the upcoming Symfony 7.2 version, such as the new WordCount constraint. In addition, we announced the date and the first details of the SymfonyLive Berlin 2025 conference."

A Week of Symfony #915 (8-14 July 2024)

They also have:

SymfonyCon Vienna 2024: Greener code with Symfony

SymfonyCon Vienna 2024 - Exciting news: first talks and workshops revealed!

Blackfire has:

Boosting PHP performance: mastering OPcache optimization with Blackfire

SymfonyCasts has a new course:

This week in Symfony Casts

And:

Creating a Symfony Reproducer


Featured Item

The Drop Times has an interview with Dries:

The Chief Who Drives and Is Driven by Drupal: A Talk with Dries Buytaert


This Week

Louis Soltys explores:

How to Use Symfony Flex to Simplify Your Development Workflow

Building Scalable Web Applications with Symfony and Docker

O'Neil asks:

Actix-web vs Symfony - Easier to write unsafe code in Rust?

This is a discussion you don’t run across every day.

TempMail has an:

Introduction to Troubleshooting JWT Signing Issues in Symfony

Jan Böhmer continues a series:

User-configurable settings in Symfony applications with jbtronics/settings-bundle (Part 3): Migrations and environment variables

Kristijan Kanalaš examines:

Modernizing Emails: Innovations for Efficient Handling in Distributed Systems

Platforms

Bayram Eker shows us how to:

Master PHP Development with Bolt: The Ultimate Framework for Modern Web Applications

eCommerce

Specbee looks at:

Personalizing Experiences in Drupal: CRMs, E-commerce Integration, and UTMs

Sylius has:

Security blog post – 1.12.19 and 1.13.4

Hamza Hannad explains the:

Magento 2 Slack Notifier Module

CMSs

TYPO3 has:

Supporting Higher Education Institutions in Growth

CMS Localization: What to Consider and Why it Matters

Fractor — The New Kid on the Block

Joomla has a new edition of the Community Magazine:

The July Issue

Highlights include:

Joomla 6, what's in it for you?

Create a banner from Joomla's category description

Drupal has:

Drupal Business Survey 2024

Please take it. They need this input.

Drupal.org login flow is changing

Dries Buyaert wants you to:

Join the Drupal Starshot team as a track lead

Salsa Digital announces:

CivicTheme establishes a formal steering committee to guide its rapid growth

The Drop Times has:

Using Drupal Migrations to Deploy New Content

Markie explores:

Keyboard Navigation for a LocalGov Drupal website

Tag1 Consulting continues its series:

Migrating Your Data from D7 to D10: The migration process pipeline

Kanopi examines Electronic Health Records:

Epic EHR, WordPress, & Drupal

This is a solid use case for Drupal.

Robert Roose says:

This is how you redirect all visitors to the HTTPS version of your Drupal website with or without WWW

Debug Academy is:

Evaluating Acquia storage limits - "Emergency upsize" notification

Previous Weeks

Acceseo explores:

Nuevos componentes en Symfony 7.1

Prometsource examines:

Scaling Government: Open Source vs Proprietary CMS


PHP

This Week

Gabriel Anhaia says:

PHP MDCLogger: Enhance Your PHP Logging with Mapped Diagnostic Context

Yonel Ceruto asks:

Why OOP is Your Old New Best Friend: The Date Distance Problem

Tomas Votruba advises:

Scope and Downgrade your PHP Tools for Everyone  to Use

Good stuff as always from Tomas.

Jochelle Mendonca shares:

“Say Goodbye to Friday Bugs: Making isset() Work for You!"

Backend Tea asks:

Why you should be typing your arrays in PHP

PlatformSH looks at:

Working with Upsun and DDEV - Tokens and Environment variables

Lullabot shares:

The Easy Guide to Resolving composer.lock Conflicts

Nikolay Nikolov explores:

Refactoring in Action: The Tennis Kata

Sticher demonstrates:

array_find in PHP 8.4

Denzyl Dick explains:

Why is unserializing an object in PHP a bad idea?

Steve Grunwell says:

For a Great Time, Make it a DateTime

Previous Weeks

Morteza Poussane asks:

Comparing phpkg and Composer: What’s New?


More Programming

The Future is Now says:

"GitHub" Is Starting to Feel Like Legacy Software

Uh hmm.

Ars Technica reports:

Real, actual Markdown support is arriving in Google Docs, not a moment too soon

Miriam Suzanne examines:

CSS Mixins & Functions Explainer

Evil Martians share:

OKLCH in CSS: why we moved from RGB and HSL

And Alvaro Montoro shares:

CSS One-Liners to Improve (Almost) Every Project

Simple but useful.

Adële looks at:

The importance of following Smolweb guidelines

Emphasis on simple.

The Markup reports:

Everyone Is Judging AI by These Tests. But Experts Say They’re Close to Meaningless

Backblaze continues an informative series:

AI 101: Why RAG Is All the RAGe

It seems like all these half-ass LLMs should be using this.


