If you’re using Caldera Forms, there’s…
Brian Krogsgard
If you're using Caldera Forms, there's a security update out for it (although the WordPress security team is pushing an auto update).
Jetpack also has a critical security…
Brian Krogsgard
Jetpack also has a critical security release around shortcode processing, and is shipping auto updates.
Growing a lifestyle business without losing the lifestyle
Nate Wright
Balancing a lifestyle business -- and trying to grow it -- can be tricky, when you're not willing to give up your lifestyle for that growth. There are ways to grow your business without giving up the lifestyle you began it all for, right?
If you run a SaaS business…
Brian Krogsgard
If you run a SaaS business (or want to), then you might want to bookmark this in-depth post from Jason Cohen, founder of WPEngine. I could say it discusses the cancellation rate in SaaS business models, but I don't think…
The steady move upmarket in WordPress hosting
Brian Krogsgard
Media Temple is the latest company to offer an "enterprise" level WordPress hosting option. Their new offering is based on Amazon Web Services and starts at $2,500 per month. From TechCrunch: The standard enterprise plan costs $2,500 per month comes…
WordPress as a Headless CMS — Draft podcast
Katie Richards
Joe and Brian discuss WordPress as a Headless CMS, what that means, things to consider using WordPress as a Headless CMS, and more.
If you use PHPStorm (or know…
Brian Krogsgard
If you use PHPStorm (or know someone that does) make sure you read this about a security concern in older versions.
The WordPress.org recommended host page has finally updated
Brian Krogsgard
The WordPress.org recommended host page is a valuable piece of real estate. Many rumors have been circulated over the years in regard to how the page is curated and what criteria are used. It was long neglected, then transitioned to two…
Trademarks, Woo, and you
Brian Krogsgard
There's been talk lately about Automattic enforcing trademarks for the term "Woo", by sending takedown notices to websites utilizing the term in their domains and offering services or products associated with WooCommerce. Automattic has been sending letters, primarily to sites…
WordPress Security — Draft podcast
Katie Richards
This week, Joe and Brian discuss WordPress and website security, why it matters, how to go about it, and what the consequences can be when everything goes downhill.
There are a few nuggets of wisdom in…
Brian Krogsgard
There are a few nuggets of wisdom in Matt Medeiros' answers to questions on running a WordPress product and service business after his appearance on the OfficeHours.fm podcast. BTW, OfficeHours.fm reached 100 episodes recently, so congrats to Carrie Dils.
One more security update: Ninja Forms…
Brian Krogsgard
One more security update: Ninja Forms had a pretty nasty bug that allowed arbitrary file uploading. They worked with a security researcher -- who tells his tale here -- and the WordPress plugin team to get forced-upgrades to all users.
Here’s a list of guidelines a…
Brian Krogsgard
Here's a list of guidelines a designer needs to know about accessibility from Jesse Hausler. One of the points that stuck in my mind was that you should design for a "diverse set of users" who will interact with your…
Templatic, a WordPress theme company, was…
Brian Krogsgard
Templatic, a WordPress theme company, was recently hacked and that hacker is holding it's customer data for ransom. This is terrifying, for both Templatic clients and for Templatic itself. Thankfully billing information wasn't stored and Templatic's customers at least so…
Encouragement to reward folks who find plugin vulnerabilities
Brian Krogsgard
Mika Epstein posted a recommendation on Make WordPress Plugins for authors who make money from plugins to utilize a service like HackerOne to help identify and fix vulnerabilities in their plugins. The WordPress tag on HackerOne -- which is a…
A new “Get WordPress” landing page is in the works
Brian Krogsgard
A couple of months ago, Mark Uraine described the thinking behind what is now likely to be a new landing page at WordPress.org/get: For quite a while now, the meta team has been interested in improving the download and mobile pages…
