Talk in English - UK at PHP UK Conference
Track Name:
Porter Tun
Short URL: https://joind.in/talk/0aaa2
(QR-Code (opens in new window))
Everyone has heard of supply chains at this point, but what exactly does that mean for a PHP project? Learn more about software supply chains, how Composer, packagist.org and Private Packagist come into it and which role PHP dependencies play. This talk will present concrete steps you can take to identify your dependencies and give advice on measures you can put in place to better manage and protect how your application is assembled.
Comments
Please login to leave a comment
Really nice summary of supply chain problems and what you can do about them
A wealth of examples that really made me think about our use of dependencies. I'll be doing some research into wpackagist as a result, which we use for WordPress projects, to see if it follows the same model as packagist in storing metadata but not code.