DEV Community

Cover image for Symfony Station Communiqué — 16 February 2024. A look at Symfony, Drupal, PHP, Cybersec, and Fediverse News!
Reuben Walker, Jr.
Reuben Walker, Jr.

Posted on • Originally published at

Symfony Station Communiqué — 16 February 2024. A look at Symfony, Drupal, PHP, Cybersec, and Fediverse News!

This communiqué originally appeared on Symfony Station.

Welcome to this week's Symfony Station communiqué. It's your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy. Because open-source equals open societies, peeps. We also cover the cybersecurity world and the Fediverse (more open-source).

We cover a brawl in the Mastodon community this week. And there is good content in all of our categories, so please take your time and enjoy the items most relevant and valuable to you. This is why we publish on Fridays. So you can savor it over your weekend. 😉

Or jump straight to your favorite section via our website.

Once again, thanks go out to Javier Eguiluz and Symfony for sharing our communiqué in their Week of Symfony.

My opinions will be in bold. And will often involve cursing. Because humans. And I have plenty of them this week.


As always, we will start with the official news from Symfony.

Highlight -> "This week, Symfony maintained versions focused on fixing bugs and updating the translation of validation messages to many of the supported languages. Meanwhile, the upcoming Symfony 7.1 version improved the parsing/linting methods of ExpressionLanguage and also improved the BinaryFileResponse. Lastly, we published more details about the talks of the upcoming SymfonyLive Paris 2024 conference."

A Week of Symfony #893 (5-11 February 2024)

SymfonyCasts has:

This week on SymfonyCasts!

Featured Item

Cory Doctorow opines on a recent study:

Big Tech disrupted disruption

More on why these enshittified mofos are the enemy of humanity.

Stanford Law School has all the gory details:

Co-opting Disruption

This Week

Filip Horvat explores:

Mastering the ‘Decorator’ Design Pattern in Symfony

Mastering the ‘Adapter’ Design Pattern in Symfony

Mastering the ‘Abstract Factory’ Design Pattern in Symfony

Danil Bifidokk examines:

Asynchronous state machine with Symfony Workflows

Oliver Davies broadcasts:

Episode 10: Twig, Symfony and SymfonyCasts with Ryan Weaver

Anything with Ryan involved is awesome.

Alberto Robles (who may or may not be a robot) shows us:

How to secure your Symfony Apps with HTTPS

Ludo Dev asks:

Recurring actions? Symfony and RabbitMQ for asynchronous events...

Vandeth Tho shows us:

How I build platform that focusing on making Symfony workflow configuration easier with SymFlowBuilder


Specbee looks at:

Driving E-Commerce Revenue Success with Drupal Commerce

Dragan Rapić shares:

Securing Your Shopware 6 Shop


TYPO3 has a case study:

TYPO3 and DMK Power Digital Transition to Responsive, Accessible City Services


TYPO3 13.0.1, 12.4.11 and 11.5.35 security releases published

Mike Street explores:

Testing the frontend of a TYPO3 project

Nice animated logo.

Contao has:

Contao News

Drupal announces:

Single Sign-On is coming to thanks to Cloud-IAM

It's time to migrate from Drupal 7. Let me show you (how to start)

Bounty program extension (for innovative modules and ideas)

Turning Takers into Makers: The enhanced Drupal Certified Partner Program

This has set off a bruhaha with independent developers and small agencies. At a minimum Drupal sucks at naming things.

Core Contributor, Gábor Hojtsy has:

Looking for your input for DrupalCon Portland 2024 initiative highlights

Onwards to Drupal 11 - ways to get involved

Recognize contributors everywhere and show them some love.

Upgraded my blog from Drupal 7 to Drupal 10 in less than 24 hours with the open source Acquia Migrate Accelerate

Quick aside:

You know what easier than going from 7 to 10 (which is a pain in the ass), Moving to Frontkom's Gutenberg Theme from DXPR's distribution. In an update from last week, we moved our Mobile Atom Media site over in less than 12 hours, and 90% of that was content updates and custom CSS. :)

**Note that the Gutenberg Starter Theme is not ready for production even though I am using it that way. There are a few bugs with certain blocks. Obviously, it doesn't have the same capabilities as the WordPress version (they are working on that). Still, if you are comfortable using the code editor rather than the visual one (and write HTML and CSS), you can come close. Plus it is compatible with Layout Builder and Drupal blocks (so you can keep your business logic).

