Геннадий Ковшенин
On WordPress Security and Contributing
A sad story in two parts, where I’m rash, harsh and untactful. An explanation, a rant, a call for support, a call for action. You do not have to agree with me, I may be just an asshole and haven’t realized it yet ?
Part 3: Safety nets vs. bad code
So the original $wpdb->prepare vulnerability, which, I remind you is based on a potential typo in third-party code, is followed up with a new potential vulnerability based on double preparing a query. So again, bad third-party code.
do_action Moscow 2018
My first WordPress hackathon! do_action Moscow 2018 was organized this past past weekend by Теплица социальных техонологий, a Russian non-profit organization operating around the country.
Testing Race Conditions in WordPress
I’ve spoken about this, and even started work on a plugin called WP_Lock that will aim to introduce some thread-safety into core to address the occasional TOCTOU bug under high load (and concurrency). For example ticket #44568 is an easy-to-reproduce complaint about concurrent REST API access ?
Moving A Single Site Out Of A WordPress Multisite Installation
We have written how to move a single WordPress site into a Multisite installation quite a while ago. It’s time to find out how to do the opposite — migrate a site from inside a Multisite installation, into a standalone single-site WordPress install.
WordPress 4.7
WordPress 4.7 has been released a few moments ago, and includes a brand new default theme, starter content support, video headers, custom CSS, menu management improvements, content endpoints for the REST API, and much more.
WordPress 4.6
WordPress 4.6 has been released a few days ago and includes better plugin and theme updates, native fonts for the admin area, visual editor improvements, better Multisite performance, resource hints and much more.
WordPress 4.5 Released
WordPress 4.5 has been released. This update features an improved “insert link” workflow, more formatting shortcuts, mobile previews in the Customizer, custom logos support for some themes and more. Below is a video demonstrating some of these new features.
Performance and Security Benchmark for Your WordPress Site
When your WordPress site is essential to your business, you need to be thinking about performance and security all the time. Here at Pressjitsu we’re a bit obsessed with both, so we crafted a free online tool to benchmark your WordPress site.
WordPress 4.2.2 Released
The WordPress core team has released version 4.2.2 a few hours ago. This is a security and maintenance release which fixes 17 bugs and two security issues.
WordPress 4.2 “Powell” Released
WordPress 4.2 “Powell” has been released, bringing some new features, improvements, and bug fixes to the core software. A brand new Press This bookmarklet, Emoji support, better plugin updates and more.