WordPress to get secure, cryptographicly signed auto-updates

Exciting work is being done with regards to the WordPress auto-update system that allows the WordPress team to sign each update. That signature can be verified by each WordPress installation to guarantee you’re installing the actual WordPress update an…

Read full article

Similar

Large-scale attack tries to steal configuration files from WordPress sites

Attackers tried to download configuration files from WordPress sites so they could steal database credentials. (more…)

The Optionsbleed Apache Vulnerability and WordPress – WPScans

During the weekend our CTO Jonas Lejon has been doing some research into the most recent Apache vulnerability named Optionsbleed. The Optionsbleed vulnerability is a bug in the Apache webserver and makes it possible for an attacker to read remote webserve... (more…)

Why Developers Hate WordPress

A discussion of the common pain-points faced by developers when working with WordPress and reasons why they are hesitant to use it. (more…)

Demoing the GraphQL API for WordPress

Presentation of the new GraphQL API for WordPress plugin, to use the increasingly popular GraphQL API to fetch data from the WordPress site.The plugin is ope... (more…)

Configuring HTTP2 Push with WordPress

Let's say that you had a site that runs on PHP, which of course your Wordpress instance does, and you wanted to use HTTP2 Server Push to push down two CSS... (more…)

Latest News

Deploy your Rust app with one-line, for free

OS Workerd, Cloudflare’s JavaScript/WASM Runtime

Clearview AI, Used by Police to Find Criminals, Is Now in Public Defenders’ Hand