Category: Front-End Development
Preventing a WordPress XSS Attack: Complete Guide to Validating, Sanitizing, and Escaping Data
When it comes to making your WordPress site secure as a developer, probably the most impactful thing you can do is make sure you always clean up data that your code receives from users. That means, generally, two things, validating or sanitizing it on the way into your system. And escaping it on the way out, reducing the chance of a WordPress XSS attack. WordPress Cross-site Scripting attacks are one of the most common ways people compromise sites. So today we’ll cover how they work.
WordPress Development for Beginners: “Does the User See It?”
Getting started with WordPress development can be disorienting. As I’ve written, software development (including WordPress development) is a lot like caving, and trying to do your first WordPress development project can be like waking up somewhere in the middle of a dark cave and trying to figure it out from there.
Should You Use a Gutenberg-Optimized Theme?
The Gutenberg block editor has done more to turn the WordPress ecosystem on its head than anything in recent memory. And it has required both web designers and website owners to do some soul-searching.
SVGs in WordPress: How to Upload Them and Why to Use Them
This article is all about SVGs: how and why to use SVGs in WordPress, including how to allow SVG file uploads in WordPress. Whether you love, fear, or simply don’t understand this image format, we’ve got you covered.
Is WordPress a Good Website Builder?
WordPress isn’t as beginner-friendly as some alternatives, but it offers vastly more potential for customization. Is, and when is, WordPress a good website builder?
25 Free Time-Saving Online Tools for WordPress Developers
As Fred wrote in an earlier post, learning WordPress development is hard. It’s not just a case of being able to write code. There’s a heap of associated skills: analysis, design, SEO, copywriting, user experience, maintenance and more.
How to Add CSS Classes to a Gutenberg Block
In this text and video Quick Guide, we’ll show you how to add additional CSS classes to a Gutenberg block—that is, a block in the new WordPress editor.
Understanding “Server-Side” and “Client-Side” in WordPress
This article explains “server-side vs. client side” in WordPress development. This distinction, and how the server side and client side interact, is at the core of not only WordPress development, but of any real understanding of how the web works.
Using WordPress Custom Fields to Enhance a Plugin
The WordPress plugin ecosystem is amazing. It offers us an almost endless variety of functionalities that we can add to our websites with minimal effort.
How to See Which WordPress Template File is In Use with Show Current Template
In this text and video Quick Guide, we teach you how to show the WordPress template file being used on a given webpage on your site, using the Show Current Template or Which Template plugins.