The update and plugin-distribution network will work to eliminate critical supply chain security vulnerabilities, at the core of the system.
The Linux Foundation, which is a non-profit and neutral hub for developers and organisations, has announced a collaboration with WordPress and the launch of the FAIR Package Manager project. The aim is to address vulnerabilities in supply chain security, by giving users greater freedom when it comes to accessing the tools and plugins they need.
This is a shared and independent collection of trusted plugins and themes to be used by web hosts, commercial plugin and tool developers in the WordPress ecosystem. The project, through its contributors, will develop new ways for tools to interact, making the web publishing space more accessible and creative.
The project will be led by co-chairs, Carrie Dils, an educator and active figure in the WordPress community, Mika Epstein a longtime WordPress contributor and former manager of the plugin repository and Ryan McCue, a contributor and the developer behind the WordPress REST API.
“The FAIR Package Manager project paves the way for the stability and growth of open source content management, giving contributors and businesses additional options governed by a neutral community,” said Jim Zemlin, the executive director of the Linux Foundation. ”We look forward to the growth in community and contributions this important project attracts.”
Features of the FAIR Package Manager project include, a reduced reliance on single sources for core updates, plugins, themes and translations, further alignment towards GDPR measures, the pulling together of a fragmented ecosystem and higher supply chain security with improved cryptographic security measures and enhanced browser compatibility.
Commenting on the news, Dils said, “The FAIR Package Manager project gives the WordPress ecosystem a stronger, more independent foundation for delivering software. By decentralising distribution, we’re ensuring the long-term sustainability of this open source content management platform.
“For anyone building on WordPress, whether as a product, a service or critical infrastructure, the FAIR Package Manager project offers a trustworthy, stable path forward.”
Epstein added, “As a long-time advocate for open source and cooperative development, I’m very excited to be a part of the FAIR Package Manager project. The work we’re doing will improve not only the experience for users, but the sustainability and growth that the FAIR Package Manager project will make available to development companies, hosts, and agencies.
“The project removes technological bottlenecks and takes WordPress to the next level. With the help of some of the greatest minds in our community, we’re not just distributing development load, we’re distributing everything.”
Don’t miss out on the knowledge you need to succeed. Sign up for the Daily Brief, Silicon Republic’s digest of need-to-know sci-tech news.
