Nils Adermann
@naderman.de
Co-Founder of @packagist.com / http://packagist.com and
Co-Creator of #composerphp - he/him - @[email protected]
Co-Creator of #composerphp - he/him - @[email protected]
Reposted by Nils Adermann
In Amsterdam next week and part of a group underrepresented at tech confs, or can't afford a ticket? Private Packagist is sponsoring #SymfonyCon (Nov 27th/28th) and we have a ticket to give away: Reply your favorite PHP8.5 feature to win #php #phpc #symfony @symfony.com
November 21, 2025 at 9:52 PM
In Amsterdam next week and part of a group underrepresented at tech confs, or can't afford a ticket? Private Packagist is sponsoring #SymfonyCon (Nov 27th/28th) and we have a ticket to give away: Reply your favorite PHP8.5 feature to win #php #phpc #symfony @symfony.com
Really fun to play with Nano Banana Pro and have it visualize things. Here's the good old cube rule of food 😁
November 21, 2025 at 8:37 AM
Really fun to play with Nano Banana Pro and have it visualize things. Here's the good old cube rule of food 😁
Great, @github.com giving open source maintainers wrong tax advice 🤦 docs.github.com/en/sponsors/... "In the EU and most other countries and regions, [...] B2B sales are not subject to tax."
Tax information for GitHub Sponsors - GitHub Docs
Sponsored developers and organizations must submit tax information to GitHub and are responsible for evaluating and paying their own taxes.
docs.github.com
November 20, 2025 at 11:39 AM
Great, @github.com giving open source maintainers wrong tax advice 🤦 docs.github.com/en/sponsors/... "In the EU and most other countries and regions, [...] B2B sales are not subject to tax."
Reposted by Nils Adermann
New in Private Packagist: Usage Tracking can now help prioritize security updates by showing how deps cascade through projects and where vulnerable versions are used. Trusted Publishing for GitHub Actions and better synchronization setup. blog.packagist.com/whats-new-in... #php #phpc #composerphp
What’s New in Private Packagist, November Update
We've shipped several important updates to Private Packagist over the past three months, including more insights on the package usage tracking page, the introduction of Trusted Publishing for secure a...
blog.packagist.com
November 18, 2025 at 9:35 AM
New in Private Packagist: Usage Tracking can now help prioritize security updates by showing how deps cascade through projects and where vulnerable versions are used. Trusted Publishing for GitHub Actions and better synchronization setup. blog.packagist.com/whats-new-in... #php #phpc #composerphp
Reposted by Nils Adermann
After Composer 2.9 CLI security improvements, we're working on a transparency log for Packagist to strengthen PHP supply chain security, funded by the @sovereign.tech with help of the @thephpf.bsky.social and Private Packagist. Details at blog.packagist.com/strengthenin... #php #phpc #composerphp
Strengthening PHP Supply Chain Security with a Transparency Log for Packagist.org
The release of Composer 2.9 this week introduced new security features on the Composer CLI client, which were funded by Private Packagist through service subscriptions. But in parallel, we are working...
blog.packagist.com
November 14, 2025 at 3:35 PM
After Composer 2.9 CLI security improvements, we're working on a transparency log for Packagist to strengthen PHP supply chain security, funded by the @sovereign.tech with help of the @thephpf.bsky.social and Private Packagist. Details at blog.packagist.com/strengthenin... #php #phpc #composerphp
Reposted by Nils Adermann
Composer 2.9 is here! 🚀 It automatically blocks packages with known vulnerabilities, has a new repository command to manage repos from the CLI, and lots more!
blog.packagist.com/composer-2-9/
#composerphp #phpc #PHP
blog.packagist.com/composer-2-9/
#composerphp #phpc #PHP
Composer 2.9 Release
We are pleased to announce the release of Composer 2.9.0, bringing improvements to security, repository management from the CLI, and lots more.
