Hi I’m Chris with Tiny Frog Technologies I want to talk to you about plugin security and maintenance. For preventative measures you definitely want to keep all your plugins up-to-date at least once a month. It’s good to have a developer or somebody that knows PHP code or HTML code and understands the plugin that can do the research on the plugin. You need to at least make the updates. I know when you’re logged into the WordPress backend dashboard, and it says “update now” you can just click the button. Only problem is if you do that and that update didn’t work well with another plugin then you’ll have some website issues. And if you don’t have reverting tools that can revert back to the point of before you pushed that button then you definitely want to have a developer in there understanding what was changed. And be able to put in a patch, revert it or contact the plugin developer and let them know what type of issue you ran into.
When choosing a plugin for a site-built – Tiny Frog performs what we call the plugin profiling. This is when you check the plugin profile. Every plugin that’s out there that’s built usually has a plugin profile that tells you how many downloads and you know what it’s compatible with. We check these things and also make sure we look at the reviews because we want to see what are people saying about this plugin such as are there any issues.
This also helps us identify if the plugin developers still around making updates to this plugin. That is one critical issue that most WordPress users have is all of sudden they bought this plugin and the developer kind of fell off the face of the Earth and then they’re not making updates. Well whenever there’s a vulnerability that causes an exploit in like the core – the plugins need to be updated. So that’s the responsibility of the person who built that plugin to also put in the patch so that their plugin is Tip-Top Shape and secure.
If you’d like more information on security topics, please contact us at tinyfrog.com.