Symfony News

A Week of Symfony #764 (16-22 August 2021)

This week, Symfony announced the end of the Swiftmailer project in favor of the Symfony Mailer project. Meanwhile, the bundles doc section introduced a redesign that will be used in the future in the entire Symfony docs section.

Symfony development highlights

This week, 39 pull requests were merged (37 in code and 2 in docs) and 26 issues were closed (21 in code and 5 in docs). Excluding merges, 13 authors made 4,664 additions and 1,967 deletions. See details for code and docs.

4.4 changelog:

  • c2172c2: [Security] don't produce TypeErrors for non-string CSRF tokens
  • 83357b1: [HttpKernel] fix SplFileInfo mock in HttpKernelBrowserTest
  • 6ccc63f: [ExpressionLanguage] remove PHP 8.0 polyfill
  • b8ac437: update Turkish translation
  • 0f7ea2c: update Danish translation

5.3 changelog:

  • fd0dc96: [Security] fix wrong cache directive when using the new PUBLIC_ACCESS attribute
  • 75ace35: [Mime] ignore X-Transport header while signing email with DKIM

5.4 changelog:

  • 7f63fff: [Security] deprecate built-in authentication entry points
  • d1a2d21: [Security] deprecate legacy remember me services
  • b1115f9: [Form] fix return types in form builder
  • c91322d: cleanup more @return annotations
  • fd0dc96: [Security] fix wrong cache directive when using the new PUBLIC_ACCESS attribute
  • f1643e8: fix incompatibilities with upcoming security 6.0
  • 682b76f: add missing return types to tests/internal/final methods
  • edecf96: [Validator] add support of nested attributes
  • 4822448: [Security] fix AbstractAuthenticator::createToken() BC layer
  • 2fb15cd: [Console] deprecate HelperSet::setCommand() and getCommand()
  • 695a83b: [Security] make TokenInterface::getUser() nullable to tell about unauthenticated tokens
  • a42062d: [DependencyInjection] add service_closure() to the PHP-DSL
  • bf8ecc4: [Mailer] consume a PSR-14 event dispatcher

6.0 changelog:

  • 2aebc94: add more return types
  • 61cf95e: [Security] remove everything related to the deprecated authentication manager
  • b7a1ca9: cleanup legacy authentication manager system leftovers
  • 9abadf3: [Form] remove deprecated code from FormErrorIterator
  • dfccd79: [Security] make AuthenticationTrustResolverInterface::isAuthenticated() non-virtual
  • 695a83b: [Security] make TokenInterface::getUser() nullable to tell about unauthenticated tokens
  • c9dc567: [Security] fix restrictive return annotation

Newest issues and pull requests

They talked about us

Call to Action


Sponsor the Symfony project.


About us

What a Symfony developer should know about the framework: News, Jobs, Tweets, Events, Videos,...

Find us on Twitter

Find us on Facebook

ADS