#phpc — Public Fediverse posts

Friends of The PHP Foundation! If you are considering attending PHP TEK but haven't registered yet, the kind folks at PHP Architect have afforded us a discount that we are permitted to share with you: https://ti.to/phptek/phptek-2026/discount/foundation
Several Foundation members will be attending, so come say hello! #php #phpc

UPDATE: GitHub has rolled back their change to GitHub Actions tokens. It is no longer necessary to immediately disable GitHub Actions. We now have a few days to get the entire PHP ecosystem updated to safe Composer versions, before a new rollout of the new token format is attempted. GitHub is also looking into improving their secrets masking. Ideally a new rollout will not lead to any leaked credentials, even if they are accidentally exposed in logs. #php #composerphp #phpc

UPDATE: GitHub has rolled back their change to GitHub Actions tokens. It is no longer necessary to immediately disable GitHub Actions. We now have a few days to get the entire PHP ecosystem updated to safe Composer versions, before a new rollout of the new token format is attempted. GitHub is also looking into improving their secrets masking. Ideally a new rollout will not lead to any leaked credentials, even if they are accidentally exposed in logs. #php #composerphp #phpc

UPDATE: GitHub has rolled back their change to GitHub Actions tokens. It is no longer necessary to immediately disable GitHub Actions. We now have a few days to get the entire PHP ecosystem updated to safe Composer versions, before a new rollout of the new token format is attempted. GitHub is also looking into improving their secrets masking. Ideally a new rollout will not lead to any leaked credentials, even if they are accidentally exposed in logs. #php #composerphp #phpc

UPDATE: GitHub has rolled back their change to GitHub Actions tokens. It is no longer necessary to immediately disable GitHub Actions. We now have a few days to get the entire PHP ecosystem updated to safe Composer versions, before a new rollout of the new token format is attempted. GitHub is also looking into improving their secrets masking. Ideally a new rollout will not lead to any leaked credentials, even if they are accidentally exposed in logs. #php #composerphp #phpc

UPDATE: GitHub has rolled back their change to GitHub Actions tokens. It is no longer necessary to immediately disable GitHub Actions. We now have a few days to get the entire PHP ecosystem updated to safe Composer versions, before a new rollout of the new token format is attempted. GitHub is also looking into improving their secrets masking. Ideally a new rollout will not lead to any leaked credentials, even if they are accidentally exposed in logs. #php #composerphp #phpc

RE: https://social.lfx.dev/@openssf/116527089393674087

Open infrastructure isn't free. 🌱

Packagist/Composer signed a joint
OpenSSF letter with PyPI, crates, Maven, CPAN, etc on real cost of running package registries.

Packagist needs to finance staff, not just hardware and bandwidth. Contact me if your company's interested in joining our sponsorship program for its launch this month while we work on long term solutions.

#php #phpc #composerphp #softwaresupplychain #PreserveOpenSource #FreeSoftwareIsntFree #OpenSource #Sustainability

RE: https://social.lfx.dev/@openssf/116527089393674087

Open infrastructure isn't free. 🌱

Packagist/Composer signed a joint
OpenSSF letter with PyPI, crates, Maven, CPAN, etc on real cost of running package registries.

Packagist needs to finance staff, not just hardware and bandwidth. Contact me if your company's interested in joining our sponsorship program for its launch this month while we work on long term solutions.

#php #phpc #composerphp #softwaresupplychain #PreserveOpenSource #FreeSoftwareIsntFree #OpenSource #Sustainability

RE: https://social.lfx.dev/@openssf/116527089393674087

Open infrastructure isn't free. 🌱

Packagist/Composer signed a joint
OpenSSF letter with PyPI, crates, Maven, CPAN, etc on real cost of running package registries.

Packagist needs to finance staff, not just hardware and bandwidth. Contact me if your company's interested in joining our sponsorship program for its launch this month while we work on long term solutions.

