Earlier this week, a potential security vulnerability was found in several popular WordPress plugins. Through a coordinated effort by dozens of WordPress plugin developers, these were simultaneously updated, along with a scheduled update to WordPress core. While fifteen of the most installed plugins were identified and updated, there are likely hundreds of other plugins that will update soon.
Why do I mention this to you?
Website security is improved substantially by updating to the current version of WordPress, updating WordPress plugins and hosting your site on a decent server. It also helps to add extra protection using a plugin like BetterSucuri WordPress Security.
But what I really want to focus on for starters is stressing how vital it is to regularly update WordPress itself and keep your plugins updated.
WooCommerce is the leading e-commerce solution on the WordPress platform. More people use it than any other plugin or e-commerce suite in the WordPress ecosystem. Out of the box, it can do quite a bit, and there are tons of paid extensions that help you add more robust functionality.
But out of the box, it has a few limitations. Recently, I was asked how you might change the currency display from the standard symbol to a text representation. For example, if for some reason, you wanted to change the dollar symbol ($) to read (USD). Or even (Dollars). Here’ how you make that happen without breaking your payment gateway transactions.
On April 20th, 2015, a cross-site scripting (XSS) vulnerability was discovered in at least fifteen of the most popular WordPress plugins by WordPress security specialists, Sucuri. The vulnerability could have allowed malicious attackers to compromise affected websites.
Through a coordinated effort, both WordPress core and the identified plugins pushed simultaneous updates, fixing the security vulnerability.
Let’s face it. It’s tough to talk about money, but it needs to be done, and brought into the open.
Many independent web developers receive questions about what type of payment structure they will accept before a project starts. Do you charge a deposit? Do you work for future equity? What’s your policy regarding Net 30 (or longer) payments?
While I can’t speak for other shops, my short answers to these questions are yes, I require a deposit before starting work. No, I don’t work for equity. And I avoid working on contracts where payment is unnecessarily delayed.
Here are the reasons why I structure payment arrangements this way.