markus staab | @[email protected] @markusstaab
open-source lover, creator of staabm/phpstan-dba, extensive freetime @phpstan, @rectorphp and #phpunit contributor #sabredav, #amphp, #redaxo staabm.github.io germany Joined December 2011-
Tweets10K
-
Followers882
-
Following140
-
Likes9K
@maks_rafalko @infection_php Yes, we have one based on Hoa\Regex in phpstan-src I described a few use-cases on staabm.github.io/2024/07/05/arr…
working on more precise #phpstan types, based on regex AST - lets make use of the new decimal-int-string type.
Type juggling has been exploited in real #PHP authentication bypasses. Here's the classic: if ($userInput == $storedHash) { // login success } If $storedHash starts with "0e" followed by digits (like "0e462097"), PHP treats it as scientific notation: 0 * 10^462097 = 0. An attacker just needs to find an input whose MD5 also starts with "0e" + digits. Both sides evaluate to 0. 0 == 0 is true. Known "magic hashes": - MD5("240610708") = 0e462097... - MD5("QNKCDZO") = 0e830400... - SHA1("aaroZmOk") = 0e00000... Fix: use === everywhere. Or better: hash_equals() for timing-safe comparison. Never == for security checks.
You might remember #PHPStan supports array-shapes for $matches in preg_match*() since ~June 2024. RegEx AST based inference implemented before AI was even a thing. Today I realized that we can re-use the existing RegEx inference for $subject :-). phpstan.org/r/8b12686a-f8c…
@alexdaubois since I recently added PHPStan rules to enforce use of #[SensitiveParameter] you might just give me a idea for a new opinionated rule to check whether such secrets are compared using hash_equals()
Composer 2.10 is out. Native malware filtering via @AikidoSecurity, enabled by default on @packagist. Plus a unified config.policy framework, deprecated source fallback, and wildcards in --with. #php #phpc #composerphp
PHPStan 2.2: Unsealed Array Shapes, Safer Array Keys, and More! phpstan.org/blog/phpstan-2…
Today we published our Impact and Transparency Report for 2025. We are incredibly grateful for our sponsors, partners, contractors, and individual financial contributors for without them, none of our work would be possible. 💙 🐘thephp.foundation/blog/2026/05/2… #php #opensource
Goodbye PHPStan 2.1.x 👋 It's been nice 18 months. github.com/phpstan/phpsta… Now onto PHPStan 2.2.0. It's coming on Thursday.
Togehter with @OndrejMirtes I will be at #neoscon to see what this awesome community has built over the years. see you there
1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.
If you haven't updated Composer to 2.9.8 or 2.2.28 (LTS), do so urgently! GitHub will restart the rollout of their new GitHub Actions tokens later today. They've improved secret masking to cover this Composer issue, but you're safer if you update. #composerphp #php #phpc
🚨 Security advisory: Composer 2.9.8 and 2.2.28 are out and fix a vulnerability leaking GitHub Actions new format GITHUB_TOKENs into job logs via error messages. Update now (composer self-update) or disable affected Actions workflows. #composerphp #phpc #php
In case you are using global userland constants in PHP and you configured their types in the @phpstan configuration, starting with todays release we will error about invalid values in define() or const definitions (bleeding edge only). phpstan.org/config-referen…
New release: PHPStan 2.1.55 github.com/phpstan/phpsta… #phpstan
Infection 0.33.0 has been released. - Testo test framework support (by @roxblnfk) - Allow using the full width of the terminal for console output Enjoy!
Do you use Infection with AI-generated code/tests? If so, what is the workflow / skills / prompts? Is there anything we need to improve here to make it more useful?
