Affected versions Symfony versions >=7.3, =8.0, <8.0.12 of the Symfony JSON Path component are affected by this security issue. The issue has been fixed in Symfony 7.4.12, 8.0.12. Description The JsonPath component's match() and search()…
Affected versions Symfony versions >=5.4.46, =6.4.14, =7.1.7, =8, <8.0.12 of the Symfony Runtime component are affected by this security issue. The issue has been fixed in Symfony 5.4.52, 6.4.40, 7.4.12,…
Affected versions Symfony versions >=6.4, =7.0, =8.0, <8.0.12 of the Symfony Twilio Notifier component are affected by this security issue. The issue has been fixed in Symfony 6.4.40, 7.4.12, 8.0.12. Description The…
Affected versions Symfony versions >=6.4, =7.0, =8.0, <8.0.12 of the Symfony Lox24 Notifier and Symfony Mailjet Mailer components are affected by this security issue. The issue has been fixed in Symfony 6.4.40, 7.4.12,…
Read the full post on https://stitcher.io/blog/php-ecosystem-security-team
Jakub shares a collection of small interface details that compound into a much better user experience, from text wrapping and concentric radius math to interruptible animations and optical alignment. It is packed with practical UI polish ideas that are easy to miss, but hard to unsee once you notice them. Read more
SymfonyDay Montreal 2026 is just around the corner, taking place on June 4 at L'Espace Quartier Latin (UQAM). Get ready for a day of high-level technical exchange! 🎤 Speaker announcement! Arnaud Oltra, Tech lead developer, Alesco, will share his…
Symfony 8.1 improves the Validator component with new constraints, Clock support, and reentrant validators. New Xml Constraint Contributed by Mokhtar Tlili…
In this post, Dries shows how they use Claude Skills to automate repetitive work in client projects, like generating Saloon requests, DTOs, and Livewire pages. It is a practical look at where these workflows save a lot of time, and where careful review still matters. Read more
SymfonyDay Montreal 2026 is calling! Join us on June 4, 2026, at L'Espace Quartier Latin (UQAM) for an exceptional day of technical deep dives and community networking. 🎤 Speaker announcement! Don't miss Nicolas Grekas, Symfony Core team Member,…
Symfony controllers can map request data directly into typed PHP objects using attributes such as #[MapRequestPayload] and #[MapQueryString]. This removes most of the boilerplate involved in request parsing and validation. Symfony 8.1 further improves this…
The core mission of the PHP Foundation is to ensure the long-term prosperity of the PHP language. Today, your, or your company's, financial contributions primarily fund developers working on the PHP language. In addition to sponsorships, the PHP Foundation uses grants to enable projects like last year's PHP Core Security Audit funded by the Sovereign Tech Agency. In March, the Linux Foundation announced a grant with the goal of strengthening the security of the open source software ecosystem.…
Nick and Dries share how they built Kaartje, a digital postcard wall with a spinning 3D globe that places postcards near the sender's city. It's a fun behind-the-scenes look at the stack, the role AI played during the hackathon, and the performance work needed to render hundreds of postcards smoothly. Read more
Twig 3.25.0 released Twig 3.25.0 ships with a new needs_is_sandboxed option that lets filters, functions, and tests adapt their behavior when running inside a sandbox, makes the compiled output of templates using {% embed %} deterministic across runs, and…
This week, Symfony published maintenance versions 6.4.39, 7.4.11, and 8.0.11. In addition, we announced the second beta release of Symfony 8.1. Finally, we shared the schedule for the SymfonyOnline June 2026 conference and more details about SymfonyDay Montreal…