Clik here to view.
Workshops polls for SymfonyLive New York and SymfonyCon Madrid
In order to help us organize the workshops you really want to attend at SymfonyLive New York and SymfonyCon Madrid, we need your opinion. We’ve thus started two different polls, one for SymfonyLive New...
View ArticleClik here to view.
A week of symfony #395 (21->27 July 2014)
This week Symfony increased its development activity significantly. The most important change was the introduction of SSI support. In addition, a memory leak was fixed in ValidatorBuilder and object...
View ArticleClik here to view.
Symfony Community Bundles Survey
Symfony is all about bundles. As a matter of fact, there are nearly2,500 public bundles available thanks to the extensive work of the Symfony community, including the ever popular, FOSUserBundle,...
View ArticleClik here to view.
JsTranslationBundle Security Release
Andreas Forsblom reported two potential security issues on JsTranslationBundle: a path traversal attack and a code remote injection.Indeed, the locales parameter was not validated and thus it was...
View ArticleClik here to view.
A week of symfony #396 (28 July -> 3 August 2014)
This week the Validator component fixed string conversion in constraint violations, DomCrawler improved filterXPath() support for ancestors and siblings and DependencyInjection fixed a self-reference...
View ArticleClik here to view.
Push it to the limits - Symfony2 for High Performance needs
This Case Study is a guest post written by Antoni Orfin, Co-Founder and Software Architect at Octivi. Want your company featured on the official Symfony blog? Send us a proposal or case study to...
View ArticleClik here to view.
Extended maintenance for Symfony 2.4
Symfony 2.4 end of maintenance was reached at the end of July. But as migrating to Symfony 2.5 proved to be difficult because of some bugs, we decided to extend the maintenance until September 2014....
View ArticleClik here to view.
Symfony 2.5.3 released
Symfony 2.5.3 has just been released. It fixes a lot of issues regarding the backward compatibility of the Validator component. That should ease the migration from 2.4. If you find any other problems...
View ArticleClik here to view.
The 30 Most Useful Symfony Bundles (and making them even better)
Last week we published a survey asking you to list the most useful community bundles for your day-to-day work. We received over 300 replies and more than 330 different bundles received at least one...
View ArticleClik here to view.
Expanding the DX Initiative: Hack Day #2 (Aug 23rd)
tl;dr We've having a hack day on Aug 23rd, we're expanding the DX initiative to include the 30 most useful bundles and we need your help to make Symfony 2.6 incredible!In June, I talked about making...
View ArticleClik here to view.
A week of symfony #397 (04->10 August 2014)
This week Symfony project decided to extend the maintenance of Symfony 2.4 for two additional months and released the 2.5.3 maintenance version. In addition, the list of the 30 most useful Symfony...
View ArticleClik here to view.
Pre-conference workshops at SymfonyLive New York and SymfonyCon Madrid are...
About 3 weeks ago, we launched 2 different polls to ask you what workshops you wanted to attend before SymfonyLive New York and SymfonyCon Madrid. First, we want to thank all the people who...
View ArticleClik here to view.
A week of symfony #398 (11->17 August 2014)
This week, Symfony added a useful isCsrfTokenValid() method to the base controller class and moved debug commands to debug namespace to be more consistent. And next week the second DX Hackday will...
View ArticleClik here to view.
Promoting Symfony: One step at a time
One of the best things about Open Source is the community of users around it. Here at the Symfony project, we are proud to have an extensive user community comprised of so many special people. In this...
View ArticleClik here to view.
A week of symfony #399 (18->24 August 2014)
This week, Symfony organized its second DX Hackday. This time developers focused not only on the Symfony core but also on the 30 mot useful bundles. Meanwhile, a new simpler option validation was...
View ArticleClik here to view.
New in Symfony 2.6: The security:check command
Contributed by Fabien Potencier in #149.Symfony 2.6 is going to be one of our most polished releases ever. As part of the DX initiative we are tweaking and simplifying each and every part of the...
View ArticleClik here to view.
A week of symfony #400 (25->31 August 2014)
This week, A Week of Symfony achieves an incredible milestone: its 400th issue! That means that we've been publishing a weekly digest for almost eight years, without missing a single week. I'd like to...
View ArticleClik here to view.
CVE-2014-5244: Denial of service with a malicious HTTP Host header
Affected Versions¶All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpFoundation component are affected by this security issue.This issue has been fixed in Symfony 2.3.19,...
View ArticleClik here to view.
CVE-2014-5245: Direct access of ESI URLs behind a trusted proxy
Affected Versions¶All 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpKernel component are affected by this security issue. Your application is vulnerable only if the ESI feature is enabled...
View ArticleClik here to view.
CVE-2014-6072: CSRF vulnerability in the Web Profiler
Affected Versions¶All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony WebProfiler bundle are affected by this security issue.This issue has been fixed in Symfony 2.3.19, 2.4.9, and...
View Article