Spotting the weak points in your PHP projects. Are your dependencies the chink in your armor?


Comments are closed.

I believe this was a last-minute addition to the schedule and Thomas did well regardless. The introductory slide of security tips and best practices felt a bit compressed and could be stretched out a bit (instead of a single slide/list). The security survey figures were interesting, as were the anecdotes.

Given the coverage of Composer, I think you should definitely add some examples of its best practices, such as keeping composer.lock in version control and using version limits (e.g. ~1.0) to avoid unpredictable updates to unstable or BC-breaking versions.

Had mixed feelings leading into it; but they were gone after slide 1. Well presented, and compelling data!

I agree with Christopher & Jeremy - interesting data, good advice, liked the tooling aspect; great delivery!