GitHub Copilot is moving to usage-based billing 💸 "Starting June 1, 2026, Copilot usage will be measured in AI Credits (AICs) instead of Premium Requests (PRUs). 1 AIC = $0.01." copilot-billing-preview.github.com
In case you missed it 👀 @OndrejMirtes delivered an excellent session on “Crafting Custom PHPStan Rules” at PHP UK 2026. Learn how to write custom PHPStan rules to enforce project standards, catch domain-specific bugs, and automate repetitive code review tasks. Watch the full talk below ⬇️ youtu.be/r6oc4Ctor4c?si…
@GromNaN The rule is smart enought to not error in tests
Had a idea for a new opinionated #phpstan rule, which should help to detect hardcoded secrets in the codebase.
Ondřej Mirtes @OndrejMirtes
9K Followers 514 Following Creating @phpstan by day and night. 👨🏻💻👨👩👦👦🎮🚴♂️
@[email protected]... @Ocramius
19K Followers 1K Following I don't check this account anymore: find me at https://t.co/qmMI0oKcN2 instead.
Marcel Pociot 🧪 @marcelpociot
70K Followers 942 Following Building @getpolyscope, https://t.co/JvEOgCzGsT, https://t.co/HbdEOhayav, https://t.co/vuTdNhzpMW, and more. Follow my product dev journey. CTO at @beyondcode
Andreas Möller @localheinz
2K Followers 412 Following I own a computer. • Software Engineer and Consultant • From legacy to modern PHP • https://t.co/c2XIkYGkba • @ergebnis
Jordi Boggiano @seldaek
19K Followers 809 Following Co-Founder of @packagist / #ComposerPHP – Head of Engineering at @TeamupCalendar @seld.be on bsky
Matthias Noback @matt... @matthiasnoback
10K Followers 1K Following Software developer, code gardener, regular speaker, blogger, book author, and workshop host. @[email protected]
Lars Moelleken @suckup_de
3K Followers 5K Following Developer & Sysadmin | egrep '#php|#js|#html|#css|#linux'
Oskar Stark @OskarStark
1K Followers 636 Following @Symfony core member, @Sonataproject core member, PHP developer, Managing Director @SensioLabs Germany
Abdul Malik Ikhsan @samsonasik
839 Followers 343 Following Husband. Father of 2 awesome sons. PHP developer. Open Source Contributor. I am doing very fast fix 🚀, sponsor me 💖 https://t.co/Ga90oXfeyE
Greg Korba 🛠️�... @_Codito_
1K Followers 369 Following 🇵🇱 https://t.co/HerX32NWvo 🇬🇧 https://t.co/m6h4mNhOBh | Self-educated specialist: PHP, CI/CD, QA automation, Docker, Gitlab and more 😎. Member of @PHPCSFixer team 🪶.
Cees-Jan Kiewiet 🦣... @WyriHaximus
3K Followers 1K Following Maintains @WyriMaps, @ReactPHP, a couple dozen asynchronous #PHP packages, and destroyer of servers. Tweets are my own.
Romain Canon @Rommsteinz
338 Followers 157 Following 🐘 PHP developer Mastodon • https://t.co/evEgAuX29f Bsky • https://t.co/LWaqfFdvcg
Andreas 'Ando 🦆' F... @icanhazstring
350 Followers 177 Following Find me on https://t.co/NGaNLoZ86w Author of composer-unused. Head of Software Development @Finanztip
Paul Dragoonis @dr4goonis
5K Followers 3K Following 🏴 Principal Engineer / CTO | Open Source Leader | Public Speaker | I'm part of @official_php, @phpfig, @dagger_io, @jenkinsci, @CDeliveryFdn
Andrew Schmelyun @aschmelyun
15K Followers 2K Following Software engineer with too many ideas and poor impulse control. Sometimes I make videos.
Alexander Schranz @alex_s_
772 Followers 279 Following Core Team Member of @sulu. Working currently on SEAL the #php search engine abstraction layer https://t.co/vHW4P4xzX5
Arkadiusz Kondas @ArkadiuszKondas
1K Followers 465 Following Software Engineer (@LendableUK), Pragmatic Programmer, Event Stormer, Event Modeler, Clean Coder, Blogger, Ultrarunner, Homebrewer
Roman Pronskiy @pronskiy
4K Followers 825 Following Head of @PhpStorm @JetBrains, Board Member at @ThePHPF, ex-Executive Director.