Unfortunately, when I tried to create a subtheme, add to regions, etc., I got the white screen of death. So keep that in mind and take them at their word on the not ready for production yet.

TrueSummit announces:

Search Web Components Alpha 2 Release

The Drop Times has an interview:

André Angelantoni Discusses Automated Testing Kit Module

ChapterThree has a case study:

Apigee Kickstart in Action: Powering Financial Services

Matt Glaman explores:

Verifying your Drupal site’s configuration against changes from dependency updates

Oliver Davies has a few quick takes:

Symfony conventions making their way to Drupal

The more, the merrier. And it's why I'm mastering Drupal before putting my big boy pants on and moving up to Symfony.

Major version updates are just removing deprecated code

ImageX shows us:

How Project Browser Transforms Module Discovery and Installation Experience

DrupalizeMe demonstrates a great new feature:

New in Drupal 10.2: Create a New Field UI

Golems examines:

Exploring Drupal's Entity API: Tips and Tricks for Better Site Development

Previous Weeks

Acceseo looks at:

Import map, simplificando procesos en el desarrollo web


This Week

Mohammad Roshandelpoor explores:

Makefile: Simplifying Command Execution and Automation

Matthias Noback announces a:

New edition for the Rector Book

Similar to Matt Glaman's Retrofit project with Drupal 7 migration, I feel that products like Rector don't get the credit they deserve. So, if you work with legacy sites, I would buy the book.

Camilo Herrea examines:

Basic route management with PHP and Apache httpd

This was informative for a mainly frontend developer.

Dragan Rapić shares:

Troubleshooting PHP Errors

Hamid Rohani looks at:

Having trouble with require or require_once in PHP class files? Upgrade your project by implementing autoload with PSR-4

PhpStorm has:

AI for PHP: How To Automate Unit Testing Using AI Assistant?

And WebWash shows us:

How to Compare Files and Sync Changes using PhpStorm

Peter Fox shares:

PHP: 7 tricks to help with upgrading Composer packages

Ellis explores:

Enhancing Code Consistency with php-cs-fixer and Visual Studio Code

Timothy Iloba examines:

Return type declarations in PHP

Previous Weeks

JoliCode shares:

Héberger un projet PHP sans serveur avec WebAssembly

More Programming

Joan Westenberg preaches:

Creators: go small. It’s your edge.

This is the way we have rolled for over ten years. You can build a sustainable business this way and live the life you want.

Forgejo forks its own path forward

Voices of Open Source has:

A comparative view of AI definitions as we move toward standardization

VentureBeat reports:

Meta releases ‘Code Llama 70B’, an open-source behemoth to rival private AI development

Hopefully it doesn't turn out anything like React did.

Speaking of which, Infoworld reports:

Reactive magic in Svelte 5: Understanding Runes

Friends don't let friend use React.

CSS god Josh Comeau shows us:

How To Center a Div

This sounds simple but it's one of the most frustrating things about CSS if you don't work with it everyday.

Free Code Camp compares:

Flexbox vs Grid in CSS – Which Should You Use?

Laravel News lists:

Five Ways to Be More Productive with Git

Fighting for Democracy

Please visit our Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually, like ending apartheid in South Africa).

The cyber response to Russia’s War Crimes and other douchebaggery

The Register reports:

FCC gets tough: Telcos must now tell you when your personal info is stolen

The Verge reports:

FCC commissioner wants to investigate Apple over Beeper Mini shutdown

Isn't it nice having an FCC that at least tries to protect consumers rather than being big tech bootlickers.

Ars Technica reports:

Backdoors that let cops decrypt messages violate human rights, EU court says

Euronews reports:

Poland to investigate alleged use of Pegasus spyware by last government

The Evil Empire Strikes Back


'Kremlin conducting information operations against Moldova' says ISW

MacRumors reports:

iOS 17.4 Nerfs Web Apps in the EU

The mofos at Apple fuck over PWAs in Europe. So, ditch the enshittification and get your next phone from Murena. Be sure to get the latest Fairphone model. And FYI, this is not an affiliate link. It's my Valentine, birthday, holiday, etc. gift to you. 😘

Or maybe everywhere according to Danny Moerkerke:

Apple Wants To Kill PWAs

DarkReading reports:

Deepfake Democracy: AI Technology Complicates Election Security

Beeping Computer reports:

Google says spyware vendors behind most zero-days it discovers

North Korean hackers now launder stolen crypto via YoMix tumbler

The New Republic reports:

The Tech Plutocrats Dreaming of a Right-Wing San Francisco

This bullshit ideology is even trickling down to Mastodon. There's more on that below.