#php #phpc #composerphp #softwaresupplychain #PreserveOpenSource #FreeSoftwareIsntFree #OpenSource #Sustainability

RE: https://social.lfx.dev/@openssf/116527089393674087

Open infrastructure isn't free. 🌱

Packagist/Composer signed a joint
OpenSSF letter with PyPI, crates, Maven, CPAN, etc on real cost of running package registries.

Packagist needs to finance staff, not just hardware and bandwidth. Contact me if your company's interested in joining our sponsorship program for its launch this month while we work on long term solutions.

#php #phpc #composerphp #softwaresupplychain #PreserveOpenSource #FreeSoftwareIsntFree #OpenSource #Sustainability

RE: https://social.lfx.dev/@openssf/116527089393674087

Open infrastructure isn't free. 🌱

Packagist/Composer signed a joint
OpenSSF letter with PyPI, crates, Maven, CPAN, etc on real cost of running package registries.

Packagist needs to finance staff, not just hardware and bandwidth. Contact me if your company's interested in joining our sponsorship program for its launch this month while we work on long term solutions.

#php #phpc #composerphp #softwaresupplychain #PreserveOpenSource #FreeSoftwareIsntFree #OpenSource #Sustainability

🚨 Composer 2.9.6 and 2.2.27 are out with fixes for CVE-2026-40261 and CVE-2026-40176, both command injection issues in the Perforce driver. Run composer self-update now. No exploitation detected on Packagist.org and Private Packagist. Details on our blog: https://blog.packagist.com/composer-2-9-6-perforce-driver-command-injection-vulnerabilities/ #php #phpc #composerphp

🚨 Composer 2.9.6 and 2.2.27 are out with fixes for CVE-2026-40261 and CVE-2026-40176, both command injection issues in the Perforce driver. Run composer self-update now. No exploitation detected on Packagist.org and Private Packagist. Details on our blog: https://blog.packagist.com/composer-2-9-6-perforce-driver-command-injection-vulnerabilities/ #php #phpc #composerphp

🚨 Composer 2.9.6 and 2.2.27 are out with fixes for CVE-2026-40261 and CVE-2026-40176, both command injection issues in the Perforce driver. Run composer self-update now. No exploitation detected on Packagist.org and Private Packagist. Details on our blog: https://blog.packagist.com/composer-2-9-6-perforce-driver-command-injection-vulnerabilities/ #php #phpc #composerphp

🚨 Composer 2.9.6 and 2.2.27 are out with fixes for CVE-2026-40261 and CVE-2026-40176, both command injection issues in the Perforce driver. Run composer self-update now. No exploitation detected on Packagist.org and Private Packagist. Details on our blog: https://blog.packagist.com/composer-2-9-6-perforce-driver-command-injection-vulnerabilities/ #php #phpc #composerphp

🚨 Composer 2.9.6 and 2.2.27 are out with fixes for CVE-2026-40261 and CVE-2026-40176, both command injection issues in the Perforce driver. Run composer self-update now. No exploitation detected on Packagist.org and Private Packagist. Details on our blog: https://blog.packagist.com/composer-2-9-6-perforce-driver-command-injection-vulnerabilities/ #php #phpc #composerphp

Private Packagist is a member of the @opensourcepledge & gave over $4k/FTE in 2025 to #opensource maintainers. Have your company join too! https://blog.packagist.com/private-packagist-2025-contributions-for-the-open-source-pledge/ - Reach out if you want to be a launch partner for our Composer&Packagist.org sponsorship program! #composerphp #php #phpc

Private Packagist is a member of the @opensourcepledge & gave over $4k/FTE in 2025 to #opensource maintainers. Have your company join too! https://blog.packagist.com/private-packagist-2025-contributions-for-the-open-source-pledge/ - Reach out if you want to be a launch partner for our Composer&Packagist.org sponsorship program! #composerphp #php #phpc

The newest episode of the #communityCornerPodcast is out for your viewing/listening pleasure. We talk to Nia Luckey about her keynote at #phptek/#jstek this year and the book she's writing on the "Trust Protocol."

https://www.phparch.com/podcast/community-corner-podcast-the-trust-protocol-with-nia-luckey/

#phpc #podcast #security

A new episode of #communityCornerPodcast is out! We talk to Lilah Jones about the Activated Leader, how it can help navigate change, and her keynote at #phptek 2026. https://www.phparch.com/podcast/community-corner-the-activated-leader-with-lilah-jones/ #phpc #phptek #podcast

New #blog today. I'm VERY excited to announce that I'm speaking at #phptek again in 2026 and there are some really amazing speakers lined up (several of whom I've interviewed on the #communityCornerPodcast). Check out what I'm speaking about below.