Abbeymaniak | PHP Wor... @abbeymanic
287 Followers 2K Following Fullstack PHP/Laravel & WordPress dev focused on clean code, performance & real-world impact.I build scalable apps & headless WP. Open to remote gigs 🚀 👩💻🎮
Hen 🍵 @de_henne
2K Followers 807 Following https://t.co/ecW1NznJeM / https://t.co/mtRusSKBQH / https://t.co/GCcXqR5jXY / https://t.co/pCCVUtY505 / https://t.co/OSkfJhqr51 / https://t.co/gcuDf3GGdM / https://t.co/xKmeboLYXl / https://t.co/KHViYXZoll
Rashyy @rashyy30496
1 Followers 492 Following
Samer Sacic 🛸 @samer_sacic
44 Followers 572 Following Nature lover 🏞️ 🌲 & web developer 💻 A fan of @laravelphp and @php
chsados @chsados
196 Followers 4K Following In my spare time I climb things, open strange doors, and go to goth clubs dressed as a frat guy so I can stand around and look terribly uncomfortable
BTC_TRUE @btc_true
77 Followers 3K Following
Artur Brasil @arturbrasil
116 Followers 1K Following DevOps professional, with Linux, Perl, Chef , AWS and more
v_vijay @tweets_vj
797 Followers 5K Following a software developer who love music, passion about technology, human relations n psychology, nature...die for creativity
Jag @jsb81
318 Followers 5K Following Machine Learning / Data Science Enthusiast. I’m not a financial advisor.
moses @moseslua
333 Followers 3K Following deep tech research | embodied agi, world models also research neurotech @ cmb & icl affiliated labs
Florian @Florian93765
282 Followers 6K Following
Paul Swenson @pdscomp
187 Followers 447 Following Systems Engineer, developer, self-hosted AI enthusiast, 3D printer hacker, musician, skier/rock climber, #doodledad! (he/him) @[email protected]
苏慧岩 @KanthrakrN78311
85 Followers 803 Following I'm a student at Shenzhen University. I'm deeply interested in biology, technology, psychology, and business, and I absolutely love every animal on Earth.
khaled | Ai @khaled_cli
45K Followers 557 Following أحاول أخلي الذكاء الاصطناعي شي مفهوم ، قابل للاستخدام، ومفيد فعليًا… مو مجرد ترند يمر علينا ونصفق له
Sanket @practicalsanket
209 Followers 5K Following Agentic AI, Local LLMs, OpenClaw, Agent Swarms and much more. Exciting times to be alive. Let’s build real stuff 🚀
Shawn McAllister @entrepeneur4lyf
953 Followers 3K Following
Aa @courtneypban
19 Followers 1K Following
Eugene Lukyantsau @sanfair_dev
0 Followers 74 Following
Thibault @Thibault_1635
39 Followers 290 Following Software developer - Coffee Addict - CEO of @htmx_org - Expert of RDD (Rubber duck debugging)
Michał Molenda @michalmolenda
163 Followers 709 Following 🧑💻 CTO/CPO, wdrażam AI, pomagam startupom budować lepsze produkty, fullstack deweloper z 16 letnim doświ
Rahim @hizawye
104 Followers 3K Following
Julian Schramm @julian_center
164 Followers 455 Following developer • oss enthusiast • musician • homebrewer
Stephen Hamilton @totovste
409 Followers 1K Following Digital problem solver. Scottish politics, Celtic, F1 and all things digital. @[email protected]
Mattia Clementi @MattiaClementi
121 Followers 928 Following Laureato in Tecnologie Web e Multimediali. Web Developer.
Joris Vaesen @jorisvaesen
6K Followers 852 Following Informaticus 👨💻 IT, Security en Privacy 🕵️ Initiatiefnemer https://t.co/15Ks207da2 🗨️ Data-expert van https://t.co/1WjfWiEdWn 📊
Madalin Tache 🇷�... @niladam
358 Followers 705 Following Laravel developer & advocate. Loves PHP. Handles full stack. Proud loving father // Bringer of joy.
