tl;dr WooCommerce Core and related ecosystem plugins are transitioning away from Semantic Versioning and adopting WordPress versioning. This transition will begin with WooCommerce 5.0, which will be a non-breaking change. Background A few years ago, WooCommerce adopted a Semantic Versioning (SemVer) scheme for its releases. This adoption marked an improvement from what had been a […]
Category: Developer Advisory
Categories
Combating Spam Order Bots
tl;dr Stores without any anti-spam or antifraud measures in place may see an increase in spam orders due to a renewed attack from a bot probing sites for vulnerabilities. The Details In November of 2020, we shared an advisory for developers encouraging them to update to the latest version of WooCommerce due to a vulnerability […]
tl;dr WordPress 5.6 will ship with jQuery 3.5.1 and an updated version of jQuery Migrate, which will help you identify potential compatibility issues in your extensions. Developers should ensure extensions are compatible with jQuery 3 because the WordPress Core team is currently planning to phase out the use of jQuery Migrate in WordPress 5.7. The […]
tl;dr Versions of WooCommerce prior to 4.6.2 contain a vulnerability that allows guest users to create accounts during checkout even when the “Allow customers to create an account during checkout” setting is disabled. This vulnerability is being exploited by a bot to place spam orders and create user accounts that are then used to probe […]
tl;dr Inheritance errors due to incompatible method signatures will generate fatal errors in PHP 8, which may cause developer plugins to break. You should check your code for classes that extend functionality in their ancestor with methods that don’t have a matching signature and update those functions. The details In PHP 7, inheritance errors due […]
Develop with Woo 