http://technosailor.disqus.com/enSun, 24 Sep 2006 18:42:59 -0000http://technosailor.com/2006/09/23/understanding-implications-of-wordpress-plugin-security/#comment-1033770<p>Perhaps it should be suggested to plugin authors that they request a security review via the forum or IRC? I'm not sure about the forum as I don't participate, but I know there are more than enough people who can check plugin security on the wp-hackers list and in #wordpress on freenode.</p>Andrew K.Sun, 24 Sep 2006 18:42:59 -0000http://technosailor.com/2006/09/23/understanding-implications-of-wordpress-plugin-security/#comment-1033769<p>This is why I keep my plugins as simple as possible. Obviously it's not possible to prevent everything in advance, but XSS and the like are low-hanging fruit: anybody writing code should understand them and be able to defend their code from them.</p>Michael HamptonSat, 23 Sep 2006 14:05:33 -0000