News
Bug Hunt in Progress!
Just in case anyone forgot, the first of the November bug hunts for version 2.9 is now in progress, and will last another day. If you’ve got a dev environment set up, please consider pitching in to run some tests and help get us closer to the 2.9 milestone release.
Upcoming WordCamps
There are six WordCamps coming up before the end of the year, and since I like to make sure people know about it when there’s a WordCamp near them, here’s the list, with some personal commentary thrown in. If you just want the list without my asides, check out the full schedule at WordCamp.org.
WordCamp Phoenix [...]
Upcoming Bug Hunts!
As we near completion of the 2.9 milestone, it’s that time of dev cycle again, when we ask all you community developers who’ve been putting off contributing to core to dust off your dev environments and help us get closer to being release-ready. How? Bug hunts! Yes, that time-honored tradition (in the time of WordPress, [...]
Plugin Compatibility Beta
The number one reason people give us for not upgrading to the latest version of WordPress is fear that their plugins won’t be compatible. As part of our continuing efforts to make WordPress core, plugin, and theme upgrades as painless as possible, Michael Adams developed and launched a beta of a new “Compatibility” feature in [...]
WordPress 2.8.5: Hardening Release
As you know over the past couple of months we have been working on the new features for WordPress 2.9. We have also been working on trying to make WordPress as secure as possible and during this process we have identified a number of security hardening changes that we thought were worth back-porting to the [...]
Getting involved with the 2.9 beta testing
We have been hard at work now for a few months on the new features that will be coming in WordPress 2.9, and we are nearing the time when the first beta version will be available. We’ll need your help with beta testing the new features and ironing out any bugs.
There are a number of [...]
How to Keep WordPress Secure
A stitch in time saves nine. I couldn’t sew my way out of a bag, but it’s true advice for bloggers as well — a little bit of work on an upgrade now saves a lot of work fixing something later.
Right now there is a worm making its way around old, unpatched versions of WordPress. [...]
WordPress 2.8.4: Security Release
Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password [...]
Upcoming WordCamps
Every now and then I see someone ask in the dev channel how they can meet up with other local WordPress developers. We’re thinking about ways to make WordPress.org more of a resource to facilitate local connections, but in the meantime, I thought it might be helpful to publicize some upcoming WordCamps, the [...]
WordPress 2.8.3 Security Release
Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their