Over 90 WordPress themes, plugins backdoored in supply chain attack

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

Our great sponsors
  • SonarLint - Deliver Cleaner and Safer Code - Right in Your IDE of Choice!
  • Scout APM - Less time debugging, more time building
  • SaaSHub - Software Alternatives and Reviews
  • Ghost

    Turn your audience into a business. Publishing, memberships, subscriptions and newsletters.

    The CMS space is incredibly crowded. The vast majority of WordPress websites would be cheaper, faster, and more secure if they were just moved to SquareSpace, which has the WordPress features that 99% of sites would need.

    For more custom projects, I prefer the headless variety[1] because it makes sense to separate the data and presentation layers. That means you have the full ecosystem and flexibility of HTML/CSS/JS.

    Ghost[2] was the first serious competitor I saw years ago. Gatsby is among the most popular these days[3].

    But honestly, information sites should just use SquareSpace or something like it. There's no reason to maintain static site infrastructure at this point.

    1. https://jamstack.org/

    2. https://ghost.org/

    3. https://www.gatsbyjs.com/

  • utterances

    :crystal_ball: A lightweight comments widget built on GitHub issues

  • SonarLint

    Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.

  • Publii

    Publii is a desktop-based CMS for Windows, Mac and Linux that makes creating static websites fast and hassle-free, even for beginners.

  • ProcessWire

    Our repository has moved to https://github.com/processwire – please head there for the latest version. (by ryancramerdesign)

  • wp2static

    WordPress static site generator for security, performance and cost benefits

  • Wagtail

    A Django content management system focused on flexibility and user experience

  • Gatsby

    Build blazing fast, modern apps and websites with React

    The CMS space is incredibly crowded. The vast majority of WordPress websites would be cheaper, faster, and more secure if they were just moved to SquareSpace, which has the WordPress features that 99% of sites would need.

    For more custom projects, I prefer the headless variety[1] because it makes sense to separate the data and presentation layers. That means you have the full ecosystem and flexibility of HTML/CSS/JS.

    Ghost[2] was the first serious competitor I saw years ago. Gatsby is among the most popular these days[3].

    But honestly, information sites should just use SquareSpace or something like it. There's no reason to maintain static site infrastructure at this point.

    1. https://jamstack.org/

    2. https://ghost.org/

    3. https://www.gatsbyjs.com/

  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • jamstack.org

    The official Jamstack site

    The CMS space is incredibly crowded. The vast majority of WordPress websites would be cheaper, faster, and more secure if they were just moved to SquareSpace, which has the WordPress features that 99% of sites would need.

    For more custom projects, I prefer the headless variety[1] because it makes sense to separate the data and presentation layers. That means you have the full ecosystem and flexibility of HTML/CSS/JS.

    Ghost[2] was the first serious competitor I saw years ago. Gatsby is among the most popular these days[3].

    But honestly, information sites should just use SquareSpace or something like it. There's no reason to maintain static site infrastructure at this point.

    1. https://jamstack.org/

    2. https://ghost.org/

    3. https://www.gatsbyjs.com/

  • bedrock

    WordPress boilerplate with Composer, easier configuration, and an improved folder structure

    If you professionally build a WordPress site, please consider turning off the native plugin and theme management, and replace it with composer and files non-writable to PHP.

    https://roots.io/bedrock/ is a neat boilerplate for how this can be done.

  • Grav

    Modern, Crazy Fast, Ridiculously Easy and Amazingly Powerful Flat-File CMS powered by PHP, Markdown, Twig, and Symfony

    If you're not completely against markdown, I particularly like Grav (https://getgrav.org) combined with the optional Admin plugin. Very quick and easy installation; I don't need to keep detailed notes on getting the exact packages loaded to make it work.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts