Regular automatic updates on ugly spaghetti code feels like it’s just asking for trouble.
Comment on Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack
bjoern_tantau@swg-empire.de 4 months agoIt’s really a shame because by now WordPress itself actually works quite well. Sure, it’s fueled by unspeakably ugly spaghetti code. But at least it’s unspeakably ugly spaghetti code that works and receives regular automatic updates.
And other than putting up a verification program I don’t see what they could do to improve the plugin situation.
AbidanYre@lemmy.world 4 months ago
bjoern_tantau@swg-empire.de 4 months ago
sugar_in_your_tea@sh.itjust.works 4 months ago
Theoretically, someone could untangle the spaghetti. Nobody will, but automatic updates at least opens up the possibility.
Pechente@feddit.org 4 months ago
I agree. I don’t hate wordpress. It seems a bit dated by today’s standards and bloated in some aspects but you can definitely make a solid, fast website with it. It’s getting a bad reputation for its toxic plugin dev scene and crappy sites built using Elementor.
nerdovic@feddit.de 4 months ago
Elementor shudders
Donut@leminal.space 4 months ago
As someone who found elementor the only thing that was working at the time - any suggestions to do better? I have no coding experience fyi
Pechente@feddit.org 4 months ago
Coding is pretty much the only way to make a site that is both flexible and fast. If you wanna stay with page builders, I’d recommend something like webflow or framer but going with these closed systems is really not that amazing longterm. You’re gonna sink a lot of money into a system that will almost certainly enshittify in the future.
If you’re willing to pick up coding, try to make your own theme with something like Advanced Custom Fields in wordpress or switch to something like Kirby CMS which is more flexible out of the box than wordpress and has great docs.