#phpc #softwareengineering #devops #ai

https://scott.keck-warren.com/blog/2025/im-speaking-at-phptek-2026/

Meet me at #DrupalCampBerlin today to chat about #composerphp, Private Packagist, supply chain security, funding open source and PHP dev workflows! Would love to learn more about how you keep your projects up to date! I got Composer stickers too!

#phpc #drupal #drupalcamp

The videos from our last meetup have now been posted

* Clean Coding
* Laravel Herd
* Laravel Filament

Watch Here:
https://www.youtube.com/playlist?list=PLURld0tszKg3hCWE046GemH-lnwtP4GF8

#phpc #usergroups #php #coding #cleancoding #filament #laravel #herd

The videos from our last meetup have now been posted

* Clean Coding
* Laravel Herd
* Laravel Filament

Watch Here:
https://www.youtube.com/playlist?list=PLURld0tszKg3hCWE046GemH-lnwtP4GF8

#phpc #usergroups #php #coding #cleancoding #filament #laravel #herd

The videos from our last meetup have now been posted

* Clean Coding
* Laravel Herd
* Laravel Filament

Watch Here:
https://www.youtube.com/playlist?list=PLURld0tszKg3hCWE046GemH-lnwtP4GF8

#phpc #usergroups #php #coding #cleancoding #filament #laravel #herd

The videos from our last meetup have now been posted

* Clean Coding
* Laravel Herd
* Laravel Filament

Watch Here:
https://www.youtube.com/playlist?list=PLURld0tszKg3hCWE046GemH-lnwtP4GF8

#phpc #usergroups #php #coding #cleancoding #filament #laravel #herd

Only 2 days to go until PHPBelfast

Register for free at
https://www.meetup.com/phpbelfast/events/298567478/

Topics will cover:-
- Clean Coding
- Laravel Herd
- Laravel Filament

#phpc #usergroups #php #laravel

Only 2 days to go until PHPBelfast

Register for free at
https://www.meetup.com/phpbelfast/events/298567478/

Topics will cover:-
- Clean Coding
- Laravel Herd
- Laravel Filament

#phpc #usergroups #php #laravel

Only 2 days to go until PHPBelfast

Register for free at
https://www.meetup.com/phpbelfast/events/298567478/

Topics will cover:-
- Clean Coding
- Laravel Herd
- Laravel Filament

#phpc #usergroups #php #laravel

Only 2 days to go until PHPBelfast

Register for free at
https://www.meetup.com/phpbelfast/events/298567478/

Topics will cover:-
- Clean Coding
- Laravel Herd
- Laravel Filament

#phpc #usergroups #php #laravel

You can (and should) sign up now, for the first @phpbelfast meetup of 2024.

Get together, share knowledge, learn & hangout with like-minded people who know what *you* are talking about.

https://www.meetup.com/phpbelfast/events/298567478/

#phpc #phpug #community #usergroups #meetup #laravel #symfony #wordpress #php

You can (and should) sign up now, for the first @phpbelfast meetup of 2024.

Get together, share knowledge, learn & hangout with like-minded people who know what *you* are talking about.

https://www.meetup.com/phpbelfast/events/298567478/

#phpc #phpug #community #usergroups #meetup #laravel #symfony #wordpress #php

Dear #PHP community, we want to ask you for help: please spread the info that #PHPCSFixer is here! 🙏

We're going to share helpful information in the future, but what even the best toot would be without the audience? 😉

#phpc #symfony #laravel #codingstandards