Nick Kadutskyi @nickkadutskyi
70 Followers 918 Following Working on the app (https://t.co/BpUAWlYmH2) that helps Upwork freelancers to get notified about filtered jobs right after they were posted. 🇺🇸🇺🇦
Gizmo @gizzyweb
57 Followers 566 Following
Mr. Deadly 💀 @yodirkx
103 Followers 100 Following
hala Abdulmottleb @halaabdulmottlb
2 Followers 57 Following
Odinn Adalsteinsson @odinns_art
2K Followers 2K Following AI artist, space enthusiast, woodworker and all-round nerd with a good heart ❤️ and a nice set of hands 🖖🏼 | Senior Backend Engineer #laravel #PHP #worksome
Marc G @renegademtl
28 Followers 837 Following
Dmitrii Derepko @xepozz
44 Followers 114 Following #IntelliJ #IDEA plugins, #yii3 #PHP, Open source, tech articles, telegram: https://t.co/iy37UTvq3m
Julien RAVIA @JulienRAVIA
36 Followers 236 Following A L'AssaSymfony | Full stack (but mostly back-end) développer | Bukeliste
Cristian N @cristian_acn
644 Followers 2K Following Full Stack Developer - PHP & JS - Laravel & Vue js. I also read a lot of sci-fi & fantasy.
ツ sɥʞɐqo ™ @shkabo_tm
292 Followers 571 Following #technology lover, #php developer wannabe, passionate gamer, #security enthusiast, hater by default Tweeting in srb/en @[email protected]
Ane 2lanuit @Ane2lanuit
4 Followers 119 Following
Ondřej Mirtes @OndrejMirtes
9K Followers 514 Following Creating @phpstan by day and night. 👨🏻💻👨👩👦👦🎮🚴♂️
@[email protected]... @Ocramius
19K Followers 1K Following I don't check this account anymore: find me at https://t.co/qmMI0oKcN2 instead.
Tomas Votruba @VotrubaT
6K Followers 30 Following ✍️ Writing a book about final solution to legacy https://t.co/ffWET1OvFW 😎 Upgrading PHP legacy projects 🤖 Automating PHP code with @rectorphp
Matthieu Napoli @matthieunapoli
8K Followers 386 Following Building ▸ @brefphp | https://t.co/JdB7Dfmi9T ▸ https://t.co/Hsh5M2LGEE ▸ https://t.co/dvlBuoaVqO ▸ https://t.co/syDdV5HgqS AWS serverless hero
Tobias_Petry.sql @tobias_petry
25K Followers 306 Following The Database Guy. I am helping you get better with MySQL and PostgreSQL. ⚡️ https://t.co/WwHTfJFoA5 📝 https://t.co/zJpXKSTKve 🛠️ @stackbricksapp
Rector @rectorphp
4K Followers 1 Following Instant Upgrades and Instant Refactorings for PHP Applications. Why do it manually? #rectorphp Created by @votrubaT
Jordi Boggiano @seldaek
19K Followers 809 Following Co-Founder of @packagist / #ComposerPHP – Head of Engineering at @TeamupCalendar @seld.be on bsky
Lars Moelleken @suckup_de
3K Followers 5K Following Developer & Sysadmin | egrep '#php|#js|#html|#css|#linux'
Oskar Stark @OskarStark
1K Followers 636 Following @Symfony core member, @Sonataproject core member, PHP developer, Managing Director @SensioLabs Germany
Nicolas Grekas 💙�... @nicolasgrekas
11K Followers 432 Following @Symfony principal core-team member, @thephpf admin board. #PHP never dies! @ESPCI_Alumni+@HECAlumni
GitHub @github
2.7M Followers 333 Following The AI-powered developer platform to build, scale, and deliver secure software.
