PHP 8.x 最佳实践指南：51条规则掌握现代PHP开发、PSR标准与SOLID原则

php-best-practices by asyrafhussin/agent-skills

886 周安装量

19 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/asyrafhussin/agent-skills --skill php-best-practices

开发 PHP 框架性能优化

🇨🇳中文介绍

PHP 最佳实践

现代 PHP 8.x 模式、PSR 标准、类型系统最佳实践和 SOLID 原则。包含 51 条编写清晰、可维护 PHP 代码的规则。

步骤 1：检测 PHP 版本

在提供任何建议之前，务必检查项目的 PHP 版本。 8.0 到 8.5 版本之间的功能差异很大。切勿建议项目版本中不存在的语法。

检查 composer.json 以获取所需的 PHP 版本：

{ "require": { "php": "^8.1" } }   // -> 8.1 及以下版本的规则
{ "require": { "php": "^8.3" } }   // -> 8.3 及以下版本的规则
{ "require": { "php": ">=8.4" } }  // -> 8.4 及以下版本的规则

同时检查运行时版本：

php -v   # 例如：PHP 8.3.12

各版本功能可用性

功能	版本	规则前缀
联合类型、match 表达式、空安全运算符、命名参数、构造器属性提升、属性	8.0+	`type-`、

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

按优先级划分的规则类别

优先级	类别	影响	前缀	规则数量
1	类型系统	关键	`type-`	9
2	现代 PHP 功能	关键	`modern-`	16
3	PSR 标准	高	`psr-`	6
4	SOLID 原则	高	`solid-`	5
5	错误处理	高	`error-`	5
6	性能	中	`perf-`	5
7	安全性	关键	`sec-`	5

1. 类型系统（关键）— 9 条规则

type-strict-mode - 在每个文件中声明严格类型
type-return-types - 始终声明返回类型
type-parameter-types - 为所有参数指定类型
type-property-types - 为类属性指定类型
type-union-types - 有效使用联合类型
type-intersection-types - 使用交集类型
type-nullable-types - 正确处理可为空类型
type-void-never - 为适当的返回类型使用 void/never
type-mixed-avoid - 尽可能避免使用 mixed 类型

2. 现代 PHP 功能（关键）— 16 条规则

modern-constructor-promotion - 构造器属性提升
modern-match-expression - 使用 match 替代 switch
modern-named-arguments - 使用命名参数以提高清晰度
modern-nullsafe-operator - 空安全运算符 (?->)
modern-attributes - 使用属性处理元数据

modern-enums - 使用枚举替代常量
modern-enums-methods - 使用带方法和接口的枚举
modern-readonly-properties - 为不可变数据使用只读属性
modern-first-class-callables - 一等可调用对象语法
modern-arrow-functions - 箭头函数（7.4+，与 8.1 功能配合良好）

modern-readonly-classes - 只读类

modern-typed-constants - 类型化类常量（const string NAME = 'foo'）
modern-override-attribute - 使用 #[\Override] 捕获父方法拼写错误

modern-property-hooks - 使用属性钩子替代 getter/setter
modern-asymmetric-visibility - 使用 public private(set) 实现受控访问

modern-pipe-operator - 管道运算符 (|>) 用于函数式链式调用

3. PSR 标准（高）— 6 条规则

psr-4-autoloading - 遵循 PSR-4 自动加载规范
psr-12-coding-style - 遵循 PSR-12 编码风格
psr-naming-classes - 类命名约定
psr-naming-methods - 方法命名约定
psr-file-structure - 每个文件一个类
psr-namespace-usage - 正确使用命名空间

4. SOLID 原则（高）— 5 条规则

solid-srp - 单一职责原则：一个修改理由
solid-ocp - 开闭原则：扩展而非修改
solid-lsp - 里氏替换原则：子类型必须可替换
solid-isp - 接口隔离原则：小而专注的接口
solid-dip - 依赖倒置原则：依赖抽象

5. 错误处理（高）— 5 条规则

error-custom-exceptions - 为不同错误创建特定的异常
error-exception-hierarchy - 将异常组织成有意义的层次结构
error-try-catch-specific - 捕获特定异常，而非通用的 \Exception
error-finally-cleanup - 使用 finally 保证资源清理
error-never-suppress - 切勿使用 @ 错误抑制运算符

6. 性能（中）— 5 条规则

perf-avoid-globals - 避免全局变量，使用依赖注入
perf-lazy-loading - 延迟昂贵操作直到需要时
perf-array-functions - 使用原生数组函数而非手动循环
perf-string-functions - 使用原生字符串函数而非正则表达式
perf-generators - 对大型数据集使用生成器

7. 安全性（关键）— 5 条规则

sec-input-validation - 验证并清理所有外部输入
sec-output-escaping - 根据上下文（HTML、JS、URL）转义输出
sec-password-hashing - 使用 password_hash/verify，切勿使用 MD5/SHA1
sec-sql-prepared - 对所有 SQL 查询使用预处理语句
sec-file-uploads - 验证文件类型、大小、名称；存储在 Web 根目录之外

有关详细示例和说明，请参阅规则文件：

type-strict-mode.md - 严格类型声明
modern-constructor-promotion.md - 构造器属性提升
modern-enums.md - PHP 8.1+ 带方法的枚举
solid-srp.md - 单一职责原则

关键模式（快速参考）

<?php
declare(strict_types=1);

// 8.0+ 构造器属性提升 + 只读属性（8.1+）
class User
{
    public function __construct(
        public readonly string $id,
        private string $email,
    ) {}
}

// 8.1+ 带方法的枚举
enum Status: string
{
    case Active = 'active';
    case Inactive = 'inactive';

    public function label(): string
    {
        return match($this) {
            self::Active => 'Active',
            self::Inactive => 'Inactive',
        };
    }
}

// 8.0+ Match 表达式
$result = match($status) {
    'pending' => 'Waiting',
    'active' => 'Running',
    default => 'Unknown',
};

// 8.0+ 空安全运算符
$country = $user?->getAddress()?->getCountry();

// 8.3+ 类型化类常量 + #[\Override]
class PaymentService extends BaseService
{
    public const string GATEWAY = 'stripe';

    #[\Override]
    public function process(): void { /* ... */ }
}

// 8.4+ 属性钩子 + 非对称可见性
class Product
{
    public string $name { set => trim($value); }
    public private(set) float $price;
}

// 8.5+ 管道运算符
$result = $input
    |> trim(...)
    |> strtolower(...)
    |> htmlspecialchars(...);

审计代码时，按此格式输出发现的问题：

file:line - [category] Description of issue

src/Services/UserService.php:15 - [type] Missing return type declaration
src/Models/Order.php:42 - [modern] Use match expression instead of switch
src/Controllers/ApiController.php:28 - [solid] Class has multiple responsibilities

阅读单独的规则文件以获取详细说明：

rules/modern-constructor-promotion.md
rules/type-strict-mode.md
rules/solid-srp.md

🇺🇸English

PHP Best Practices

Modern PHP 8.x patterns, PSR standards, type system best practices, and SOLID principles. Contains 51 rules for writing clean, maintainable PHP code.

Step 1: Detect PHP Version

Always check the project's PHP version before giving any advice. Features vary significantly across 8.0 - 8.5. Never suggest syntax that doesn't exist in the project's version.

Check composer.json for the required PHP version:

{ "require": { "php": "^8.1" } }   // -> 8.1 rules and below
{ "require": { "php": "^8.3" } }   // -> 8.3 rules and below
{ "require": { "php": ">=8.4" } }  // -> 8.4 rules and below

Also check the runtime version:

php -v   # e.g. PHP 8.3.12

Feature Availability by Version

Feature	Version	Rule Prefix
Union types, match, nullsafe, named args, constructor promotion, attributes	8.0+	`type-`, `modern-`
Enums, readonly properties, intersection types, first-class callables, never, fibers	8.1+	`modern-`
Readonly classes, DNF types, true/false/null standalone types	8.2+	`modern-`
Typed class constants, `#[\Override]`, `json_validate()`	8.3+	`modern-`
Property hooks, asymmetric visibility, `#[\Deprecated]`, `new` without parens	8.4+	`modern-`
Pipe operator `	>`	8.5+

Only suggest features available in the detected version. If the user asks about upgrading or newer features, mention what becomes available at each version.

When to Apply

Reference these guidelines when:

Writing or reviewing PHP code
Implementing classes and interfaces
Using PHP 8.x modern features
Ensuring type safety
Following PSR standards
Applying design patterns

Rule Categories by Priority

Priority	Category	Impact	Prefix	Rules
1	Type System	CRITICAL	`type-`	9
2	Modern PHP Features	CRITICAL	`modern-`	16
3	PSR Standards	HIGH	`psr-`	6
4	SOLID Principles	HIGH	`solid-`

Quick Reference

1. Type System (CRITICAL) — 9 rules

type-strict-mode - Declare strict types in every file
type-return-types - Always declare return types
type-parameter-types - Type all parameters
type-property-types - Type class properties
type-union-types - Use union types effectively
type-intersection-types - Use intersection types
type-nullable-types - Handle nullable types properly
type-void-never - Use void/never for appropriate return types
type-mixed-avoid - Avoid mixed type when possible

2. Modern PHP Features (CRITICAL) — 16 rules

8.0+:

modern-constructor-promotion - Constructor property promotion
modern-match-expression - Match over switch
modern-named-arguments - Named arguments for clarity
modern-nullsafe-operator - Nullsafe operator (?->)
modern-attributes - Attributes for metadata

