Statgrab 2.0 ships modernized PHP 8.0–8.5 extension for cross-platform system statistics

Polyscope AI agent workspace manager for Laravel adds Windows support

Polyscope, an AI agent workspace manager for Laravel developers, is now available on Windows. It brings the same features as the macOS version, including parallel branch workspaces with separate .test domains, built-in checkpoints for reviewing and rolling back agent changes, a process runner for auto-starting services like queue workers and npm scripts, and a mobile UI for remote monitoring. Laravel Herd integration is included, and Linux support is planned next.

Spatie releases Scotty open-source SSH task runner compatible with Laravel Envoy

WordPress Presence API plugin adds real-time admin awareness and post-lock bridge

TinyAuth Backend 3.x brings database-backed ACL with admin UI to CakePHP 5.1+

TinyAuth Backend 3.x is a full rewrite of the CakePHP ACL plugin, bringing database-backed, UI-managed permissions to modern CakePHP 5.1+ apps. It introduces a normalized 8-table schema, an HTMX+Alpine.js+Tailwind admin panel with role-permission matrix, auto-discovery sync for controllers and resources, INI import/export, composite adapters for gradual migration, and four incremental adoption strategies (AdapterOnly, FullBackend, NativeAuth, ExternalRoles). Roles can come from any source (DB, JWT, LDAP, SSO), and the plugin integrates cleanly with cakephp/authorization's policy layer without replacing it.

Symfony Insight adds 11 new automated code analysis rules covering security and data leaks

SymfonyInsight has added 11 new automated code analysis rules, bringing the total to 141 checks. The new rules span five categories: security (detecting command injection risks, insecure random functions, unsafe usage of extract/unserialize), reliability (promoting immutable DateTime objects and strict array checks), productivity (modern PHP string functions and first-class callable syntax), data leak detection (scanning for committed secrets and credentials files), and legal (license incompatibility checks in dependencies). All new rules are immediately active for all projects using SymfonyInsight.

PHP Foundation and JetBrains plan official PHP ecosystem survey launching in June

Laravel and Shift release free Cloud Pre-Check static analysis tool for GitHub, Bitbucket, and GitLab

Laravel has partnered with Jason McCreary and Laravel Shift to release a free tool called the <a href="https://laravelshift.com/cloud-pre-check" target="_blank" rel="noopener nofollow">Laravel Cloud Pre-Check</a>. Connect it to your GitHub, Bitbucket, or GitLab repository and it runs a static analysis scan, then delivers results as a pull request within minutes.
The tool checks around a dozen criteria:
<ul>
<li>PHP version requirements and extensions</li>
<li>Laravel framework version</li>
<li>Laravel Octane configuration</li>
<li>Database configuration</li>
<li>System command calls</li>
<li>Hardcoded paths</li>
</ul>
Each finding lands in one of three categories: ready for Cloud, warnings, or blockers. Blockers and warnings come with specific guidance on what to fix, so you’re not left guessing why something failed.
If you’re planning a migration to Laravel Cloud, running this first is a reasonable way to surface problems before they bite you mid-deploy.

Laravel has partnered with Jason McCreary and Laravel Shift to release a free static analysis tool called Laravel Cloud Pre-Check. Connect it to a GitHub, Bitbucket, or GitLab repository and it scans for deployment compatibility issues, delivering results as a pull request. It checks around a dozen criteria including PHP version, Laravel framework version, Octane configuration, database config, system command calls, and hardcoded paths. Findings are categorized as ready, warnings, or blockers, with specific guidance for each issue.