Welcome to ManageWP.org

Register to share, discuss and vote for the best WordPress stories every day, find new ideas and inspiration for your business and network with other members of the WordPress community. Join the #1 WordPress news community!

×

Packaged WordPress Plugins Need Automatic Updates

kevinmuldoon.com | Oct. 19, 2015 | 11 min read

How do you think we can make WordPress plugins packaged with themes more secure for users?

14 votes   Flag
Vladimir Prelovac

An easy way to do this is to require a central update mechanism in all plugins and themes accepted by Envato.

Reply
Kevin Muldoon

Sorry. I must have missed the update saying someone had commented.

I definitely think they need to introduce something like that. The current system means that many WordPress users are vulnerable when a plugin is exploited.

Reply
Sallie Goetsch (rhymes with 'sketch')

I don't think plugins should be packaged with themes, but since developers are going to do it regardless of my opinion, it would be a good idea to set up that update mechanism.

Reply
Kevin Muldoon

I can see both sides of that argument.

On the one hand, if theme developers did not package plugins with themes, all of this would be a non issue. However, I can see why developers include plugins such as Visual Composer with their themes as it adds so much additional functionality for the user.

Reply
Sallie Goetsch (rhymes with 'sketch')

It also adds bloat, and other theme developers manage to include notices on activation that basically say "If you want this theme to work like the demo, install x, y, z plugins," and even to allow for a batch install. So you aren't forced to get anything that you might not need.

Reply