This week, Symfony 2.7.51, 2.8.50, 3.4.26, 4.1.12 and 4.2.7 versions were released to address some security issues. Meanwhile, the upcoming Symfony 4.3 version added a native password hasher which chooses the best hashing algorithm automatically.
Symfony development highlights
This week, 44 pull requests were merged (33 in code and 11 in docs) and 52 issues were closed (40 in code and 12 in docs). Excluding merges, 24 authors made 6,899 additions and 1,910 deletions. See details for code and docs.
- 81d11c3: [Form] workaround for \DateInterval::createFromDateString
- 84ee311: [HttpFoundation] reject invalid method override
- 0a4ed67: [Security] added a separator in the remember me cookie hash
- d77e445: [Cache, PHPUnit Bridge] prevent destructors with side-effects from being unserialized
- 4585a41: [FrameworkBundle, Form] fixed XSS issues in the form theme of the PHP templating engine
- 47cd029: [DependencyInjection] check service IDs are valid
- 1311324: [HttpFoundation] made MimeTypeExtensionGuesser case insensitive
- f458e5b: [Validator] updated the Tagalog translation
- c009e60: [HttpKernel] fixed get session when the request stack is empty
- 74a18bc: [FrameworkBundle] decorated the ValidatorBuilder's translator with LegacyTranslatorProxy
- 2d2ff38: [Routing] fixed trailing slash redirection with non-greedy trailing vars
- cc497a5: [FrameworkBundle] called method with Translator component only
- 243b257: [Routing] fixed matching trailing vars with defaults
- 238f844: [Serializer] use name converter when normalizing constraint violation list
- e683dfa: [Messenger] removed base64_encode & used addslashes
- 7cf96a4: [Form] show all option normalizers on debug:form command
- a59fe66: [VarDumper] added caster for WeakReference instances of PHP 7.4
- 89ec311: [Security] added NativePasswordEncoder
- d9bcfc3: [PhpUnit Bridge] treat undefined env var as strict mode
- 823d375: [Security] deprecated BCryptPasswordEncoder in favor of NativePasswordEncoder
Newest issues and pull requests
- Built-in password hash migrations
- Split the logic of Response::isNotModified()
- Use ReflectionReference in VarCloner to prepare for PHP 7.4
- [DI] Give services defined by hands higher priority than wildcard defined ones
- [Messenger] Remove StackInterface
They talked about us
- Introducing the league/flysystem-bundle
- Continuously Build, Test, and Deploy with Symfony on Google Cloud
- EU Fossa-2 Hackathons — Co-creating the Future of Open Source
- Symfony 4 upload images using EasyAdmin
- Symfony4 Kubernetes Local Development Environment #3 Ksync
- Why many people are going to migrate from Magento 1 to Sylius?
- Fixtures, the right gestures
- How I integrated myFMApiLibrary for PHP with Symfony 3.4
- Implement a 'Read in your language' link with Symfony
- Symfony 4.2 is used Twice More than Symfony 3.4
- How to start build reusable Symfony Bundle
- Cómo filtrar por un campo en una aplicación Symfony dependiendo del usuario conectado
- Nuevo en Symfony 4.3: Mejoras en los formularios
- Se publican las actualizaciones de seguridad 2.7.51, 2.8.50, 3.4.26, 4.1.12 y 4.2.7
- Nuevo en Symfony 4.3: Declaradas obsoletas las clases Role y SwitchUserRole
- Nouveau bundle LexikCronFileGeneratorBundle
- Implémenter un lien 'Lire dans votre langue' avec Symfony
- Acesso mais Simples aos Dados do Componente Intl no Symfony 4.3
Upcoming Symfony Events
- Monolith turned API Gateway and Static Code Analysis: Berlin, Germany (April 24)
- Symfony User Group Osnabrück: Osnabrück, Germany (May 9)
- 8. PHP Symfony User Group Basel: Basel, Switzerland (May 16)
- Symfony Meetup III / 2019: Frankfurt, Germany (May 28)
- Etwas mit FormTypes, AWS und der Unsplash-API: Hamburg, Germany (June 4)
Call to Action
- Give Symfony a star on GitHub
- Follow Symfony on Twitter and retweet this article.
- Follow Symfony on Medium and clap for this article.
- Subscribe to the Symfony blog RSS and never miss a Symfony story again.
Published in
#A week of symfony