Tutorial - Plugin Security: Common Vulnerabilities

[jonathanbossenger]

Topic Description

In the plugin security best practices tutorial we covered the 5 top ways you can ensure your plugin is developed securely. However, it's important to understand why you need to follow these principles.

In this tutorial, we will cover the top 3 Common Vulnerabilities that are found in plugins, and how to use the practices taught in the previous tutorial to combat them.

Related Resources

Links to related content on Learn, HelpHub, DevHub, GitHub Gutenberg Issues, DevNotes, etc.

• Common Vulnerabilities

Guidelines

Review the team guidelines

Tutorial Development Checklist

• Vetted by instructional designers for content idea
• Provide feedback of the idea
• Gather links to Support and Developer Docs
• Review any related material on Learn
• Define several SEO keywords to use in the article and where they should be prominently used
• Description and Objectives finalized
• Tutorial created and announced to the team for Q/A review
• Tutorial reviewed and ready to publish
• Tutorial submitted and published to WPTV
• Tutorial published on WPTV
• Tutorial captioned
• Tutorial created on Learn.WordPress.org
• Tutorial post reviewed for grammar, spelling, etc.
• Tutorial published on Learn.WordPress.org
• Tutorial announced to Marketing Team for promotion

[jonathanbossenger]

A great list of additional improvements is mentioned here.

[jonathanbossenger]

Lesson plan/script for this tutorial: https://github.com/jonathanbossenger/wp-content/blob/main/tutorials/wordpress-common-vulnerabilities.md

[jonathanbossenger]

Common-security-vulnerabilities.mp4

Video for review.

[westnz]

Good job, Jonathan!

Review

• Clear video and instructions
• Annotations effectively used
• Check the voice recording at 3:38 / 3:39 seconds

[nomad-skateboarding-dev]

Overall Impression

Well done!

Specific Feedback

• Agree with @westnz that this is a clear video and instructions.
• As Wes also noted, only non-technical part that was off was the transition at 3:38. I can tell you're saying, "The most", but it cuts in a millisecond late.

[jonathanbossenger]

Thanks, @westnz and @nomad-skateboarding-dev for the reviews.

With regards to the voice cut-off, this happens due to the Krisp software I use to filter out white noise, etc. It sometimes cuts off the first word I speak. I'll try and do my best to cough or click my fingers before I speak in the future 😁

[jonathanbossenger]

Published https://learn.wordpress.org/tutorial/extending-wordpress-common-security-vulnerabilities/