Automatic Security Blocking
Composer now automaticall...
blog.packagist.com
November 13, 2025 at 10:22 AM
Composer 2.9 is here! 🚀 It automatically blocks packages with known vulnerabilities, has a new repository command to manage repos from the CLI, and lots more!
blog.packagist.com/composer-2-9/
#composerphp #phpc #PHP
blog.packagist.com/composer-2-9/
#composerphp #phpc #PHP
Reposted by Nils Adermann
The PHP Foundation is Seeking a New Executive Director! 🐘💜
We're asking the PHP community to help find the right person for this role. If you know someone who would be an excellent fit, please encourage them to apply or reach out to us directly.
thephp.foundation/blog/2025/11... #phpc #php
We're asking the PHP community to help find the right person for this role. If you know someone who would be an excellent fit, please encourage them to apply or reach out to us directly.
thephp.foundation/blog/2025/11... #phpc #php
The PHP Foundation is Seeking a New Executive Director
The PHP Foundation — Supporting, Advancing, and Developing the PHP Language
thephp.foundation
November 10, 2025 at 3:03 PM
The PHP Foundation is Seeking a New Executive Director! 🐘💜
We're asking the PHP community to help find the right person for this role. If you know someone who would be an excellent fit, please encourage them to apply or reach out to us directly.
thephp.foundation/blog/2025/11... #phpc #php
We're asking the PHP community to help find the right person for this role. If you know someone who would be an excellent fit, please encourage them to apply or reach out to us directly.
thephp.foundation/blog/2025/11... #phpc #php
Reposted by Nils Adermann
Composer 2.9 is coming, and there's an RC to try out! We need your help and feedback github.com/composer/com... #composerphp #phpc
Release 2.9.0-RC1 · composer/composer
Composer 2.9 is ready for a release, and we need your help to test it and report any regression.
Please try it out!
Running composer self-update --preview will get you the 2.9.0-RC1
Running compos...
github.com
November 7, 2025 at 3:40 PM
Composer 2.9 is coming, and there's an RC to try out! We need your help and feedback github.com/composer/com... #composerphp #phpc
Reposted by Nils Adermann
Was richtig im #Stadtbild stört ist die echt beschissene Sozial- und Verkekerspolitik der Union.
October 15, 2025 at 11:15 AM
Was richtig im #Stadtbild stört ist die echt beschissene Sozial- und Verkekerspolitik der Union.
Reposted by Nils Adermann
📣 Here’s one for FOSS maintainers based in the EU 🌍
@sovereign.tech is currently accepting proposals from communities that want to enhance their resilience with:
🧱 contributions
🐛 bug bounties
🔍 code audits
Requirements & application: www.sovereign.tech/programs/bug...
Good luck, everyone!
@sovereign.tech is currently accepting proposals from communities that want to enhance their resilience with:
🧱 contributions
🐛 bug bounties
🔍 code audits
Requirements & application: www.sovereign.tech/programs/bug...
Good luck, everyone!
Sovereign Tech Resilience | Sovereign Tech Agency
www.sovereign.tech
September 30, 2025 at 8:58 AM
📣 Here’s one for FOSS maintainers based in the EU 🌍
@sovereign.tech is currently accepting proposals from communities that want to enhance their resilience with:
🧱 contributions
🐛 bug bounties
🔍 code audits
Requirements & application: www.sovereign.tech/programs/bug...
Good luck, everyone!
@sovereign.tech is currently accepting proposals from communities that want to enhance their resilience with:
🧱 contributions
🐛 bug bounties
🔍 code audits
Requirements & application: www.sovereign.tech/programs/bug...
Good luck, everyone!
Reposted by Nils Adermann
Together with PyPI, Maven Central, cratesio and other major package registries we signed a statement on sustainable open source infrastructure.
3B+ installs/month and evolving #composerphp and packagist.org requires sharing the costs.
#phpc #php
3B+ installs/month and evolving #composerphp and packagist.org requires sharing the costs.
#phpc #php
Registries like PyPI, Maven Central & crates.io power the ecosystem.
They can’t run on goodwill alone.
