shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

266
active users

#laravel

1 post1 participant0 posts today
Stephen Rees-Carter :laravel:<p>This is your periodic reminder to ensure bcrypt rounds is set to 12 (or higher)!</p><p>Laravel's default was increased from 10 to 12 2 years ago, so if you're working on an older codebase, make sure you've updated `bcrypt.rounds`.</p><p><a href="https://securinglaravel.com/security-tip-increase-your-bcrypt/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securinglaravel.com/security-t</span><span class="invisible">ip-increase-your-bcrypt/</span></a> <a href="https://phpc.social/tags/Laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Laravel</span></a></p>
Stephen Rees-Carter :laravel:<p>It may be tempting to compare keys/sensitive strings using `===`, or even `==`, but that opens you up to timing attacks! </p><p>You should be using a timing attack safe string comparison function like hash_equals()!</p><p><a href="https://securinglaravel.com/security-tip-compare-keys-with-hash_equals/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securinglaravel.com/security-t</span><span class="invisible">ip-compare-keys-with-hash_equals/</span></a> <a href="https://phpc.social/tags/Laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Laravel</span></a></p>
Simon :laravel:<p>The NativePHP team has been really busy! 💪🏼</p><p>NativePHP for Mobile now supports:</p><p>- 📍 Geolocation<br>- 💦 Custom Splash Screens<br>- 🔐 Secure Storage<br>- 🎞️ Media Library Access</p><p>And lots more</p><p>v1.1 is 🔥</p><p>Go check out all the details:<br><a href="https://nativephp.com/blog/mobile-v1-1-is-here" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">nativephp.com/blog/mobile-v1-1</span><span class="invisible">-is-here</span></a></p><p><a href="https://phpc.social/tags/PHP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PHP</span></a> <a href="https://phpc.social/tags/Laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Laravel</span></a> <a href="https://phpc.social/tags/iOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iOS</span></a> <a href="https://phpc.social/tags/Android" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Android</span></a></p>
Ben Ramsey<p><span class="h-card" translate="no"><a href="https://social.vivaldi.net/@michabbb" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>michabbb</span></a></span> This doesn’t seem to be so much a problem with Laravel as it is a problem with people who commit their secrets to public repositories.</p><p><a href="https://phpc.social/tags/PHP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PHP</span></a> <a href="https://phpc.social/tags/Laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Laravel</span></a></p>
michabbb<p><a href="https://social.vivaldi.net/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> Alert: Massive <a href="https://social.vivaldi.net/tags/Laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Laravel</span></a> APP_KEY leak exposing 600+ apps to remote code execution 🚨 <a href="https://social.vivaldi.net/tags/GitGuardian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitGuardian</span></a> &amp; <a href="https://social.vivaldi.net/tags/Synacktiv" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Synacktiv</span></a> research reveals 260,000 exposed keys on <a href="https://social.vivaldi.net/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> with potential RCE via deserialization attacks <a href="https://social.vivaldi.net/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.vivaldi.net/tags/php" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>php</span></a> <a href="https://social.vivaldi.net/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a></p><p><a href="https://blog.gitguardian.com/exploiting-public-app_key-leaks/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.gitguardian.com/exploitin</span><span class="invisible">g-public-app_key-leaks/</span></a></p>
Erin Dalzell (He/Him) 🇨🇦<p>This is exactly what I was afraid of when <a href="https://cosocial.ca/tags/laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>laravel</span></a> took VC money.<br><a href="https://hachyderm.io/@j3j5/114784445289560905" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hachyderm.io/@j3j5/11478444528</span><span class="invisible">9560905</span></a></p>

It's official, the venue is locked, which means it's time to sell tickets, just in time for EOFY in AU too! 🎉

Come along for a fun morning learning how to be a hacker, the day before Laracon AU on Wed 12th Nov! 😈

There are limited tickets, so sign up today: events.humanitix.com/lets-hack #LaraconAU #Laravel

events.humanitix.com"Let's Hack!" Pre-Laracon Security WorkshopAttending Laracon AU? Come along to "Let's Hack!" the day before, for a fun and interactive Laravel Security Workshop by Stephen Rees-Carter!

#PHPverse is not a celebration of the PHP community, it's a carefully branded sales pitch.

The lack of racial, gender, and technological diversity makes it clear: this isn’t a community event, it’s a marketing funnel, dominated by J******s staff and L*****l affiliates, disguised as one.

A real community event should reflect the full spectrum of voices and tools that make PHP what it is, not just what sells licenses and subscriptions.

#introduction

I make websites. Sometimes I toot about it.
#eleventy #webc #php #statamic #laravel #tailwindcss #alpinejs uhhh whatever #sql and I guess #nginx #docker and all that crap all the way down. #fullstack

I play RPGs with friends. Sometimes I toot about it.
#ttrpg #dnd #pathfinder #5e #pf2e

I am my group's sysadmin. Sometimes I toot about it.
#selfhosted #plex #lemmy #mastodon #pihole and throw some darts at selfh.st and you catch the rest.

Hot takes, bad jokes, etc.

selfh.stselfh.st - Self-hosted content and software
More from selfh.st (Self-Host)

The PHP community's resident API curmudgeon, @Philsturgeon, has a new post on setting up HTTP caching with Laravel Vapor.

"It's worth the work, because it cuts down on costs, and even helps reduce the carbon impact of your software, so it's basically rude not to turn it on."

apisyouwonthate.com/blog/http-

APIs You Won't Hate · HTTP Caching APIs with Laravel and VaporStop wasting server(less) resources answering the same questions over and over again, by enabling CloudFront for your Laravel REST/HTTP API.