galvao (@galvao@phpc.social)
Hint: When using something like vlucas/phpdotenv, which populates a superglobal, there's no need of attribution, you can just isolate the return of createX and chain methods.
Intead of:
$env = Dotenv::createImmutable($yourPath);
$env->load(); // $_ENV becomes populated
You can do:
(Dotenv::createImmutable($yourPath))->load(); // $_ENV becomes populated
**#php** **#phpdotenv** **#env** **#dotenv**
Show Original Post
mmramadan496 (@mmramadan496@phpc.social)
It might be a bit late, but I’ve released a new version of **Easy Model** that supports @laravelphp 13. 😅
This update also includes a redesigned logo and some structural improvements. 🎉
🔗 https://github.com/mahmoudmohamedramadan/easy-model
#tech #webdev #php #laravel #sql #database
Show Original Post
ghostwriter (@ghostwriter@phpc.social)
Supply chain attack affecting Intercom has expanded beyond #npm and into the #PHP ecosystem.
`intercom/intercom-php@5.0.2`
https://github.com/intercom/intercom-php/security/advisories/GHSA-gr3r-crp5-qrrm
https://github.com/intercom/intercom-node/security/advisories/GHSA-54pg-9963-v8vg
https://www.intercomstatus.com/us-hosting/incidents/01KQFN6VS6ARP1XBR1K1SBYY59
https://www.wiz.io/blog/mini-shai-hulud-supply-chain-sap-npm
https://socket.dev/blog/mini-shai-hulud-packagist-malicious-intercom-php-package-compromise
#PHP #ComposerPHP #Composer #Intercom #SupplyChain #SupplyChainAttack #MiniShaiHulud
Show Original Post
blog (@blog@deployer.org)
Problems with escapeshellarg
https://deployer.org/blog/quote-vs-escapeshellarg
Show Original Post
mmramadan496 (@mmramadan496@phpc.social)
It might be a bit late, but I’ve released a new version of **Easy Model** with support for @laravelphp 13. 😅
This update also includes a redesigned logo and some structural improvements. 🎉
🔗 https://github.com/mahmoudmohamedramadan/easy-model
#tech #webdev #php #laravel #sql #database
Show Original Post
baptouuuu (@baptouuuu@phpc.social)
Next major version of #php innmind/black-box is looking fine
Feels great to delete so much code 😌 and there’s still to go
Show Original Post
jclermont (@jclermont@phpc.social)
In today's video, I show off PHPStorm's built-in HTTP client and why you might not need that separate desktop app anymore. #php #laravel https://masteringlaravel.io/daily/2026-05-01-video-running-http-requests-right-inside-your-editor
Show Original Post
makewpfast (@makewpfast@mastodon.social)
wp-config.php has performance settings most developers never touch:
define("WP_POST_REVISIONS", 5);
define("AUTOSAVE_INTERVAL", 300);
define("WP_MEMORY_LIMIT", "256M");
define("DISABLE_WP_CRON", true);
Every WordPress site should tune these.
https://makewpfast.com/the-complete-wp-config-php-performance-tuning-guide/
#WordPress #DevOps #PHP #WebDev
Show Original Post
getlaminas (@getlaminas@phpc.social)
Released: laminas/laminas-ldap 2.20.0
#php #laminas
https://github.com/laminas/laminas-ldap/releases/tag/2.20.0
Show Original Post
freekmurze (@freekmurze@phpc.social)
🔗 RBAC in Laravel: A Practical Deep Dive
https://wendelladriel.com/blog/rbac-in-laravel-a-practical-deep-dive
#php #security #laravel #authorization #rbac
Show Original Post
lobsters (@lobsters@mastodon.social)
cPanel & WHM Authentication Bypass (CVE-2026-41940) https://lobste.rs/s/m8t9px #php #security
https://labs.watchtowr.com/the-internet-is-falling-down-falling-down-falling-down-cpanel-whm-authentication-bypass-cve-2026-41940/
Show Original Post
ramsey (@ramsey@phpc.social)
I wrote a little bit about my journey to update the PHP License to the Modified BSD License (BSD-3-Clause).
https://ben.ramsey.dev/blog/2026/05/the-php-license-simplified
Show Original Post