Symfony @symfony
45K Followers 4 Following Allows you to keep up with Symfony news, the PHP framework.
Cees-Jan Kiewiet 🦣... @WyriHaximus
3K Followers 1K Following Maintains @WyriMaps, @ReactPHP, a couple dozen asynchronous #PHP packages, and destroyer of servers. Tweets are my own.
Ryan Chandler @ryangjchandler
9K Followers 430 Following Senior Software Engineer @laravelphp working on Laravel Cloud. Building: @privato_pub, https://t.co/3iscx5v5mA
Psalm @psalmphp
3K Followers 6 Following Psalm is a type-checking static analysis tool for PHP that finds bugs humans can miss, and improves code quality. Try it at https://t.co/eBajkMPMkn
@[email protected]... @beberlei
8K Followers 2 Following Founder and performance detective at @tideways - hosting @Undercover_PHP podcast. Open-Source contributor @doctrineproject @official_php / @[email protected]
Mathias Verraes @mathiasverraes
13K Followers 304 Following Student of Systems • Consultant @Aardling_eu • Curator @ddd_eu • https://t.co/yf0uLWpBfy
François Zaninotto @francoisz
7K Followers 207 Following CEO at @marmelab, founder of react-admin & GreenFrame. #sustainability #React #Leadership #Agile #NodeJs #OSS @[email protected] @francoisz.bsky.social
Alexandre Daubois @alexdaubois
2K Followers 195 Following cto @coopTilleuls / @symfony+#frankenphp+#php core teams / creator of ember / worldwide speaker
█████ @kaja47
450 Followers 25 Following Eat the rich https://t.co/lcGbyV4qJy https://t.co/gDyzFA36ex https://t.co/cBo6Vr2jLC fediverse: @[email protected]
Jarda Hanslík @kukulich
385 Followers 484 Following
phpday | 16-17 May 20... @phpday
3K Followers 1K Following Italian #PHP conference organized by @grusp 🗓️16th & 17th May 2024 📍 Verona & Online 🎫 https://t.co/E0vX3ImPEC
Jan Nedbal @janedbal
211 Followers 78 Following 👨💻 Principal engineer at @ShipMonkDevs. 🔍 Static analysis lover. ❤️ Open sourcerer. 🎤 Speaker.
Web Awesome @webawesomer
500 Followers 3 Following Build better with Web Awesome, the open source library of web components. Upgrade to Pro and ship websites, projects, and apps faster!
Sebastian Feldmann @movetodevnull
904 Followers 156 Following Software Developer, creator of @CaptainHookPHP and @phpbude @[email protected]
Juliette (@jrf_nl@php... @jrf_nl
2K Followers 527 Following
PHPStan @phpstan
9K Followers 1 Following Find bugs in your code without writing tests! Created by @OndrejMirtes
Regular Expression @RegexTip
74K Followers 19 Following Learn to use regular expressions by following RegexTip. From @JohnDCook.
Firefox Performance @FirefoxPerf
320 Followers 46 Following Working to make Firefox and the web faster. Find us on Bluesky at @firefoxperformance.bsky.social #firefox #webperf
Akkudoktor @AkkuDoktor
19K Followers 302 Following YouTube AkkuDoktor, Wissenschaftler (math. Optimierung, KI), DIY PV&LFP, Buddhist, Dad, Klimaschützer, unser Forum https://t.co/W54LDb0sxi
Dave Liddament @DaveLiddament
732 Followers 535 Following Owner of @lampbristol. Conference speaker. Organiser of @phpsw and Bristol PHP Training meetups. Author of SARB: https://t.co/Y7fDzIUflb…
dlvr.it @dlvrit
74K Followers 643 Following Smart social media automation. Automatically schedule and post photos, updates and blogs to Twitter, Facebook, Instagram & more. For support: @dlvrit_support
@[email protected]... @shochdoerfer
2K Followers 589 Following Software developer, Conference speaker, @bitExpert co-founder, @unKonf host, @phpugffm & @phpugmrn organizer, @traefik Ambassador.