OpenSSF endorses the Joint Statement on Sustainable Stewardship.
👉 openssf.org/blog/2025/09...
#PreserveOpenSource
They can’t run on goodwill alone.
OpenSSF endorses the Joint Statement on Sustainable Stewardship.
👉 openssf.org/blog/2025/09...
#PreserveOpenSource
September 23, 2025 at 1:42 PM
Together with PyPI, Maven Central, cratesio and other major package registries we signed a statement on sustainable open source infrastructure.
3B+ installs/month and evolving #composerphp and packagist.org requires sharing the costs.
#phpc #php
3B+ installs/month and evolving #composerphp and packagist.org requires sharing the costs.
#phpc #php
Reposted by Nils Adermann
Registries like PyPI, Maven Central & crates.io power the ecosystem.
They can’t run on goodwill alone.
OpenSSF endorses the Joint Statement on Sustainable Stewardship.
👉 openssf.org/blog/2025/09...
#PreserveOpenSource
They can’t run on goodwill alone.
OpenSSF endorses the Joint Statement on Sustainable Stewardship.
👉 openssf.org/blog/2025/09...
#PreserveOpenSource
September 23, 2025 at 10:16 AM
Registries like PyPI, Maven Central & crates.io power the ecosystem.
They can’t run on goodwill alone.
OpenSSF endorses the Joint Statement on Sustainable Stewardship.
👉 openssf.org/blog/2025/09...
#PreserveOpenSource
They can’t run on goodwill alone.
OpenSSF endorses the Joint Statement on Sustainable Stewardship.
👉 openssf.org/blog/2025/09...
#PreserveOpenSource
Reposted by Nils Adermann
🚨 Warning to #PHP package maintainers: We did not email you to change your passwords & 2FA. Emails asking you to update your credentials are a phishing attempt. We had the phishing site & domain taken down. If you got the email and entered your credentials, please contact us. #phpc
September 20, 2025 at 3:32 PM
Reposted by Nils Adermann
Someone on the AWS billing team is stupid like a fox.
September 19, 2025 at 9:31 PM
Someone on the AWS billing team is stupid like a fox.
Reposted by Nils Adermann
Homebrew Project Leader, maintainer for 16 years, Ruby lover 👋. I having calls with both sides and trying to help reach a mutually acceptable solution. If you'd like to join one of these calls or chat 1:1: gimme an email from /about on my website. If not (I'd 100% understand) thanks for your work <3
September 19, 2025 at 11:00 AM
Homebrew Project Leader, maintainer for 16 years, Ruby lover 👋. I having calls with both sides and trying to help reach a mutually acceptable solution. If you'd like to join one of these calls or chat 1:1: gimme an email from /about on my website. If not (I'd 100% understand) thanks for your work <3
🚨 PSA for #PHP package maintainers: DO NOT REPLACE tags! If you messed up a release simply do another. No matter how quickly you notice a mistake, automatic tools already pulled the original tag, triggered automatic updates. Users will never know you recreated the tag and use the broken state. #phpc
September 19, 2025 at 9:04 AM
🚨 PSA for #PHP package maintainers: DO NOT REPLACE tags! If you messed up a release simply do another. No matter how quickly you notice a mistake, automatic tools already pulled the original tag, triggered automatic updates. Users will never know you recreated the tag and use the broken state. #phpc
Reposted by Nils Adermann
Wishing a very happy birthday to @naderman.de at #APIPlatformCon! What a perfect place to celebrate 🎂
September 18, 2025 at 11:57 AM
Wishing a very happy birthday to @naderman.de at #APIPlatformCon! What a perfect place to celebrate 🎂
Had a great time presenting Composer Best Practices for 2025 at #APIPlatformCon in Lille this morning. Meet me at our booth, I'd love to hear all about how you work with #composerphp! #php #phpc #supplychainsecurity #symfony #apiplatform
September 18, 2025 at 1:32 PM
