A Week of Symfony #734 (18-24 January 2021)

This week, Symfony made some changes in the default way that JavaScript files are linked from templates. In addition, the Uid component added some utilities to convert from different formats and Symfony improved the handling of CSRF tokens to prevent BREACH security attacks.

Symfony development highlights

This week, 67 pull requests were merged (37 in code and 30 in docs) and 69 issues were closed (61 in code and 8 in docs). Excluding merges, 40 authors made 3,116 additions and 210 deletions. See details for code and docs.

4.4 changelog:

• 6af4446: fix problem when SYMFONY_PHPUNIT_VERSION is empty string value
• 98bfdf7: [HttpClient] add check for constant in Curl client
• ee5b51a: [DoctrineBridge] add username to UserNameNotFoundException
• 3257d4c: [HttpFoundation] drop int return type from parseFilesize()
• 35c19c8: [DoctrineBridge] add username to UserNameNotFoundException
• 64398da: [MonologBridge] typo in consoleFormatterOptions property name
• c6f5e2a: [Console] fix Closure code binding when it is a static anonymous function
• 799bc2a: [HttpKernel] configure the ErrorHandler even when it is overriden
• 0c7eb27: [PhpUnitBridge] allow relative path to composer cache

5.1 changelog:

• 2c8368f: [Uid] clarify the format returned by getTime()
• 64c8a55: [Uid] unable to extend Uuid/Ulid and use fromString()
• 1c9d2c8: [Notifier] fix invalid signature for message with slashes in OvhCloud
• de8ddfd: [PropertyInfo] fix breaking change with has*(arguments...) methods

5.2 changelog:

• b4c362c: [Validator] fix DebugCommand
• 3fedac0: [RateLimiter] fix infinite values with NoLimiter

5.x changelog:

• 2941951: [Asset] fix JsonManifest when there is no dependency on HttpClient
• b4ec36f: [DependencyInjection] fix container injection with TypedReference
• 49889c9: [DependencyInjection] add a remove() method to the PHP configurator
• 6b9fa0b: [FrameworkBundle] do not fail when MercureBundle is not installed
• dc9db1e: [Console] add option --short to the list command
• c5140c2: [Uid] add fromBase58(), fromBase32(), fromRfc4122() and fromBinary() methods
• 0a66727: [Notifier] fix HttpClient TransportException handling
• 4c2375f: [Security] randomize CSRF token to harden BREACH attacks

Newest issues and pull requests

• Add support for bright colours in symfony/console
• [Messenger] Support for an AWS SNS transport
• Autowire ServiceLocator with iterable of tagged services

They talked about us

• Switch Symfony String Route Names to Constants
• How to override Router URL Generator in Symfony 5
• Новое в Symfony: инициатива UX — новая экосистема JavaScript для Symfony
• Новое в Symfony 5.2: атрибуты PHP 8

Call to Action

• Follow Symfony on Twitter and retweet this article.
• Subscribe to the Symfony blog RSS and never miss a Symfony story again.