August Event - PHP Thames Valley/Berkshire/Oxford - 3x Speakers and Networking

Hey PHP'ers👋

Next Event Is up...

‼️NOTE: PHP Berkshire/Thames Valley/Oxfordshire events are moving to Eventbrite, please RSVP via HERE

From 6:00pm - Arrival @ Zerodegrees

6:45pm - Talk from Craig Francis on "Ending Injection Vulnerabilities"

About Craig:
I've been a PHP developer for over 25 years, focusing on Accessibility, Performance, and Security - areas I believe should be core concerns for every developer; but programming languages and frameworks should provide safer defaults by design. I helped create the first production websites to implement a Content Security Policy (CSP), Trusted Types, and SameSite cookies; which involved feedback, testing, and bug reporting to the Google Chrome and Firefox teams. I'm also a Co-Lead of the OWASP Bristol Chapter.

About the Talk:
Injection Vulnerabilities continue to rank high on both OWASP Top 10 and CWE Top 25. Contrary to popular belief, database abstractions like Doctrine, and templating engines like Twig, do not inherently prevent SQL Injection or Cross-Site Scripting (XSS). This often leads to a false sense of security - especially in complex codebases or when junior developers (or AI tools) are involved.Fortunately, there's a simple and effective technique to catch these issues early: “distinguishing strings from a trusted developer, from strings that may be attacker controlled” (Mike Samuel, March 2019; and Christoph Kern, September 2014). This talk shows how the `literal-string` type can be used, with static analysis tools like PHPStan and Psalm, to prevent Injection Vulnerabilities.
Followed by Q+A
7:15pm - Break

7:25pm - Talk by Oliver Davies: Details TBC

7:55pm - Break

8:00pm - Talk by Andy Burgess: Databases before the internet
Probably most of us are familiar with using SQL for our databases, but how was it done in the past - before the Internet?

Andy will show you some examples of how SQL databases were used in Microsoft FoxPro. Some of it will be familiar and some will not!"

8:30pm - Finish and networking continued

📢 Become a Speaker! 📢
Have something to say? We want to listen! We are always looking for new speakers who want to share their adventures with PHP. Please contact joseph@humand.co.uk

This event is organised + sponsored by Humand Talent.

Humand Talent.

‼️NOTE: PHP Berkshire events are moving to Eventbrite, please RSVP via this link‼️