Additional Configuration for webpack

This article builds on top of the webpack.config.js file we created in the article Extending the WordPress Create Block Script webpack Config. If you have not read that article, you may want to give it a quick read. Supporting CSS Cross Browser with Polyfills and Prefixes Before we jump in, I want to give credit…

Compiling Sass for Multiple Blocks with the webpack Config

This article shows an example of how to use the Sass files we setup in the article Extending the WordPress Create Block Script webpack Config with multiple blocks within the same plugin. If you have not read that article, please read it first. Setting up Multiple Blocks As I mentioned in the previous article, adding…

Extending the WordPress Create Block Script webpack Config

With official support from the WordPress Editor (Gutenberg) team, you can now quickly get up and running with a block plugin using the WordPress Create Block Script (@wordpress/create-block npm package). In this article we explore how you can add a custom webpack.config to expand the wp-scripts compiling functionality of the block generated by the block.…

An Overview of the WordPress Create Block Script

The official WordPress Editor (Gutenberg) team have provided a neat little script for you to create a block plugin with their @wordpress/create-block npm script. This article gives an overview of the WordPress Create Block Script, along with details of what it outputs. Running the Create Block Script The official documentation gives you a few different…

What do Bloggers think about the WordPress Block Editor (Gutenberg)?

We asked a group of bloggers what they think about WordPress Gutenberg (also known as the block editor) and how it’s changed their blogging game for the good, the bad and the ugly… Blogging has come a long way since Justin Hall’s ‘personal webpage’ on links.net in 1994.  It’s no longer considered just a hobby, as…

Stop Clickjacking by preventing your WordPress site from Loading in a Frame

Clickjacking is a potential security risk caused by someone loading your website inside a frame on another website and making it appear as if the website is legitimate, however they will be hijacking interactions you make with that site, such as form submissions. For example if your website requires a user to login, the malicious…

Prevent XSS (Cross-Site Scripting) by escaping values in your WordPress templates

If you are developing a WordPress theme or plugin then it is important to make it as secure and robust as possible. One way to do this is to properly escape values that you use in your project so that XSS (Cross-Site-Scripting) is prevented. An example of a XSS attack may be that you have…