Blog
-
Upgrade Your WordPress Update Strategy
Whenever WordPress releases a new major version (6.4, 6.5, etc) a lot of people will wait to update their sites until the first minor release. So, for instance, 6.5.1. The idea behind it is have less mission-critical sites find the nasty bugs. Makes sense. I do this as well for my clients. But this might…
-
Deploy a Static Version of WordPress to Cloudflare Pages
-
How To: Only Load Styles for Used Blocks for Classic Themes
By default, WordPress will load all the styles for all the blocks all the time for Classic and Hybrid themes. Which is, you know, very much sup-optimal if we’re in the game of optimizing performance. And we very much are, aren’t we! With the should_load_separate_core_block_assets filter, we can now opt-in to this feature that was introduced in…
-
It’s Time to Review Your Entire WordPress Stack
I posted this on X over the weekend: Someone asked if this means they’d have to investigate their plugins. My answer was this: Yes, that’s one of the things. Stack means everything you are using ((hosting (server, database), plugins, theme, and WordPress itself). I would be highly suprised if you could NOT optimize every single…
-
How To Activate the Font Library for Classic Themes
UPDATE: I’ve included an extra step that disables the rendering of the block theme templates to make this work without issues. Since WordPress 6.5 we finally have the Font Library available to us. It’s available through the Styles panel within the Site Editor. This makes it only available to Block Themes (also known as Site…
-
How To Use WP CLI When Your Site is Hacked
If you find yourself in the unfortunate position of suspecting that your WordPress site has been compromised, it’s crucial to handle the situation with care. Before diving into your usual WP-CLI commands, pause for second. Running routine WP CLI commands on an infected site can escalate the issue, especially since WP-CLI may execute harmful code…
-
Everything about the Bricks Vulnerability and Hack. The Why, the How, and How to Prevent It
The popular Bricks pagebuilder for WordPress saw a severe vulnerability in early February of 2024. This vulnerability wreaked havoc in WordPress land as many sites got hacked. I did an interview with Calvin Alkan, the WordPress Security Researcher who found the hack and disclosed the solution with the Bricks team and published it on YouTube.…
-
Faster Google Analytics for your WordPress with Cloudflare Zaraz
I find it ironic that adding Google’s most popular tracking script to your WordPress site will actually worsen your Core Web Vitals. In most cases have to add a separate plugins, adding overhead that’s not really needed. Because, we can actually solve adding that script at a different level. Namely, Cloudflare with its Zaraz solution.…