Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Commit 1820276

Browse filesBrowse files
javiereguiluzjaviereguiluz
committed
Merge branch '6.2' into 6.3
* 6.2: [Security] Add caution on symfony cli web server exposing env vars on private network
2 parents 5e68797 + 7d0baf6 commit 1820276
Copy full SHA for 1820276

File tree

Expand file treeCollapse file tree

1 file changed

+6
-0
lines changed
Filter options
Expand file treeCollapse file tree

1 file changed

+6
-0
lines changed

‎setup/symfony_server.rst

Copy file name to clipboardExpand all lines: setup/symfony_server.rst
+6Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -500,6 +500,12 @@ its location, same as for ``docker-compose``:
500500
``symfony console doctrine:database:drop --force --env=test``, the command will drop the database
501501
defined in your Docker configuration and not the "test" one.
502502

503+
.. caution::
504+
505+
Similar to other web servers, this tool automatically exposes all environment
506+
variables available in the CLI context. Ensure that this local server is not
507+
accessible on your local network without consent to avoid security issues.
508+
503509
Platform.sh Integration
504510
-----------------------
505511

0 commit comments

Comments
0 (0)
Morty Proxy This is a proxified and sanitized view of the page, visit original site.