Fighting for Democracy

Please visit our Support Ukraine pageto learn how you can help
kick Russia out of Ukraine (eventually, like ending apartheid in South Africa).

The cyber response to Russia’s War Crimes and other douchebaggery

The Kyiv Independent has:

Ukrainian intelligence 'hacks Russian websites, replaces homepages with pig head pictures'

Opinion: Ukraine's volunteer hacker army is pioneering a new era of cyber warfare

PBS reports:

Ukrainian startups develop robots to fight war against Russia

The Register reports:

CISA broke into a US federal agency, and no one noticed for a full 5 months

Privacy warriors gripe to UK watchdog about Meta harvesting user data to train AI

404 Media reports:

DDoSecrets Mirrors Wikileaks Data After Assange Plea Deal

The Electronic Frontier Foundation reports:

Platforms Have First Amendment Right to Curate Speech, As We’ve Long Argued, Supreme Court Said, But Sends Laws Back to Lower Court To Decide If That Applies To Other Functions Like Messaging

Wow. The Supreme C^nts got a decision semi correct.

Radio Free Europe reports:

U.S. Imposes Sanctions On Russian Hacker Group

The Evil Empire Strikes Back

The Kyiv Post reports:

Finland Reports GPS Malfunctions Due to Russian Jamming

Citation Needed reports:

Follow the Crypto: A new project to track cryptocurrency industry spending to influence 2024 elections in the United States

Project Syndicate comments on:

How Techno-Libertarians Fell in Love with Big Government

Example: SpaceKaren donating millions to help elect the orange fascist this week.

And this from TechCrunch:

Andreessen Horowitz co-founders explain why they’re supporting Trump

And 404 Media reports:

AI Maxers Thrilled with Trump’s Vice President Pick JD Vance

Joan Westenberg writes:

Macro-Morons with Micro-Visions: The VC Disaster Tour

Lesson -> VC, AI, and Crypto bros are c^nts and out to destroy democracy.

Speaking of, Sherwood News reports:

Elon Musk didn’t rid Twitter of bots. X is paying armies of them for slop.

CEPA writes:

Supreme Court Buries US Tech Regulation

The motherfuckers sure did.

Ars Technica reports:

Meta tells court it won’t sue over Facebook feed-killing tool—yet

Pam Crossland shares:

Facebook is now banning any links to the Fediverse

If this is true it wouldn't be surprising. If.

DarkReading reports:

Iranian Cyber Threat Group Drops New Backdoor, 'BugSleep'

The Register has more:

Iran's MuddyWater phishes Israeli orgs with custom BugSleep backdoor

Cybersecurity/Privacy

And:

Infoseccers claim Squarespace migration linked to DNS hijackings at Web3 firms

ZDI shames Microsoft for – yet another – coordinated vulnerability disclosure snafu

Russia’s FIN7 is peddling its EDR-nerfing malware to ransomware gangs

Ars Technica reports:

Here’s how carefully concealed backdoor in fake AWS files escaped mainstream notice

DarkReading reports:

Void Banshee APT Exploits Microsoft Zero-Day in Spear-Phishing Attacks

Orgs Are Finally Making Moves to Mitigate GenAI Risks

The Electronic Frontier Foundation reports:

UN Cybercrime Draft Convention Dangerously Expands State Surveillance Powers Without Robust Privacy, Data Protection Safeguards

404 Media reports:

Leaked Docs Show What Phones Cellebrite Can (and Can’t) Unlock

BleepingComputer reports:

SolarWinds fixes 8 critical bugs in access rights audit software

Pivot to AI reports:

Proton Mail goes AI, security-focused userbase goes ‘what on earth’


Fediverse

The Fediverse Report has:

Last Week in Fediverse and Bluesky – ep 77

We Distribute reports:

ActivityPods Releases Example App to Help Developers

Privacy and Consent for Fediverse Developers: A Guide

Alex Kirk demonstrates:

Your WordPress as Your Personal Mastodon Instance

Open Science Network announces:

We will share developments from our own federated Bonfire instance

Augment looks at:

The Threads Creator Paradox

PeerTube announces:

PeerTube 6.2 is out!

Patchwork shares:

Patchwork progress

The Future is Federated says:

Your data, your power: the Fediverse's big advantage over the walled gardens of Big Tech

The New Stack asks:

The Fediverse: What It Is, Why It’s Promising, What’s Next

Other Federated Social Media

White Wind has:

Notes on Running a Full-Network atproto Relay (July 2024)


CTAs (aka show us some free love)

Do you own or work for an organization that would be interested in our promotion opportunities? Or supporting our journalistic efforts? If so, please get in touch with us. We’re in our toddler stage, so it’s extra economical. 😉

More importantly, if you are a Ukrainian company with coding-related products, we can offer free promotion on our Support Ukraine page. Or, if you know of one, get in touch.

You can find a vast array of curated evergreen content on our communiqués page.

Author

Reuben Walker headshot

Reuben Walker

Founder
Symfony Station

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .