diff --git a/.editorconfig b/.editorconfig
new file mode 100644
index 00000000..66990769
--- /dev/null
+++ b/.editorconfig
@@ -0,0 +1,17 @@
+# editorconfig.org
+
+root = true
+
+[*]
+charset = utf-8
+end_of_line = lf
+indent_size = 4
+indent_style = space
+insert_final_newline = true
+trim_trailing_whitespace = true
+
+[{compose.yaml,compose.*.yaml}]
+indent_size = 2
+
+[*.md]
+trim_trailing_whitespace = false
diff --git a/.env b/.env
index a95b46fb..5f97c6d5 100644
--- a/.env
+++ b/.env
@@ -133,9 +133,6 @@ REDIRECT_TO_HTTPS=0
 # When this is empty the content of config/banner.md is used as banner
 BANNER=""
 
-APP_ENV=prod
-APP_SECRET=a03498528f5a5fc089273ec9ae5b2849
-
 # Set this to zero, if you want to disable the year 2038 bug check on 32-bit systems (it will cause errors with current 32-bit PHP versions)
 DISABLE_YEAR2038_BUG_CHECK=0
 
@@ -153,3 +150,8 @@ LOCK_DSN=flock
 ###> nelmio/cors-bundle ###
 CORS_ALLOW_ORIGIN='^https?://(localhost|127\.0\.0\.1)(:[0-9]+)?$'
 ###< nelmio/cors-bundle ###
+
+###> symfony/framework-bundle ###
+APP_ENV=prod
+APP_SECRET=
+###< symfony/framework-bundle ###
diff --git a/.env.dev b/.env.dev
index e69de29b..53b05877 100644
--- a/.env.dev
+++ b/.env.dev
@@ -0,0 +1,4 @@
+
+###> symfony/framework-bundle ###
+APP_SECRET=318b5d659e07a0b3f96d9b3a83b254ca
+###< symfony/framework-bundle ###
diff --git a/config/packages/framework.yaml b/config/packages/framework.yaml
index 279c51f5..9445f1c0 100644
--- a/config/packages/framework.yaml
+++ b/config/packages/framework.yaml
@@ -1,9 +1,6 @@
 # see https://symfony.com/doc/current/reference/configuration/framework.html
 framework:
     secret: '%env(APP_SECRET)%'
-    csrf_protection: true
-    annotations: false
-    handle_all_throwables: true
 
     # We set this header by ourselves, so we can disable it here
     disallow_search_engine_index: false
@@ -30,8 +27,6 @@ framework:
 
     #esi: true
     #fragments: true
-    php_errors:
-        log: true
 
 when@test:
     framework:
diff --git a/config/routes/framework.yaml b/config/routes/framework.yaml
index 0fc74bba..bc1feace 100644
--- a/config/routes/framework.yaml
+++ b/config/routes/framework.yaml
@@ -1,4 +1,4 @@
 when@dev:
     _errors:
-        resource: '@FrameworkBundle/Resources/config/routing/errors.xml'
+        resource: '@FrameworkBundle/Resources/config/routing/errors.php'
         prefix: /_error
diff --git a/config/services.yaml b/config/services.yaml
index 6133dce7..17611cea 100644
--- a/config/services.yaml
+++ b/config/services.yaml
@@ -29,10 +29,6 @@ services:
     # this creates a service per class whose id is the fully-qualified class name
     App\:
         resource: '../src/'
-        exclude:
-            - '../src/DependencyInjection/'
-            - '../src/Entity/'
-            - '../src/Kernel.php'
 
     # controllers are imported separately to make sure services can be injected
     # as action arguments even if you don't extend any base controller class
diff --git a/symfony.lock b/symfony.lock
index 334baf4c..f6063621 100644
--- a/symfony.lock
+++ b/symfony.lock
@@ -496,14 +496,15 @@
         ]
     },
     "symfony/framework-bundle": {
-        "version": "6.4",
+        "version": "7.3",
         "recipe": {
             "repo": "github.com/symfony/recipes",
             "branch": "main",
-            "version": "6.4",
-            "ref": "a91c965766ad3ff2ae15981801643330eb42b6a5"
+            "version": "7.3",
+            "ref": "5a1497d539f691b96afd45ae397ce5fe30beb4b9"
         },
         "files": [
+            ".editorconfig",
             "config/packages/cache.yaml",
             "config/packages/framework.yaml",
             "config/preload.php",