Download to read offline
Uploaded byJessica C. Gardner
Vetting Plugins : WordCamp Columbus 2015
The document discusses vetting WordPress plugins by evaluating them for safety, reliability, and functionality before and after installation. It provides tips for determining if a plugin is needed, criteria for evaluating plugins such as authority, currency, and accuracy, and ways to keep plugins secure after installation such as scanning for vulnerabilities and updating regularly. The goal is to avoid installing buggy, outdated, bloated, or insecure plugins that could hurt a WordPress site.
Vetting Plugins : WordCamp Columbus 2015
- 1. VETTING PLUGINS Assessing Extensionsfor Safety, Reliability and Function #wccbus 2015 @JESSICACGARDNER #WCCBUS
- 2. ALL ABOUT ME+ WHY I’M TALKING ABOUT THIS Jessica Gardner @jessicacgardner http://www.jessicacgardner.com http://www.btwrx.com @JESSICACGARDNER #WCCBUS
- 3. OVERVIEW 1. What aplugin does to your install, and how it can hurt; 2. How to decide whether you need a plugin at all; 3.9 points to consider BEFORE installing a plugin; 4. How to stay safe and happy AFTER installing a plugin @JESSICACGARDNER #WCCBUS
- 4. 1. WHAT PLUGINSDO (IN A LITTLE NUTSHELL) @JESSICACGARDNER #WCCBUS
- 5.
- 6.
- 7.
- 8. 2. DO YOU*REALLY* NEED A PLUGIN? @JESSICACGARDNER #WCCBUS
- 9.
- 10. 3. EVALUATE PLUGINSLIKE A BOSS Avoid installing plugins that are: 1. Buggy; 2. Outdated; 3. Bloated; 4. Insecure; 5. A combination of one or more of the above. http://www.woothemes.com/2013/09/wordpress-plugins- ignorance/ @JESSICACGARDNER #WCCBUS
- 11. 3. EVALUATE PLUGINSLIKE A BOSS LIBRARIAN AUTHORITY CURRENCY USABILITY OBJECTIVITY ACCURACY http://www.library.kent.edu/criteria-evaluating-web-resources @JESSICACGARDNER #WCCBUS
- 12.
- 13.
- 14.
- 15.
- 16.
- 17.
- 18.
- 19.
- 20.
- 21.
- 22.
- 23. A FEW PLUGIN-SPECIFICCRITERIA HISTORY SUPPORT REVIEWS POPULARITY @JESSICACGARDNER #WCCBUS
- 24.
- 25.
- 26.
- 27.
- 28.
- 29.
- 30.
- 31.
- 32. JUST A FEW MORE…1.Does it load lots of scripts, styles or other assets? 2. Does it add extra database queries to each page? 3. Does it perform complex operations? 4. Does it perform remote requests (i.e. external APIs)? http://wpengine.com/2013/08/28/plugins-and-fast-wordpress-sites-its-not-the-number-of- plugins-its-the-quality/ @JESSICACGARDNER #WCCBUS
- 33. 4. KEEP YOURPLUGINS HAPPY AND SAFE! Before Install •Research! •BACKUP EVERYTHING! •Check for compatibility •Read readme.txt After Install 1. Scan for malicious code and/or vulnerabilities 2. Check effect on performance 3. UPDATE 4. Keep tabs on possible exploits 5. Delete any unused plugins @JESSICACGARDNER #WCCBUS
- 34.
- 35.
- 36.
- 37.
- 38. HELPFUL RESOURCES Plugin Checker– detects certain plugins in (some) WordPress installations: http://wppluginchecker.earthpeople.se/ Plugin Vulnerabilities Database – compiled by WPScan: https://wpvulndb.com/plugins An Excellent Article detailing WHY and HOW to determine whether you need a plugin: http://sixrevisions.com/wordpress/before-install- wordpress-plugin/ Top 15 WordPress Plugins Every Website Needs in 2015 (with a very nice graphic of the WP logo + a plug): http://www.fuzzyduckdesign.com/wordpress-plugins/ @JESSICACGARDNER #WCCBUS
- 39.