Symfony 6.0.0-RC1 has just been released. Here is a list of the most important changes: security #cve-2021-41268 [SecurityBundle] Default signature_properties to the previous behavior (@wouterj) security #cve-2021-41267 [HttpKernel] Fix missing extra trusted header in sub-request (@jderusse) security #cve-2021-41270 [Serializer] Use single quote to escape formulas (@jderusse) bug #44230 [Console] Add Suggestion class for more advanced completion suggestion (@wouterj) bug #44232 [Cache] fix connecting to local Redis sockets (@nicolas-grekas) bug #44204 [HttpClient] fix closing curl multi handle when destructing client (@nicolas-grekas) bug #44208 [Process] exclude argv/argc from possible default env vars (@nicolas-grekas) bug #44188 [VarExporter] fix exporting declared but unset properties when __sleep() is implemented (@nicolas-grekas) bug #44176 [Console] Default ansi option to null (@jderusse) bug #44179 [WebProfilerBundle] Fix JS error when toolbar is reloaded (@jderusse) bug #44177 [SecurityBundle] Remove Guard (@derrabus) bug #44172 [Security] Guard is incompatible with Symfony 6 (@derrabus) bug #44119 [HttpClient][Mime] Add correct IDN flags for IDNA2008 compliance (@j-bernard) bug #44139 [WebProfilerBundle] Prevent installation of incompatible mailer component versions (@Anne-Julia Seitz) bug #43917 Allow autodetecting mapping type for any object (@franmomu) bug #44130 [SecurityBundle] Remove outdated conditions based on authenticatorManagerEnabled (@chalasr) bug #44131 [Yaml] properly parse quoted strings tagged with !!str (@xabbuh) bug #42323 [TwigBridge] do not merge label classes into expanded choice labels (@xabbuh) Want to upgrade to this new release? Because Symfony protects backwards-compatibility very closely, this should be quite easy. Use SymfonyInsight upgrade reports to detect the code you will need to change in your project and read our upgrade documentation to learn more. Want to be notified whenever a new Symfony release is published? Or when a version is not maintained anymore? Or only when a security issue is fixed? Consider subscribing to the Symfony Roadmap Notifications.
Sponsor the Symfony project.https://symfony.com/blog/symfony-6-0-0-rc1-released?utm_source=Symfony%20Blog%20Feed&utm_medium=feed
Accedi per aggiungere un commento
Altri post in questo gruppo
Affected versions
Symfony UX symfony/ux-live-component and symfony/ux-twig-component versions <2.25.1 are affected by this security issue.
The issue has been fixed in the 2.25.1 version of these
Symfony has been reducing the need for configuration in applications for several years now. Thanks to PHP attributes, you can now configure most things alongside the relevant code, removing the need f
This week, development activity focused on polishing Symfony 7.3 ahead of its final release in two weeks. We also continued publishing articles highlighting the new features of Symfony 7.3 and shared
SymfonyOnline June 2025 is almost here, starting in a few weeks on:
June 10-11: Workshop days. June 12-13: Online conference days in English. All talks will be available for replay as soon as
Symfony 7.3 introduces several enhancements to the DependencyInjection component that simplify service configuration, make autoconfiguration more flexible, and enable environment-specific aliasing.
S
Contributed by Nicolas Grekas in
SymfonyOnline June 2025 is almost here, starting in almost 2 months on:
June 10-11: Workshop days. It is possible to attend 1 two-day training or 2 one-day trainings. June 12-13: Online confe
