The #WordPress contributor Slack is turning into a clusterfuck.
-
Pedro Machado Santareplied to Terence Eden on last edited by
@Edent I don't even... that's brutal.
-
Andrea Grandi π¦replied to Terence Eden on last edited by
@Edent I'm absolutely not suggesting you to blog the whole story and post it to HN, but I may
it if you do it 
-
Terence Edenreplied to Andrea Grandi π¦ on last edited by
@andreagrandi
Thanks. I think enough pixels have been bled over this. -
β¦DSAR sent to to WordPress's GDPR team regarding this decision.
I wonder if they'll actually comply with the law?
-
@Edent this whole palaver melts my brain and I'm sorry to see you're impacted. What a farce.
-
@Edent I'd like to suggest that it's not Open Source that has a no dissent policy. Suggesting that is disparaging everyone who works in Open Source, the vast majority of whoem are level headed and willing to hear disagreement.
-
Of course, the continuing #WPDrama reminds us that there really is no need for a centralised "app store".
The #WordPress plugin directory is useful for *discovery*. But it probably makes more sense for plugins and themes to update from their own site / git rather than a capricious host.
-
@Edent centralized repositories aren't perfect, but I'd argue they are extremely important for your average WP user because they are well vetted. Having a repository of free apps that are easy to search, review, and consistently be able to find details like "last updated" is so handy. The most important feature though, was that users didn't have to run through the tools themselves to look for malicious code.
Without a central repository, most beginner WP users might avoid installing plugins. -
@docpop
The problem is, that vetting doesn't exist.I used a popular plugin which, at some point, was compromised. The bad version was uploaded to the WP directory. WP then delivered it to my blog where it started serving malware to my users and creating compromised admin accounts.
The directory isn't as well vetted as, say Google Play.
-
@Edent The advantage I saw was some assurance of code quality & security as plugins were vetted & devs got some viral benefit to help build a plugin user base. If some community effort could go into a true NFP run plugin repositry that could satisfy growth & security without enabling theft in the future
-
@dalereardon the problem is, the WP directory doesn't actually do much code validation. Dodgy plugins with malware are frequently uploaded.
-
frank goossens π§πͺπͺπΊreplied to Doctor Popular on last edited by
@docpop @Edent maybe @AspirePress can help us improve there?
-
Apparently the DPO at WordPress thinks messages related to a decision taken about me are exempt because⦠they're *internal* messages.
Well, yeah, I can read my public messages. I want to know what they said about me.
No doubt it'll bat back and forth until I have to get a regulator involved.
-
I finally got WordPress's DPO to see sense!
Looks like Matt is the sole arbiter of who gets to use the WordPress community slack.