The PHP Foundation @ThePHPF
14K Followers 0 Following We support, promote, and advance the PHP language. 💜🐘 #ThePHPFoundation Donate at https://t.co/B0te9FaPEa
Super Duper Developer... @sddevclub
540 Followers 375 Following "Vielleicht der beste Podcast zur Web-Entwicklung" - Bewertet mit 5 von 5 Sternen von Nils Langner (Podcaster)
Warsteiner_gg @Warsteiner_gg
17K Followers 82 Following #REFRESHRESPAWN #bierbewusstgeniessen #dontdrinkanddrive
rajyan @rajyan_k
404 Followers 543 Following
Maxi Ferreira @charca
5K Followers 1K Following Staff Software Engineer @helpscout. Writing about frontend architecture at https://t.co/ZrV8Ig9sqp. Terrible at tennis. 🇦🇷 🇺🇸
Jarred Sumner @jarredsumner
176K Followers 642 Following building @bunjavascript at @anthropicai. formerly: @stripe (twice) @thielfellowship. high school dropout. npm i -g bun
Richard van Velzen @rvanvelzen1
21 Followers 99 Following
Kieran Brahney @KieranBrahney
60 Followers 110 Following Director at @SupportPal - PHP Developer github://bytestream
Arnaud Le Blanc @arnaud_lb
886 Followers 346 Following php-memprof, php-rdkafka, PHPStan generics @[email protected]
Brian Louis Ramirez �... @screenspan
428 Followers 412 Following Web Perf & Sustainable UX, born in California, made in Germany. Daddy. Loves music, songwriting, hiking and running. @[email protected]
nassedesign @nassedesign
3 Followers 5 Following Fotograf, Geschäftsführer von Nasse-Design KG, WJ AK-Leiter, Jam Star 2018. Meine Stärken sind natürliche Portraits, Drohnenflüge und Kugelpanoramen.
Revolt PHP @revoltphp
993 Followers 7 Following Revolt is a rock-solid event loop for concurrent PHP applications.
Manuel Schmidt @clxTrailSnail
11 Followers 37 Following
Warp @warpdotdev
56K Followers 2 Following The open-source agentic development environment, born out of the terminal. Build with agents, locally and in the cloud w/ Oz. https://t.co/DhGZnVAeOe
Internal Tech Emails @TechEmails
595K Followers 889 Following Internal tech industry emails that surface in public records. 🔍
🇺🇦 Anna Filina @afilina
10K Followers 8 Following Modernizing legacy and speaking at conferences. Open for work. Mostly active here: https://t.co/5KOV4HoCAA
Spiral Ecosystem @spiralphp
1K Followers 41 Following Sharing the news of #SpiralFramework, #RoadRunner and #CycleORM – proven open-source technologies by @SpiralScout.
Parsica - PHP Parser ... @parsica_php
165 Followers 11 Following The easiest way to build robust parsers.
Framework X @x_framework
2K Followers 4 Following Framework X – simple and fast micro framework for reactive web applications that run anywhere. Async made easy. By @another_clue and friends. #PHP #ReactPHP
Christian Lück @another_clue
3K Followers 311 Following Recently promoted dad. CTO @MakersHub_AP. Maintainer of @ReactPHP. Creator of @x_framework. Head of clue·engineering. Building better, async PHP. 🚀
Dmitry Stogov @dstogov
2K Followers 13 Following Core PHP developer, PHPNG architect, principal engineer at ZendYou might like
