<font size="2"><font face="tahoma,sans-serif">No problem and knowledge of PHP Security in my opinion goes before that but they are very much related ;) And that's just me. I am no expert.<br clear="all"></font></font><div>
<strong>----</strong></div><div><strong>Emil Uzelac</strong> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a> | <a href="http://themeid.com/" target="_blank">http://themeid.com</a></div>
<div><font color="#999999">Make everything as simple as possible, but not simpler. - Albert Einstein</font></div><br>
<br><br><div class="gmail_quote">On Mon, Apr 18, 2011 at 2:06 AM, carolina n <span dir="ltr"><<a href="mailto:myazalea@hotmail.com">myazalea@hotmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div>
Thank you,<br>
I was thinking more theme specific, the likes of<br>
<a href="http://wordpress.stackexchange.com/questions/13539/what-are-security-best-practices-for-wordpress-plugins-and-themes" target="_blank">http://wordpress.stackexchange.com/questions/13539/what-are-security-best-practices-for-wordpress-plugins-and-themes</a><br>
<br>
<br>
<hr>
From: <a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a><br>Date: Sun, 17 Apr 2011 22:44:43 -0500<br>To: <a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br>
Subject: Re: [theme-reviewers] Where can I learn more about theme security<div><div></div><div class="h5"><br><br><font size="2"><font face="tahoma,sans-serif">You can start from basics such as <a href="http://php.net/manual/en/security.php" target="_blank">http://php.net/manual/en/security.php</a> and move on to <a href="http://phpsec.org/projects/guide/" target="_blank">http://phpsec.org/projects/guide/</a> and also <a href="http://codex.wordpress.org/Hardening_WordPress" target="_blank">http://codex.wordpress.org/Hardening_WordPress</a> there you will find an additional resources as well.<br clear="all">
</font></font>
<div><strong>----</strong></div>
<div><strong>Emil Uzelac</strong> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a> | <a href="http://themeid.com/" target="_blank">http://themeid.com</a></div>
<div><font color="#999999">Make everything as simple as possible, but not simpler. - Albert Einstein</font></div><br><br><br>
<div>On Sun, Apr 17, 2011 at 10:34 PM, <a href="mailto:myazalea@hotmail.com" target="_blank">myazalea@hotmail.com</a> <span dir="ltr"><<a href="mailto:myazalea@hotmail.com" target="_blank">myazalea@hotmail.com</a>></span> wrote:<br>
<blockquote style="border-left:rgb(204,204,204) 1px solid;padding-left:1ex">As the title sais.<br>Are there any mustreads, and what sources are reliable. There isnt alot on this on Wordpress.org or i missed it. <br><br>or should I just learn more php?<br>
<br><br>Skickat från min HTC<br><br>
<div>----- Reply message -----<br>Från: "Emil Uzelac" <<a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a>><br>Till: <<a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a>><br>
Rubrik: [theme-reviewers] Join the team<br>Datum: mån, apr 18, 2011 04:04<br><br></div><br><font size="2"><font face="tahoma,sans-serif">menu is OK, widgetized menu is OK too ;)<br clear="all"></font></font>
<div><strong>----</strong></div>
<div><strong>Emil Uzelac</strong> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a> | <a href="http://themeid.com/" target="_blank">http://themeid.com</a></div>
<div><font color="#999999">Make everything as simple as possible, but not simpler. - Albert Einstein</font></div><br><br><br>
<div>On Sun, Apr 17, 2011 at 7:54 PM, Chip Bennett <span dir="ltr"><<a href="mailto:chip@chipbennett.net" target="_blank">chip@chipbennett.net</a>></span> wrote:<br>
<blockquote style="border-left:rgb(204,204,204) 1px solid;padding-left:1ex">I actually disagree regarding the "Menu" Widget - maybe. :)
<div><br></div>
<div>If the Theme simply provides a Widgetized sidebar, and no "Navigation Menu" markup, then this approach is fine. However, if the Theme has what would reasonably considered to be the design intent of a Navigation Menu, then that implementation must support the core Nav Menu feature.</div>
<div><br></div>
<div>Basically: Themes are not *required* to provide Navigation Menus, but if they *do* provide a Navigation Menu, then it must support the core functionality.</div>
<div><br></div>
<div><font color="#888888">Chip</font>
<div>
<div></div>
<div><br><br>
<div>On Sun, Apr 17, 2011 at 7:13 PM, Emil Uzelac <span dir="ltr"><<a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a>></span> wrote:<br>
<blockquote style="border-left:rgb(204,204,204) 1px solid;padding-left:1ex">
<div>
<div><font size="2"><font face="tahoma,sans-serif">1. The theme uses the text domain of Twenty Ten in a few spots. If I remember correctly from lurking on the list this is a reason for failure of the theme.</font></font></div>
</div>
<div><font face="Tahoma"><strong>Yes, Twenty Ten should be changed to i.e. silverville</strong></font></div>
<div>
<div><strong><font face="Tahoma"></font></strong> </div>
<div><font size="2"><font face="tahoma,sans-serif">2. They use a widget for the menu and instruct the user to add the Pages widget. It seems to me that it's a much better option to use a WordPress menu which defaults to list pages. I don't believe this is an issue for a fail but probably a good suggestion as an update to the user.</font></font></div>
</div>
<div><font face="Tahoma"><strong>This part is just fine. As long as there are options for menu and being fully functional.</strong></font></div>
<div>
<div><strong><font face="Tahoma"></font></strong> </div>
<div><font size="2"><font face="tahoma,sans-serif">3. The CSS fails on the background-color since it's value is set to 'none' when it should be set to 'transparent'. Would this typically be a reason for failure if all other CSS is okay?</font></font></div>
</div>
<div><font face="Tahoma"><strong>background-color: none; is invalid and it should be transparent. Recommendation would be background: none; or background-image: none; and not many people use the last one anymore. It's shortcoded via background.</strong></font></div>
<div>
<div><strong><font face="Tahoma"></font></strong> </div>
<div><font size="2"><font face="tahoma,sans-serif">4. There are a number of other 'recommended' items in Theme Check but these are not a reason to fail a theme correct?</font></font></div></div>
<div><font size="2"><font face="tahoma,sans-serif"><strong>Recommended isn't required, if recommendations don't cause problems, no need to fail.<br clear="all"></strong></font></font></div><font size="2"><font face="tahoma,sans-serif"></font></font>
<div>Emil</div>
<div><strong></strong> </div>
<div><strong>----</strong></div>
<div><strong>Emil Uzelac</strong> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a> | <a href="http://themeid.com/" target="_blank">http://themeid.com</a></div>
<font color="#888888">
<div><font color="#999999">Make everything as simple as possible, but not simpler. - Albert Einstein</font></div></font>
<div>
<div></div>
<div><br><br><br>
<div>On Sun, Apr 17, 2011 at 7:01 PM, Curtis McHale <span dir="ltr"><<a href="mailto:curtis@curtismchale.ca" target="_blank">curtis@curtismchale.ca</a>></span> wrote:<br>
<blockquote style="border-left:rgb(204,204,204) 1px solid;padding-left:1ex">I have a few questions about my first theme review.
<div><br></div>
<div>1. The theme uses the text domain of Twenty Ten in a few spots. If I remember correctly from lurking on the list this is a reason for failure of the theme..</div>
<div>2. They use a widget for the menu and instruct the user to add the Pages widget. It seems to me that it's a much better option to use a WordPress menu which defaults to list pages. I don't believe this is an issue for a fail but probably a good suggestion as an update to the user.</div>
<div>3. The CSS fails on the background-color since it's value is set to 'none' when it should be set to 'transparent'. Would this typically be a reason for failure if all other CSS is okay?</div>
<div>4. There are a number of other 'recommended' items in Theme Check but these are not a reason to fail a theme correct?</div>
<div><br></div>
<div>I could probably go further in to the theme but I wanted to double check on the text domain item before I did.</div>
<div>
<div><br>Curtis McHale<br>PH: 604.751.3482<br><a href="http://www.curtismchale.ca/" target="_blank">http://www.curtismchale.ca</a><br>Linkedin: <a href="http://www.linkedin.com/in/curtismchale" target="_blank">http://www.linkedin.com/in/curtismchale</a><br>
Twitter: <a href="http://twitter.com/curtismchale" target="_blank">twitter.com/curtismchale</a><br><br><br><br></div>
<div>
<div></div>
<div>
<div>On Sat, Apr 16, 2011 at 4:39 PM, Edward Caissie <span dir="ltr"><<a href="mailto:edward.caissie@gmail.com" target="_blank">edward.caissie@gmail.com</a>></span> wrote:<br>
<blockquote style="border-left:rgb(204,204,204) 1px solid;padding-left:1ex">Here ya go: <a href="http://themes.trac.wordpress.org/ticket/3320" target="_blank">http://themes.trac.wordpress.org/ticket/3320</a><br>This will get you started ...<br>
<br><br>Cais.<br><br>
<div>On Sat, Apr 16, 2011 at 7:15 PM, Curtis McHale <span dir="ltr"><<a href="mailto:curtis@curtismchale.ca" target="_blank">curtis@curtismchale.ca</a>></span> wrote:<br>
<blockquote style="border-left:rgb(204,204,204) 1px solid;padding-left:1ex">Figured I'd finally get off my butt and join the team after looking at the list for a few months. My trac name is curtismchale
<div><br>Curtis McHale<br>PH: <a>604.751.3482</a><br><a href="http://www.curtismchale.ca/" target="_blank">http://www.curtismchale.ca</a><br>Linkedin: <a href="http://www.linkedin.com/in/curtismchale" target="_blank">http://www.linkedin.com/in/curtismchale</a><br>
Twitter: <a href="http://twitter.com/curtismchale" target="_blank">twitter.com/curtismchale</a><br><br></div><br>_______________________________________________<br>theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br><br></blockquote></div><br><br>_______________________________________________<br>
theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br></div></div></div><br>_______________________________________________<br>theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br><br></blockquote></div><br></div></div><br>_______________________________________________<br>
theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br></div></div></div><br>_______________________________________________<br>theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br><br></blockquote></div><br><br>_______________________________________________<br>
theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br><br></div></div>_______________________________________________ theme-reviewers mailing list <a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a> <a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a> </div>
<br>_______________________________________________<br>
theme-reviewers mailing list<br>
<a href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br>