Most of the time $Sender is a Gdn_Controller, which has a form, but sometimes it is a Gdn_Model or something different.
In that case, you can always use Gdn::Controller() to get the current controller.
the email server doesn’t have to be hosted by you.
"fake mail" these day pretty much get instantly rejected by spam filters.
Check Zoho Mail policy on transactional mail, some email services restrict …
No you should never use addslashes for sql
sql statements need to be escaped as a whole not just the values, the later is not considered safe for many years.
PDO uses prepare which is abstracted by the framework.
you should be initialising these driver directly anyway. What if they switch from MySQL to Postgres or SQL Light?
However I question why you are using this directly what is the query?
General speaking security/minor update are less likely to break thing (unless the plugin itself is using insecure methods). It is when there is a major release, like every two year that they can be a bigger transition.
I mean phpBB recently do a ma…
@luasoft that is core functionality, so removing with break most of the functionality of the forum. It di completely normal.
What you can do is translate that specific error.
But removing that script is not an option if you wan to use vanilla as i…
I don't think it is weird at all.
Lot of people do lots of different things. That does't mean it should be in the core. If they included every want an need it would be super bloated.
It is called Vanilla not Tuti-Fruti. That is why vanilla is plug…
Basically only core team pluigns don't have that warning. I can vouch for businessdad he is professional.
It used to be that people got their plugin approved, but nowadays nobody bothers, and I don't think the core team have time for it.
I'm a bit cavalier myself, but if you've just made a good backup, my outlook is always: what's the worst that could happen? Everything breaks, you restore from backups, and then we'll try it again slower, manually.
What is versi…
Sorry I should be clearer, anything which has functions that will be set up or registered to be called by a GPL software (e.g. uses hooks), that originator needs to use discretion for licence, and is treated differently than libraries.
I am happy with this. I generally MIT unless I have to GPL such as a derivative work.
I use LICENSE.txt
Technically you are using your discretion, as I researched if you don't explicitly state, all addon could be deem in court to would fall under …
It would indeed be a good idea, if browser would relax those mixed content errors, like many have already. The secure web might happen. Obviously they will still block critical insecure content.
Then if you can use TLS.
Open SSL had exploits, and …
why are you using SSL anyway? Have you thought about that?
Some time site uses https simply becuase to the perception of https rather than actually needing for the whole site. I'm not knocking this strategy. It can be for sound commercial reason bu…
Okay, well not to offend you, but does this really do the trick the whole way or? For some reason i would trust a button in the dashboard more then 2 lines of code.. Just saying im a newb and wondering why this code isnt in the…