Security Articles and Tutorials


How to Use Docker Secrets in PHP Apps
April 8, 2025

How to Use Docker Secrets in PHP Apps

Docker Secrets are a good way to start storing sensitive data that your PHP apps need in an organised and structured way. You don’t need to use environment variables, and you continue avoiding them being stored in code. In this tutorial, I’ll show you how to use them, and consider some of their pros and cons.

How Do You Use CSRF Tokens in a Mezzio Application?
April 2, 2021

How Do You Use CSRF Tokens in a Mezzio Application?

No matter how small your web app may be, security is essential! In this tutorial, you’ll learn how to add a CSRF token in forms used in Mezzio-based applications, to prevent attackers from being able to force your users to execute malicious actions.

Becoming a Security-Focused Software Engineer
April 9, 2017

Becoming a Security-Focused Software Engineer

There comes a time in your life when you have to look yourself in the eye and decide that you’re going to stand for something in your career, that you’re going to make it mean something. Today, I’ve made that choice!