8.1+:

modern-enums - Enums instead of constants
modern-enums-methods - Enums with methods and interfaces
modern-readonly-properties - Readonly for immutable data
modern-first-class-callables - First-class callable syntax
modern-arrow-functions - Arrow functions (7.4+, pairs well with 8.1 features)

8.2+:

modern-readonly-classes - Readonly classes

8.3+:

modern-typed-constants - Typed class constants (const string NAME = 'foo')
modern-override-attribute - #[\Override] to catch parent method typos

8.4+:

modern-property-hooks - Property hooks replacing getters/setters
modern-asymmetric-visibility - public private(set) for controlled access

8.5+:

modern-pipe-operator - Pipe operator (|>) for functional chaining

3. PSR Standards (HIGH) — 6 rules

psr-4-autoloading - Follow PSR-4 autoloading
psr-12-coding-style - Follow PSR-12 coding style
psr-naming-classes - Class naming conventions
psr-naming-methods - Method naming conventions
psr-file-structure - One class per file
psr-namespace-usage - Proper namespace usage

4. SOLID Principles (HIGH) — 5 rules

solid-srp - Single Responsibility: one reason to change
solid-ocp - Open/Closed: extend, don't modify
solid-lsp - Liskov Substitution: subtypes must be substitutable
solid-isp - Interface Segregation: small, focused interfaces
solid-dip - Dependency Inversion: depend on abstractions

5. Error Handling (HIGH) — 5 rules

error-custom-exceptions - Create specific exceptions for different errors
error-exception-hierarchy - Organize exceptions into meaningful hierarchy
error-try-catch-specific - Catch specific exceptions, not generic \Exception
error-finally-cleanup - Use finally for guaranteed resource cleanup
error-never-suppress - Never use @ error suppression operator

6. Performance (MEDIUM) — 5 rules

perf-avoid-globals - Avoid global variables, use dependency injection
perf-lazy-loading - Defer expensive operations until needed
perf-array-functions - Use native array functions over manual loops
perf-string-functions - Use native string functions over regex
perf-generators - Use generators for large datasets

7. Security (CRITICAL) — 5 rules

sec-input-validation - Validate and sanitize all external input
sec-output-escaping - Escape output based on context (HTML, JS, URL)
sec-password-hashing - Use password_hash/verify, never MD5/SHA1
sec-sql-prepared - Use prepared statements for all SQL queries
sec-file-uploads - Validate file type, size, name; store outside web root

Essential Guidelines

For detailed examples and explanations, see the rule files:

type-strict-mode.md - Strict types declaration
modern-constructor-promotion.md - Constructor property promotion
modern-enums.md - PHP 8.1+ enums with methods
solid-srp.md - Single responsibility principle

Key Patterns (Quick Reference)

<?php
declare(strict_types=1);

// 8.0+ Constructor promotion + readonly (8.1+)
class User
{
    public function __construct(
        public readonly string $id,
        private string $email,
    ) {}
}

// 8.1+ Enums with methods
enum Status: string
{
    case Active = 'active';
    case Inactive = 'inactive';

    public function label(): string
    {
        return match($this) {
            self::Active => 'Active',
            self::Inactive => 'Inactive',
        };
    }
}

// 8.0+ Match expression
$result = match($status) {
    'pending' => 'Waiting',
    'active' => 'Running',
    default => 'Unknown',
};

// 8.0+ Nullsafe operator
$country = $user?->getAddress()?->getCountry();

// 8.3+ Typed class constants + #[\Override]
class PaymentService extends BaseService
{
    public const string GATEWAY = 'stripe';

    #[\Override]
    public function process(): void { /* ... */ }
}

// 8.4+ Property hooks + asymmetric visibility
class Product
{
    public string $name { set => trim($value); }
    public private(set) float $price;
}

// 8.5+ Pipe operator
$result = $input
    |> trim(...)
    |> strtolower(...)
    |> htmlspecialchars(...);

Output Format

When auditing code, output findings in this format:

file:line - [category] Description of issue

Example:

src/Services/UserService.php:15 - [type] Missing return type declaration
src/Models/Order.php:42 - [modern] Use match expression instead of switch
src/Controllers/ApiController.php:28 - [solid] Class has multiple responsibilities

How to Use

Read individual rule files for detailed explanations:

rules/modern-constructor-promotion.md
rules/type-strict-mode.md
rules/solid-srp.md

Weekly Installs

886

Repository

asyrafhussin/ag…t-skills

GitHub Stars

First Seen

Jan 24, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

opencode766

codex750

gemini-cli745

github-copilot726

kimi-cli674

amp673

React 组合模式指南：Vercel 组件架构最佳实践，提升代码可维护性

102,200 周安装