Fake Laravel Packages Spread RAT Malware
Read More: buff.ly/gOmOIpX

#LaravelSecurity #Packagist #SupplyChainAttack #RATmalware #PHPsecurity #OpenSourceRisk #DeveloperSecurity #InfosecAlert

⚠️ Fake #Laravel packages on #Packagist deploy a cross-platform #RAT on Windows, macOS & Linux — researchers at Socket flagged 3 malicious #PHP packages disguised as Laravel utilities #cybersecurity #supplychain #opensource #infosec


📦 Malicious packages identified:

🧵 👇

I finally solved my Composer hanging/stuck issue 🚀
Set up a local proxy server and routed downloads using PHP stream functions.

Added real-time debugging with log files to trace where it was freezing.

Result: smooth installs, zero guesswork 😌

#PHP #composer #packagist #proxy

Release v7.2.0 · freshworkx/typo3-image-gallery This release is a feature release. It supports site sets and introduces PSR-14 events for extensibility. In addition more unit and functional tests have been provided. See full change log for furth...

Version 7.2.0 of #bm_image_gallery is released. Available at #ter and #packagist.

You can find the changelog in the docs or at github.com/freshworkx/t....

Have fun with site sets and PSR-14 events. Happy updating! #TYPO3 #gallery #extension

snoop dogg is wearing a suit and tie and smoking a cigarette in a crowd of people . ALT: snoop dogg is wearing a suit and tie and smoking a cigarette in a crowd of people .

Version 2.6.0 of #content_animations is available at #TER & #Packagist and comes with full #TYPO3 v13 LTS, CSP and Content Blocks support ✨Have fun with animating 📷 #bootstrap #animations #ter #extension

bit.ly/2HAueYw

Looking pretty savvy to have your own mirrors for @docker @npmjs #Gems, #Packagist and other dependencies, given the impact of this AWS outage. Running these mirrors is easy, ask me how.

packagist (@packagist@phpc.social) 🚨 Warning to PHP package maintainers: We did not email you to change your passwords & 2FA. Emails asking you to update your credentials are a phishing attempt. We had the phishing site & domain…

🎣 #PHP #Packagist maintainers being targeted by phishing attack. Contained for now, no signals of wide-ranging compromise. Great job by Packagist working with service providers to terminate the campaign. #ApplicationSecurity #SupplyChainSecurity buff.ly/OEyF84V

The image is a screenshot from the Packagist website, displaying a list of Statamic add-ons published by the user. Each package entry includes the name, description, programming language (PHP), number of downloads, and star ratings. The layout follows Packagist's standard design, with package names in bold orange text, followed by descriptions in black text. Download counts and star ratings appear on the right side. Some packages include descriptions, while others do not.

My packages on #packagist just reached 10k+ downloads 🎉 Feels good to have built something that seems to be actually useful to some people ☺️

#php #composer #laravel #statamic

Original post on indieweb.social

Does anybody have experience with developing and hosting #PHP #Composer packages on @Codeberg and then distributing them through #Packagist?

I was able to set up a Packagist webhook on #Codeberg but am wondering if there's any best practices or pitfalls to be aware of. Most packages are on […]

A plea to all package developers. Please, when you write the document use both a light and a dark theme. Some of us cannot physically read a dark theme for more than a minute. #Lavarel #composer #package #packagist #LaravelNews

Tip by @damienalexandre: watch for the bus-factor if you choose your bundles for your next project #packagist #symfonycon #berlin