mblog.my

How to Run Automated Lighthouse Audits on WordPress Changes

[ad_1] You are probably familiar with this scenario. You put a lot of work to drastically improve the page speed and PageSpeed Insights scores of your client’s site. Mobile scores are particularly challenging to improve! Your client installs a new app or plugin and all your work goes down the drain. Can we go lower than 1? This is a frustrating, but sadly common situation. Fortunately, there is a version of Google Lighthouse that can perform audits on demand. Advertisement Continue Reading Below It is called Lighthouse CI. CI stands for Continuous Integration, which is a common practice in software… [ad_2] More Info

Read More »

Statistics highlight the biggest source of WordPress vulnerabilities

[ad_1] We all know that plenty of WordPress sites are getting hacked each year. Is it because WordPress is an insecure system? Is it a global WordPress issue, or does it come from those webmasters’ actions? How, and why is it happening? Whether you are running a personal blog, business website, or an eCommerce site on WordPress, the security of your website should be a priority. There can be many reasons due to which your site’s security is compromised. The most common reasons are weak passwords, users mistakes, outdated software and missing security updates. In this article we use the… [ad_2] More Info

Read More »

InMotion Hosting's Amy Kamala Selected for WordPress 5.6 All-Women Release Squad – Yahoo Finance

[ad_1] TipRanks Wells Fargo: These 3 “Strong Buy” Stocks Have Over 70% Upside Potential Markets are on a roller coaster lately, up one day and down the next, as Wall Street’s pros and investors alike try to make sense of the constantly shifting news cycle. To wit: In the first week of October, we’ve seen a pretty good September jobs report, President Trump spend three days at Walter Reed Hospital with a case of COVID-19, and on his discharge the President withdrew from negotiations with House Democrats on a new COVID economic stimulus package. It’s enough to make your head spin.It’s… [ad_2] More Info

Read More »

Important Features Your WordPress Hosting Setup Must Have

[ad_1] With the whole world jumping into the digital era, WordPress has somewhat become essential for nearly every business or content creator. The need for digital content, advertisement, and marketing has left its traditional counterparts far behind in the race. And, WordPress is one of the key driving forces for the same. At its core, it is a democratized means of building one’s website.  How ‘democratized’? Democratizing publishing is the main aim of WordPress. WordPress is an ‘open-sourced’ content management system allowing anyone to operate or modify the… [ad_2] More Info

Read More »

Kick off Block-Based WordPress Theme Development With the Theme.json Creator – WordPress Tavern

[ad_1] Gutenberg 9.1 made a backward-incompatible change to its theme.json file (experimental-theme.json while full-site editing is under the experimental flag). This is the configuration file that theme developers will need to create as part of their block-based themes. Staying up to date with such changes can be a challenge for theme authors, but Ari Stathopoulos, a Themes Team representative, wrote a full guide for developers. Jon Quach, a Principal Designer at Automattic, has also been busy creating a tool to help theme authors transition to block-based themes. He recently built a… [ad_2] More Info

Read More »

WP Bakery WordPress Vulnerability Affects Millions of Sites

[ad_1] Researchers discovered a vulnerability in WP Bakery page builder that allows an attacker to inject malicious JavaScript into pages and posts. The vulnerability allows an attacker to inject code into pages and posts that then attacks site visitor browsers. Authenticated Stored Cross-Site Scripting (XSS) Vulnerability Cross-site scripting vulnerabilities are characterized by an attacker gaining the ability to target the browsers of visitors through the use of malicious scripts that were surreptitiously placed on a website. XSS attacks are among the most prevalent type of vulnerabilities. This… [ad_2] More Info

Read More »

WordPress 5.6 Due December 2020 is Scaled Back

[ad_1] WordPress had intended to include the menu navigation screen in Gutenberg 9.1 and WordPress 5.6. Development fell behind and it was decided to remove it from WordPress 5.6 and focus on the Gutenberg widgets screen functionality instead. Gutenberg Navigation Screen Gutenberg is a WordPress project whose goal is to modernize the process of building websites. Gutenberg uses a drag and drop interface. The Gutenberg part of WordPress however is still under development, it’s an ongoing project. The different parts of building a website are rolled out one at a time as they are finished.

Read More »

Exploring Full-Site Editing With the Q WordPress Theme – WordPress Tavern

[ad_1] I have been eagerly awaiting the moment when I could install a theme and truly test Gutenberg’s full-site editing feature. By and large, each time I have tested it over the past few months, the experience has felt utterly broken. This is why I have remained skeptical of seeing the feature land in WordPress 5.6 this December. The Q theme by Ari Stathopoulos is the first theme that seems to be a decent working example. Whether that is a stroke of luck with timing or that this particular theme is simply built correctly is hard to tell — Stathopoulos is a team rep for the Themes… [ad_2] More Info

Read More »

Post Grid WordPress Plugin Flaws Allow Site Takeovers – Threatpost

[ad_1] Team Showcase, a sister plugin, is also vulnerable to the XSS and PHP object-injection bugs — together they have 66,000 installs. Two high-severity vulnerabilities in Post Grid, a WordPress plugin with more than 60,000 installations, opens the door to site takeovers, according to researchers. To boot, nearly identical bugs are also found in Post Grid’s sister plug-in, Team Showcase, which has 6,000 installations. The issues are a cross-site scripting (XSS) flaw as well as a PHP object-injection issue. Both bugs are pending CVE… [ad_2] More Info

Read More »

Here’s how to install it

[ad_1] Cloudflare announced a new site speed optimization service called Automatic Platform Optimization. The service launched with support for WordPress, but it requires several steps to enable it for self-hosted sites. To help sites perform better with Google’s Core Web Vitals, Cloudflare debuted a new feature called Automatic Platform Optimization (APO). Cloudflare claims that using the APO on WordPress – the only platform that is currently supported – results in “a 72% reduction in Time to First Byte (TTFB), 23% reduction to First Contentful Paint, and 13% reduction in Speed… [ad_2] More Info

Read More »