With WordPress now powering over 40% of the web, website owners need to think more about online security. Almost every week a new plugin vulnerability is found and patched, leading to concerns about the security of WordPress.
Fortunately for the new plugin developer, the WordPress developer handbook has an extensive section on Plugin Security. If followed, plugin vulnerabilities can be drastically reduced, and the entire ecosystem is protected.
This tutorial will introduce the new developer to the first 5 areas of plugin security, using easy-to-understand examples.
1. Confidential Customized for Lorem Ipsum LLC Version 1.0
Jonathan Bossenger
Introduction to Securely
Developing Plugins
Learn.WordPress.org
2. Confidential Customized for Lorem Ipsum LLC Version 1.0
Learn.WordPress.org
What you will learn
1. The benefits of ensuring your code is secure
2. How to secure your code
3. Where to learn about security
3. Confidential Customized for Lorem Ipsum LLC Version 1.0
Learn.WordPress.org
Disclaimer
This tutorial was created as an introduction to being security minded when
developing plugins. The code examples used in this tutorial are very simplified
examples. You should not use any of the code used in this tutorial in your plugins.
Please make sure to read the full documentation on Security in the Wordpress
Developer handbook at developer.wordpress.org/apis/security/ to ensure
you follow the correct methods and procedures.
4. Confidential Customized for Lorem Ipsum LLC Version 1.0
Learn.WordPress.org
What is plugin security?
Plugin security is the process of ensuring your plugin code not
only works, but also does not introduce any security
vulnerabilities
5. Confidential Customized for Lorem Ipsum LLC Version 1.0
Learn.WordPress.org
Developing a security mindset
● Don’t trust any data
● Use core WordPress APIs
● Keep your code updated
Notas del editor
TITLE SLIDE: Make a copy of this presentation to your Google Drive, and edit to replace with your details.
TITLE SLIDE: Make a copy of this presentation to your Google Drive, and edit to replace with your details.
TITLE SLIDE: Make a copy of this presentation to your Google Drive, and edit to replace with your details.
TITLE SLIDE: Make a copy of this presentation to your Google Drive, and edit to replace with your details.
TITLE SLIDE: Make a copy of this presentation to your Google Drive, and edit to replace with your details.