WordPress receives an update that includes security and site integrity checks
WordPress extends the content management system that users have been seeking for years to an improved level of protection. The official version of WordPress 5.2 contains corrections for 33 errors, block editor and accessibility. Support for cryptographically-signed updates, the modern cryptography library, Admin's Site Health section, and PHP error protection are also included in this much-anticipated update.
WordPress announced this latest version with all these security updates even in the blog post. The latest version, also known as Jaco in honor of jazz bassist Jaco Pastorius, features two new pages that can be used to fix common configuration issues and add developer information to site managers. All these features will enhance the experience for developers. Co-founder of WordPress, Matt Mullenweg explains:
There are even more robust tools for detecting and fixing configuration problems and fatal errors. Whether you're a developer helping customers or managing your site on their own, these tools can help you get the right information when you need it.
The new feature of Site Health
The first security feature of WordPress 5.2 that users should notice after the update is the "Site Health" section of the "Tool" menu in the Administrator window. Two new pages – Site Health Status and Site Health Info – complete a series of basic security reviews and reports on the indications. The reports should include the results and recommendations for resolving the issues. In addition to the numerous tests, site owners and developers can write security tests and extend these checks to other areas.
The Site Health Info section contains information about the server configuration and the Web site. These server details should be shared with IT specialists as needed for support and debugging purposes. The information includes data about the original WordPress installation, the server, plug-ins, topics, and the file store. This feature helps self-administer the site with frequent configuration issues and other elements that improve proper online presence.
A modern cryptographic library included in the latest WordPress release
Scott Arciszewski, Chief Development Officer at Paragon Initiative Enterprises, is one of the developers involved in creating the latest WordPress update. He claims that hackers need to develop more sophisticated attacks after this 5.2 release. This message reassures people about potential malware or attacker issues. Support for cryptographically signed updates is important to prevent cyber threats and malicious actors.
Arciszewski also worked on the renewal of the cryptographic library through the new modern. The Libsodium library has been added to the WordPress CMS, starting with this 5.2 version. It replaces the old version of mcrypt with all cryptographic operations. This also means that developers of themes and plugins can support this software library. Scott Arciszewski even posted a post about this WordPress update, which explained all the details about replacing the cryptographic feature for developers.