Had a great time presenting Composer Best Practices for 2025 at #APIPlatformCon in Lille this morning. Meet me at our booth, I'd love to hear all about how you work with #composerphp! #php #phpc #supplychainsecurity #symfony #apiplatform
Thinking once more it can't be a coincidence that Point of Sale and Piece of Shit use the same abbreviation 🙄
September 9, 2025 at 9:30 AM
Thinking once more it can't be a coincidence that Point of Sale and Piece of Shit use the same abbreviation 🙄
Reposted by Nils Adermann
Would you like to attend #APIPlatformCon 2025 in Lille on Sep 18/19 or online? Private Packagist is sponsoring: 4 tickets to give away! Part of a group underrepresented at tech conferences, or can't afford a ticket? Repost and reply favorite PHP package(s) #php #composerphp #phpc
September 3, 2025 at 9:12 AM
Would you like to attend #APIPlatformCon 2025 in Lille on Sep 18/19 or online? Private Packagist is sponsoring: 4 tickets to give away! Part of a group underrepresented at tech conferences, or can't afford a ticket? Repost and reply favorite PHP package(s) #php #composerphp #phpc
Reposted by Nils Adermann
The era of Composer v1 finally comes to an end, long live Composer v2! 👑 Today packagist.org support for v1 metadata has been shut down as announced last year. blog.packagist.com/packagist-or... #composerphp #phpc #php
Packagist
The PHP Package Repository
packagist.org
September 1, 2025 at 8:28 AM
The era of Composer v1 finally comes to an end, long live Composer v2! 👑 Today packagist.org support for v1 metadata has been shut down as announced last year. blog.packagist.com/packagist-or... #composerphp #phpc #php
Reposted by Nils Adermann
August update: dependency usage tracking across your packages, automatic GitLab token rotation, and Conductor improvements with custom labels and smarter PR handling blog.packagist.com/whats-new-in... #php #composer #composerphp #phpc
What’s New in Private Packagist, August Update
We've been busy improving Private Packagist over the past few months with a focus on package discovery, user experience improvements, and improved security monitoring tools. Here are the most signific...
blog.packagist.com
September 1, 2025 at 8:19 AM
August update: dependency usage tracking across your packages, automatic GitLab token rotation, and Conductor improvements with custom labels and smarter PR handling blog.packagist.com/whats-new-in... #php #composer #composerphp #phpc
Reposted by Nils Adermann
🙌 Remembering Ryan Weaver: Teacher, Core Team Member, Friend
➡️ https://symfony.com/blog/remembering-ryan-weaver-teacher-core-team-member-friend
➡️ https://symfony.com/blog/remembering-ryan-weaver-teacher-core-team-member-friend
August 28, 2025 at 5:43 PM
🙌 Remembering Ryan Weaver: Teacher, Core Team Member, Friend
➡️ https://symfony.com/blog/remembering-ryan-weaver-teacher-core-team-member-friend
➡️ https://symfony.com/blog/remembering-ryan-weaver-teacher-core-team-member-friend
Arrived in Denver for #Laracon - look forward to meeting everyone at our @packagist.com booth! Would love to talk to everyone about how you use Composer, handle updates and apply security patches, or anything else relating to dependency management! #laraconus #laravel #phpc
July 28, 2025 at 9:44 PM
Arrived in Denver for #Laracon - look forward to meeting everyone at our @packagist.com booth! Would love to talk to everyone about how you use Composer, handle updates and apply security patches, or anything else relating to dependency management! #laraconus #laravel #phpc
Reposted by Nils Adermann
🚀 Kicking off the Symfony AI Initiative
➡️ https://symfony.com/blog/kicking-off-the-symfony-ai-initiative
➡️ https://symfony.com/blog/kicking-off-the-symfony-ai-initiative
July 11, 2025 at 11:43 AM
🚀 Kicking off the Symfony AI Initiative
➡️ https://symfony.com/blog/kicking-off-the-symfony-ai-initiative
➡️ https://symfony.com/blog/kicking-off-the-symfony-ai-initiative