Hi Wayne,
I hope that once things kick off, we'll have a list of active security-related projects/sites that would love to get some contributors/writers. Being a non-expert isn't necessarily a barrier. I'm a self-taught programmer myself so if you find yourself interested in a specific security topic there are outlets for writing about it, and plenty of sources online you can research (likely not PHP specific but the basics are identical across all programming languages).
It's not as difficult as it appears to get up to date on a specific topic - just requires some reading and a willingness to pass it on to fellow PHP programmers. Sites like OWASP, Wikipedia and WASC (
webappsec.org) do a decent job of giving briefer overviews as a stepping stone.
If you want to start smaller - use Twitter. The #xss, #appsec, #sqli, #websec, #security, #csrf and other tags will drag up lots of people tweeting on the topic. You could create a custom search/filter for those tags in your client and retweet/read those of interest. Raising awareness in your social circle is actually a huge positive! It also shows how often these issues go public - something many programmer underestimate.
Paddy