This content originally appeared on DEV Community and was authored by Reuben Walker, Jr.
—
Welcome to this week’s Symfony Station communiqué. It’s your review of the essential news in the Symfony and PHP development communities focusing on protecting democracy.
There’s good content in all of our categories, so please take your time and enjoy the items most relevant and valuable to you.
This is why we publish on Fridays. So you can savor it over your weekend.
My opinions will be in bold. And will often involve cursing. Because humans. Especially tech bros. Fuck ’em!
We’re back from our short craft-beer holiday before attending DrupalCamp Asheville. Tugboat was the main sponsor, so I promised to write an article about them. Don’t let me forget. 😉
Symfony
As always, we will start with the official news from Symfony.
This week, Symfony unveiled the Symfony AI initiative, a set of components and bundles designed to bring powerful AI capabilities directly into your PHP applications. In addition, we published travel and lodging tips for the SymfonyCon Amsterdam 2025 conference.
July 7–13, 2025: A Week of Symfony #967
They also have:
Kicking off the Symfony AI Initiative
Fucking hell.
Blackfire has:
What high-performing teams do differently (and how to copy them)
SymfonyCasts has:
Featured Item
Metr is:
Measuring the Impact of Early-2025 AI on Experienced Open-Source Developer Productivity
This Week
David Duymelinck explores:
Laravel New reports on:
How Tos
LaurentMN has:
Build a Powerful Email Campaign Dashboard in Symfony (with Filters & Charts)
Token Economy: How to Create a Pay-As-You-Go API with Symfony
e-commerce
DrupalCommerce has:
Commerce Core 3.1.0 release brings checkout completion improvements
Other
Mautic has:
Official Mautic certification provider announced – Join us to shape the future!
CMSs
Sulu CMS has:
Sulu Release 2.5.26 / 2.6.10 and 3.0.0-alpha4
TYPO3 has:
Components Have Landed in Fluid
TYPO3 Prominence at e-Governance Conference in Estonia
The TYPO3 Association Has Been Authorized by the CVE Program as a CVE Numbering Authority (CNA)
Pluswerk+ shares:
Tomas Norre examines:
TYPO3 Crawler – 10 Years of contributions
Wolfgang Wagner has:
TYPO3 lernen: Warum alte Methoden dich ausbremsen
TYPO3-Business: Zwischen Perfektionismus und Realität
Drupal has:
Disruptive deprecations should now be scheduled for removal in Drupal 13.0.0
Call for Training Proposals for DrupalCon Chicago 2026
DrupalCon Vienna 2025: Join the Contribution Sprints and Make a Difference
HashBangCode reviews:
Golems looks at:
BPMN.io for ECA: visualize models in detail
Joshics shares:
Harnessing the Domain Module: A Comprehensive Guide for Drupal Site Builders and Administrators
Specbee says:
Drupal 11.2.0 is here – here’s why you should take the next step!
Max explores:
David Duymelinck examines:
Drupal: object oriented render array
TAG1 Consulting continues a series:
Tag1’s Complete Drupal 7 to 10/11 Data Migration Series : Expert Tips & Free E-Book
John Picozzi shares:
My Go-To Setup for Local Drupal Development with DDEV and Colima
ImageX Media looks at:
World Emoji Day: Fun Facts, Support in Drupal, And An Emoji-Powered Module Quiz
Tres Bien Tech has:
Drupal and PHP fun with FrankenPHP
Drupal BigPipe can now use HTMX
Joan Catala shares:
Control d’accés als continguts en Drupal: de Taxonomy Access a Content Access
Martin Anderson Clutz publishes:
Event Platform: July 2025 Updates
It was great seeing Martin in Asheville.
DrupalizeMe announces:
Changes in How We Approach Theming in Drupal
I won a free month of DrupalizeMe at Asheville DrupalCamp. If I like it, I may write a review.
Previous Weeks
DrupalizeMe aks:
Automatic Updates: Is It Right for Your Drupal Site?
DDEV publishes its:
CKEditor explores:
What’s new in CKEditor Drupal modules: Email Configuration Helper, Layout Tables, and more
PHP
This Week
Linuxiac reports:
PHP Proposes Switch to BSD-3-Clause License
Laravel News has:
PHP Fatal Error Backtraces in PHP 8.5
PHP 8.5 Introduces an INI Diff Option
The PHP Foundation explores:
PHP 8.5 Adds Pipe Operator: What it means
Native PHP announces:
Thierry Feuzeu is:
Announcing the version 5 of the Jaxon library
Garfield Tech announces:
Tideways asks:
Should You Use OPcache Preloading in Your PHP App?
Jarosław Szutkowski compares:
Static vs Non-Static Closures in PHP – A Surprising Benchmark
More Programming
Ars Technica reports:
Exhausted man defeats AI model in world coding championship
Hurrah for a modern day John Henry.
BleepingComputer reports:
North Korean XORIndex malware hidden in 67 malicious npm packages
Reason number 12,043 to avoid using JavaScript whenever possible.
DarkReading reports:
Oracle Fixes Critical Bug in Cloud Code Editor
W3 examines:
First Public Working Draft: CSS Positioned Layout Module Level 4
JoliCode looks at:
Scroll-driven animations en CSS : guide pratique pour s’affranchir du JavaScript
The Register reports:
Curl creator mulls nixing bug bounty awards to stop AI slop
OpenProject shares:
Empowering the Public Sector with OpenProject: An Open Source alternative for project management
CSS Tricks explores:
Getting Creative With Versal Letters
Fighting for Democracy
Here we feature several items from each section of Battalion’s weekly “Defending Democracy” report.
Get all the news from the front of democracy’s battle against autocracy via its latest “Defending Democracy” post. And please follow Battalion via RSS or on the Fediverse at battalion@battalion.mobileatom.net.
Please visit Symfony Stations Support Ukraine page to learn how you can help kick Russia out of Ukraine (eventually, like ending apartheid in South Africa).
The cyber response to Russia’s War Crimes, Techno Feudalism, and other douchebaggery
The Kyiv Independent reports:
EU slaps new sanctions on Russia over hybrid threats, disinformation
It’s FOSS reports:
Europe on a Roll: Plans Open Source Alternative to Confluence and Jira
The Evil Empire Strikes Back
TechPolicy reports:
The US Just Logged Off from Internet Freedom
TechCrunch reports:
Of course, Grok’s AI companions want to have sex and burn down schools
Cybersecurity and Privacy
Bleeping Computer has:
Malicious VSCode extension in Cursor IDE led to $500K crypto theft
Sounds like a win-win. Unless you’re a code stealing crypto c^nt.
DarkReading reports:
Military Veterans May Be What Cybersecurity Is Looking For
Beats being in the National Guard. 🙁
Fediverse
Connected Places has:
Steve Bate has:
ActivityPub Client API: A Way Forward
This is important, even if it’s mostly ignored.
CTAs (aka show us some free love)
- That’s it for this week. Please share this communiqué.
- Follow us on Flipboard or at @symfonystation@drupal.community on Mastodon for daily coverage.
Do you own or work for an organization that would be interested in our promotion opportunities? Or supporting our journalistic efforts? If so, please get in touch with us.
More importantly, if you are a Ukrainian company with coding-related products, we can offer free promotion on our Support Ukraine page. Or, if you know of one, get in touch.
You can find a vast array of curated evergreen content on our communiqués page.
This content originally appeared on DEV Community and was authored by Reuben Walker, Jr.