Mobile Monday

Mobile Monday: Mobile-First CSS: Is It Time for a Rethink?

Classic mobile-first CSS development is based on the principle of overwriting style declarations: you begin your CSS with default style declarations, and overwrite and/or add new styles as you add breakpoints with min-width media queries for larger viewports (for a good overview see “What is Mobile First CSS and Why Does It Rock?”). But all those exceptions create complexity and inefficiency, which in turn can lead to an increased testing effort and a code base that’s harder to maintain. Admit it—how many of us willingly want that?

Security Sunday

Security Sunday: Cross-Site Scripting: The Real WordPress Supervillain

Cross-Site Scripting is a type of vulnerability that allows a malicious actor to inject code, usually JavaScript, into otherwise legitimate websites. The web browser being used by the website user has no way to determine that the code is not a legitimate part of the website, so it displays content or performs actions directed by the malicious code. XSS is a relatively well-known type of vulnerability, partially because some of its uses are visible on an affected website, but there are also “invisible” uses that can be much more detrimental to website owners and their visitors.

Design & Dev Tuesday

Design & Dev Tuesday: What to Know about PHP and the Latest PHP Version

If you’re running WordPress sites, you’ve probably heard the term “latest PHP version” thrown around. Well-known sites like Facebook and Wikipedia are websites developed using the PHP language. Additionally, 40% of the web is powered by WordPress which is built using PHP. But, what is it? And why do you have to use the latest version?