The Symfony Core Team put a lot of effort into making the Framework and the Components safe and trustable.

But not everything is under the maintainer's control; when building an application, we have to take care of using the libraries correctly, upgrading the dependencies, and, of course, not introducing security issues by ourselves.

In this talk, we will see several cases of security issues, what are their
impacts and especially how to fix them.

We also take time to define an "upgrade" policy to ensure that your application is not running a disclosed vulnerability.