Software Engineering in Web Development, Backend Services, and More
For the next two days, my team and I are going to be hanging out with a lot of awesome people at WordCamp Atlanta.
You can find out all of the information about the conference on the official website, but the short of it is that a ton of people are coming into town to chat about all things WordPress.
When it comes to cross site scripting in WordPress, I think that there’s a lot of education that’s to be had.
I’m by no means an expert in this field, but I think that there’s either a lack of awareness or we take for granted what WordPress does for us.
Generally speaking, WordPress does an excellent job of providing sanitization and validation functions (assuming that we use them correctly), but that doesn’t mean there aren’t potential exploits.
In my latest series on Envato, I give a two part introduction to cross-site scripting in WordPress and practical tips for how we can test our themes and our plugins.
When it comes to turning a profit on open-source software, I’d like to think that the majority of developers follow the same set of ethics. I’m my experience, it’s true – though, as with anything, there are outliers.
As I continue to work to introduce a premium level of support for my WordPress-related work, one of the things that I’ve found myself wrestling with is turning a profit on work to which others have contributed.
But are open source ethics that complicated?
The past couple of weeks, I’ve been discussing the challenge of supporting free WordPress plugins. Though I’ve done this in the past, I’ve retired those projects, but am looking to get back into doing so all the while documenting the process here.
But first, for those who haven’t been reading the articles up to this point, I wanted to reference the previous posts just to let you know where I stand with regard to all of this:
The point is that I’m slowly working my way back into building a small business around building WordPress plugins, supporting them, offering documentation, manuals, and so on, but I want to make sure that I’m doing it right.
To that end, I’m enjoying the discussion with you guys via the comments as well as the challenge of finding the best tools possible not only for me but for potential customers, as well and this is what raises my next issue: Finding the right WordPress support system. Continue reading
One of the biggest problems with writing and maintaining themes and/or plugins in WordPress is the frustration that comes with having to track down JavaScript errors.
Pippin Williamson has discussed this extensively on his blog, we’ve covered it on WP Daily, and I’ve talked about this once before here.
But since I’ve seen this issue crop up several times since, I wanted to offer some additional thoughts on this particular topic that has stemmed from the recent discussions.
Kinsta offers premium managed WordPress hosting for everyone, small or large. Powered by Google Platform and strengthened by Cloudflare, they take performance to the next level. All hosting plans include 24/7/365 support from their team of WordPress engineers. Get started with a free migration today.
© 2026 Tom McFarlin
Theme by Anders Noren — Up ↑
