symfony

Archived

forked from https://github.com/symfony/symfony

This repository has been archived on 2023-08-20. You can view files and clone it, but cannot push or open issues or pull requests.

Go to file

Fabien Potencier df210194e0 minor #32100 Update ajax security cheat sheet link (steef) This PR was merged into the 3.4 branch. Discussion ---------- Update ajax security cheat sheet link \| Q \| A \| ------------- \| --- \| Branch? \| 3.4 <!-- see below --> \| Bug fix? \| yes \| New feature? \| no \| BC breaks? \| no \| Deprecations? \| no \| Tests pass? \| yes \| License \| MIT # Description After looking in the `JsonResponse` class I found an old OWASP [link](https://www.owasp.org/index.php/AJAX_Security_Cheat_Sheet#Always_return_JSON_with_an_Object_on_the_outside). As the cheat sheet series project is moved to GitHub the link can be updated to the [following](https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/AJAX_Security_Cheat_Sheet.md). ## Screenshot <img width="552" alt="Screenshot 2019-06-19 at 16 52 19" src="https://user-images.githubusercontent.com/34915382/59776184-a7e2bf80-92b2-11e9-8d23-802acfddfb1d.png"> Commits ------- `32d02d6141` Update ajax security cheat sheet link		2019-06-19 17:25:42 +02:00
.composer	Drop hirak/prestissimo	2016-05-12 07:44:15 -05:00
.github	minor #31583 [github] define 4.4 as the feature branch (nicolas-grekas)	2019-05-30 16:13:52 +02:00
src/Symfony	minor #32100 Update ajax security cheat sheet link (steef)	2019-06-19 17:25:42 +02:00
.appveyor.yml	Skip testing the phpunit-bridge on not-master branches when $deps is empty	2019-04-12 17:12:49 +02:00
.editorconfig	Update .editorconfig	2018-09-06 16:22:56 +02:00
.gitignore	Add appveyor.yml for C.I. on Windows	2015-08-25 23:41:37 +02:00
.php_cs.dist	fixed CS	2019-06-13 12:34:15 +02:00
.travis.yml	[travis] increase concurrency	2019-06-07 19:50:04 +02:00
CHANGELOG-3.0.md	Merge branch '2.8' into 3.1	2016-08-05 10:37:39 +02:00
CHANGELOG-3.1.md	updated CHANGELOG for 3.1.9	2017-01-12 12:43:31 -08:00
CHANGELOG-3.2.md	use behavior instead of behaviour	2019-03-25 08:48:46 +01:00
CHANGELOG-3.3.md	use behavior instead of behaviour	2019-03-25 08:48:46 +01:00
CHANGELOG-3.4.md	updated CHANGELOG for 3.4.28	2019-05-28 11:23:44 +02:00
CODE_OF_CONDUCT.md	Added the Code of Conduct file	2018-10-10 03:13:30 -07:00
composer.json	Use the apply tag instead of the filter tag	2019-04-27 20:55:44 +02:00
CONTRIBUTING.md	Mention the community review guide	2016-12-18 22:02:35 +01:00
CONTRIBUTORS.md	update CONTRIBUTORS for 3.4.28	2019-05-28 11:24:36 +02:00
LICENSE	update year in license files	2019-01-01 14:45:19 +01:00
link	Use the current working dir as default first arg in 'link' binary	2019-05-16 11:52:39 +02:00
phpunit	[HttpFoundation] fix tests	2019-04-19 15:43:39 +02:00
phpunit.xml.dist	Merge branch '2.8' into 3.4	2018-11-11 20:48:54 +01:00
README.md	Merge branch '2.8' into 3.4	2018-05-25 16:50:57 +02:00
UPGRADE-3.0.md	use behavior instead of behaviour	2019-03-25 08:48:46 +01:00
UPGRADE-3.1.md	[Serializer] Remove AbstractObjectNormalizer::isAttributeToNormalize	2016-12-08 16:02:32 +01:00
UPGRADE-3.2.md	Merge branch '2.8' into 3.4	2018-02-22 13:28:57 +01:00
UPGRADE-3.3.md	Merge branch '3.3' into 3.4	2017-11-30 15:59:23 +01:00
UPGRADE-3.4.md	Merge branch '2.8' into 3.4	2018-05-31 12:13:22 +02:00
UPGRADE-4.0.md	minor: ChoiceType callable deprecation after/before seems wrong	2019-04-26 08:22:35 +02:00

README.md

Symfony is a PHP framework for web applications and a set of reusable PHP components. Symfony is used by thousands of web applications (including BlaBlaCar.com and Spotify.com) and most of the popular PHP projects (including Drupal and Magento).

Installation

Install Symfony with Composer (see requirements details).
Symfony follows the semantic versioning strictly, publishes "Long Term Support" (LTS) versions and has a release process that is predictable and business-friendly.

Documentation

Read the Getting Started guide if you are new to Symfony.
Try the Symfony Demo application to learn Symfony in practice.
Master Symfony with the Guides and Tutorials, the Components docs and the Best Practices reference.

Community

Join the Symfony Community and meet other members at the Symfony events.
Get Symfony support on Stack Overflow, Slack, IRC, etc.
Follow us on GitHub, Twitter and Facebook.
Read our Code of Conduct and meet the CARE Team

Contributing

Symfony is an Open Source, community-driven project with thousands of contributors. Join them contributing code or contributing documentation.

Security Issues

If you discover a security vulnerability within Symfony, please follow our disclosure procedure.

About Us

Symfony development is sponsored by SensioLabs, led by the Symfony Core Team and supported by Symfony contributors.