elithrarApr 1

EmDash – a spiritual successor to WordPress that solves plugin security

https://blog.cloudflare.com/emdash-wordpress/

Introducing EmDash — the spiritual successor to WordPress that solves plugin security

Today we are launching the beta of EmDash, a full-stack serverless JavaScript CMS built on Astro 6.0. It combines the features of a traditional CMS with modern security, running plugins in sandboxed Worker isolates.

The Cloudflare Blog
Show thread8organicbits

I don't think it's the code that makes WordPress valuable. I've been learning WordPress recently and haven't been too impressed with the internals. WordPress is valuable because of the ecosystem and support. I have no doubt that WordPress will still be a thing in ten years. What's the support plan for EmDash? I see commits are mostly from a single developer.

E: Oh, I think it's an April fools joke, I'm embarrassed.

E2: Apparently not a joke.

Apr 1 at 4:51pmWeb
Show threadthisislife2Apr 1
There's always https://textpattern.com/ which is also as old as Wordpress (older?) and better coded. (See also thttps://textpattern.org/ ).
Textpattern CMS | Open source content management system

Textpattern CMS is a free, PHP open source CMS (content management system) with a browser-based interface in over 50 languages.

Textpattern CMS
Show threadzdragnarApr 1

It stores plugins as strings in the database, then pulls those strings back and evals them as PHP on requests.

"Better coded" is very much a subjective assessment.

Show threadhatmanstackApr 1
There might be pie on your face but they stole my line, https://github.com/HatmanStack/kill-wordpress
Show thread8organicbitsApr 1

I think you need to account for the base rate. There's a lot of WordPress plugin vulnerability disclosures because there's a lot of WordPress plugins and there are enough deployments of the plugins to make searching for those vulnerabilities is worthwhile.

That site warns that WordPress plugins can be abandoned, but that's clearly not a WordPress specific issue. Sure some site could use SSG, but that's a different design.

I certainly don't want to claim WordPress security is good, but I'm not sure that site is measuring anything meaningful.

Show threadhatmanstackApr 1
Just measured your visit, zing.
Show threadkbdotApr 1
Cloudflare doesn't do April fools jokes. In fact, 1.1.1.1 was released on April 1st back in 2018 and now it's one of the most used DNS service in the world.
Show threadbenatkinApr 1

It's a legit April Fools'.

On the initial commit:

> Some content is hidden

> Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

This for "a spiritual successor to WordPress".

Show threadmygoochApr 1
[dead]
Show threadRobdel12Apr 1
Hm, you might want to catch up on the Wordpress “open source” drama with WP.com vs .org, WP engine and Matt.
Show threadjgrahamcApr 1
I can assure you this is not an April Fools. Cloudflare does not do that. This is a real project.
Show threadreaperducerApr 1

I can assure you this is not an April Fools. Cloudflare does not do that.

It should. I miss the days when tech was interesting and fun.

Even Steve Jobs, for all his later-day revisionist hard-assed reputation, enjoyed the occasional Easter egg, inside joke, or April Fool's joke.

Show threadalsetmusicApr 1
I hated that shit. I'd load Slashdot and there was no real content or it was difficult to find real news amongst all the crap. It's not funny. It's annoying.
Show threadreaperducerApr 1
I feel bad for you. That's a lot of anger over virtually nothing.
Show threadHeWhoLurksLateApr 1
I appreciate a good April Fools joke, I also appreciate CloudFlare's approach of "we're extra serious today, here's some useful stuff for ya"