A free and open-source book on Zend Framework for beginners

1.8. Security

Zend Framework 3 follows best practices to provide you with a secure code base for your web sites. ZF3 creators release security patches once the community of users finds a problem. You can incorporate those fixes with a single command through Composer dependency manager.

Practice shows that using a framework for writing your website is more secure than using "pure" PHP, because you don't need to reinvent the wheel. Most security vulnerabilities in frameworks are already known and fixed by the community of users.

ZF3 provides the following features allowing to make your web site secure: