CURRENT STATUS – Security

  • Plugin Author Jonathandejong

    (@jonathandejong)


    1 year ago

    Hi!
    I’m the author and just want to inform everyone that the plugin will get an update fixing the security issue asap.

    I’ve had health issues that timed poorly with me getting the email from the WordPress plugin team about the issue and therefore it’s a little bit delayed but I expect to have an update this week with a fix.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Jonathandejong

    (@jonathandejong)

    1 year ago

    Status update: I’ve addressed the security issues as well as taken the whole code base through a full audit using the Plugin Check https://wordpress.org/plugins/plugin-check/.

    I will inform the WP team as soon as I’ve got this tested to ensure that the functionality has not changed after making all the necessary changes.

    EDIT: If anyone would like to help test this new version and are familiar with composer it’s possible to pull down 2.4.4 with the fixes using wpackagist as such:

    composer require "wpackagist-plugin/beautiful-taxonomy-filters":"dev-trunk"

    DO NOT USE THIS IN PRODUCTION
    The trunk version should be only for helping with testing. I cannot guarantee it will not crash your site until its been tested.

    Thank you for your patience

    Plugin Author Jonathandejong

    (@jonathandejong)

    1 year ago

    Status update:

    The plugin have been submitted for re-review with the plugin team as of version 2.4.4. The security issue has been addressed as well as all findings from the automatic tests run by the Plugin Check plugin.

    Recognising that there’s some urgency to this update I’ve focused this release on just these issues so once it’s back, please do update as soon as possible to avoid exposing your sites.

    I’m continuing to work on a larger overhaul of the codebase which will come later. I will take care avoiding breaking changes for everyone as much as humanly possible πŸ™‚

    Plugin Author Jonathandejong

    (@jonathandejong)

    1 year ago

    Status update:

    We are back folks! The plugin have passed the review and I encourage everyone to update.
    One important note: In the process of updating the Select2 based dropdowns are experiencing a bug where clicking a dropdown immediately closes it again. So if you update to 2.4.4 you’ll want to disable the select2 feature.

    I am planning to get a 2.4.5 release out asap with a fix for this and plan to have that in place before the end of the weekend.

    Thank you everyone for your understanding.

    Plugin Author Jonathandejong

    (@jonathandejong)

    1 year ago

    Status update:

    2.4.5 is out with some fixes to Select2 behaviour. Hopefully this release also gets recognised as a fix by the automatic tester systems. I’ve no idea why but for some reason they claim 2.4.4 still contained the security issue which is not true.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘CURRENT STATUS – Security’ is closed to new replies.