Speaking of edgelord c^nts, the Verge reports:

Terrorists are allegedly buying blue checks on X

Ars Technica reports:

Elon Musk’s X allows China-based propaganda banned on other platforms

And you Silicon Valley fucks might want to pay attention to Blood in the Machines' article:

Torching the Google car: Why the growing revolt against big tech just escalated



DuckDuckGo browser gets end-to-end encrypted sync feature

CNN reports:

US cracks down on hacking network with thousands of customers

Amazee has a case study:

A Large Credential Stuffing Attack - How We Respond and Mitigate

If you use cloud hosting for a decoupled and composable Drupal site, you should check out Amazee.

The Verge reports:

Microsoft and OpenAI say hackers are using ChatGPT to improve cyberattacks

DarkReading reports:

Like Seat Belts and Airbags, 2FA Must Be Mandatory ASAP

It's sad that it's coming to this. Right?


The Fediverse Report has:

Last Week in Fediverse – ep 55

A new flavor of Matrix is out:

What is Commune?

Bix Dot Blog opines:

ActivityPub Is To The IndieWeb As A.I. Is To Silicon Valley?


Maho Pacheco shares:

A Guide to Implementing ActivityPub in a Static Site (or Any Website) - Part 3

Great stuff.

TechCrunch reports:

Social networks are getting stingy with their data, leaving third-party developers in the lurch

Serving the Fediverse not enshits is the way for entrepreneurial developers to go.

Speaking of which here's my rant about the latest Mastodon bruhaha:

This Bluesky - Mastodon bridge shit

The Fediverse is not 100% free of Silicon Valley tech bros either. So, FYI for said bros, 3rd party opt-out = invasive. You are making me opt out of something I never fucking asked for. Opt-in = privacy-oriented. If I like your product I will choose to use it. That's what's pissing people off in this bridge fiasco. The privacy concerns are slightly overblown.

Said bro walked his approach back a bit the next day after rightly getting his ass chewed off. Maybe.

This too.

Personally, I came to the Fediverse to get away from these corporate like shenanigans.” *To me it's a matter of permission, privacy, and non-corporate social media.

**To be fair the other side's view is that we want the reach of Mastodon to grow irrespective of how it gets there. The ends justify the means so to speak.

And it shouldn't be easy for you to have the level of privacy and safety you want. No default privacy for you. Nor making it hard for bullies to find you. Instead, you have to change settings, put bullshit hashtags in your profile, import block lists, host your own instance, transition into an old white man, hump a camel, etc..

With this mindset inevitably enshittification will occur with Mastodon. Later rather than sooner but still.

So, I will slowly be moving from Mastodon account to my self-hosted ActivityPub WordPress-based Fediverse account. Not immediately because ActivityPub and WordPress are a work in progress (especially interacting with 3rd party client apps). I will cross post for a while. Follow me there at via your favorite platform.

We Distribute has the growth at any cost view:

Tear Down Walls, and Build Bridges

Of course its tech bro author was a jackass in it and had to apologize the next day on Mastodon.

They do better with news than opinion:

Bonfire Offers Framework for Next-Gen Fediverse Platforms

Speaking of Bluesky, Paul Frazee has some details on its federation:

Why RichText facets in Bluesky

Note that Bluesky itself doesn't give a fuck about any kind of bridge. Or anyone on the Fediverse. And that's fine.

Which is why the headline of this from TechCrunch is horseshit:

Bluesky and Mastodon users are having a fight that could shape the next generation of social media

I will end on a positive note. At least it does show that the bridge author is learning from his ill-considered project and trying to mitigate the damage it might cause.

CTAs (aka show us some free love)

Do you own or work for an organization that would be interested in our promotion opportunities? Or supporting our journalistic efforts? If so, please get in touch with us. We’re in our toddler stage, so it’s extra economical. 😉

More importantly, if you are a Ukrainian company with coding-related products, we can offer free promotion on our Support Ukraine page. Or, if you know of one, get in touch.

You can find a vast array of curated evergreen content on our [communiqués page](( 


Reuben Walker headshot

Reuben Walker

Symfony Station

Top comments (0)