Tim Nash

Episode 610 Digital Security, Trust, and WordPress Updates With Tim Nash - Stunning Digital Marketing Show Highlights The source is an excerpt from “The SDM Show,” hosted by Rob Cairns, featuring guest Tim Nash, a security expert. The discussion centers on various cybersecurity topics, including recen...

Talking Security and Trust with @tna.sh

stunningdigitalmarketing.com/episode-610-...

Still time for you to get on a train/plane/automobile and get to London for WPLDN this evening and come and be scared with WordPress horror tales!

Want a sneak peek here is my opening slide for tonight horror tale.

WP Builds LIVE - Watch us live! Watch us LIVE over at WP Builds. Something WordPress related coming your way!

Today 🎉Join us Nathan Wrigley, Michelle Frechette, Tim Nash and me
@nathanwrigley.com @michellefrechette.bsky.social @bsky.app/profile/tna.sh #TWiW #WordPress at 15:00 CEST (13:00 UTC) wpbuilds.com/live

I like it!

#WPLDN - October 2025: WP Halloween Horror Stories & AI Open Topics, Thu, Oct 30, 2025, 6:00 PM | Meetup 🎃 **Happy (almost) Halloween, #WPLDN!** 🎃 October brings our annual tradition: Tim Nash returns to spread WordPress horror stories just in time for Halloween. But this y

Come join myself and the rest of the folks @wpldn.uk for a spooky Haloween special...

www.meetup.com/london-wordp...

What does Wapuu do?

Nothing. Absolutely nothing.
It doesn’t boost SEO.
It doesn’t compress images.
It doesn’t even have a block editor opinion.
It just sits there, hugging its WordPress orb like it knows the secret to the custom post type apocalypse.

I would point to wordpress.org/plugins/wapu...

Currently playing will I have made it to stable internet connection in time for the show! Not to scary @nathanwrigley.com to much.

WP Builds LIVE - Watch us live! Watch us LIVE over at WP Builds. Something WordPress related coming your way!

Join us LIVE for the 'This Week in #WordPress' show. It's fun, and we'd love your comments, really! Starts in a couple of hours, so 2pm UK time.
wpbuilds.com/live
This week, I'm with Michelle Frechette, Tim Nash and Courtney Robertson.
@michellefrechette.bsky.social @tna.sh @courtneyr.dev #TWiW

Nothing is truly random by Tim Nash A deep dive into how WordPress’s wp_rand() works, what a CSPRNG is, and why some warnings about it are misplaced.

Ever wondered how random wp_rand() really is?

No? I'm not surprised I would be more surprised if you knew this function even existed in WordPress.

Now you do, are you curious?
So was I let's go on a random adventure!

timnash.co.uk/nothing-is-t...

I hope it involves lavalamps?

Nothing is truly random by Tim Nash A deep dive into how WordPress’s wp_rand() works, what a CSPRNG is, and why some warnings about it are misplaced.

Want something to read on your Sunday afternoon? Come join me on a random adventure into wp-rand()

timnash.co.uk/nothing-is-t...

#wordpress

It's here! Menu Designer has landed at WP.org!

Menu Designer is a powerful new way to build beautiful mobile menus and dropdown menus in the @WordPress block editor — no coding required. And now it's available right in your dashboard.

wordpress.org/plugins/oll...

WordPress 6.8.3 is here! This crucial security release addresses vulnerabilities to keep your site safe. Update now and ensure your site is secure! Learn more about the updates and download it here: wp.me/pZhYe-4ZK.

p.s If you found it helpful, do share the video for some this might be the thing that makes them go, oh that makes sense.

The Dark Side of Automatic Updates: Securing WordPress Supply Chains in CI/CD Automatic updates in WordPress are a safety net, ensuring that sites are always running the latest code. But for development teams working with continuous integration and delivery (CI/CD), the real…

I was lucky to present at #WCGdynia on automatic updates.

Even if you don't use them I encourage you to watch this talk, not to convince you, but to see what things you can do around updates in general to make them safer and more reliable. (Hint it's testing)

wordpress.tv/2025/09/30/t...

Has yours?
If not what a sucky morning you must be having clicking an update button.

Coincidentally my talk on automatic updates just dropped on @wordpress.org TV

wordpress.tv/2025/09/30/t...

Comment. Like. Comment. Subscribe. That’s what the YouTubers say isn’t it? I miss folks commenting on blog posts really. At my peak I’d post a blog post at home, walk the half a mile from my student digs to university, and then be greeted with 4 or 5 comments. Now? I think I’ve had one comment … Continue reading

NEW POST: On being inspired at #loopconf and hitting publish on a blog post I had half written....

Thanks! I'm off to hibernate for a week.

The Long Way to WordCamp Gdynia: LoopConf, WPLDN and a Lot of Coffee by Tim Nash From Leeds to London for WPLDN and LoopConf, then on to WordCamp Gdynia — turns out Poland is easier to reach than the capital. A week of security talks, AI debates, community, and flight delays.

Taking @ohhelloana.blog talk seriously and hit publish...
The long way to WordCamp Gdynia 🚀
Leeds → London (WPLDN + LoopConf) → Poland 🇵🇱
Turns out it’s quicker to get to Gdynia than London.
timnash.co.uk/the-long-way...

#loopconf #WCGdynia

You can send me a message on LinkedIn linkedin.com/in/tnash
or via the WPUK Slack wpslack.uk

Both are logged in on my phone.
Please don't use Bluesky chat feature as I have no access to it! So you will just be a message I can't access.

Tim Nash in a coffee shop wearing a pink shirt.

Coming to #WPLDN but worried you don't know anyone? Events can be intimidating!

I really want to say Hi and I can hopefully gently introduce you to people.

If the idea of coming up to me is scary then just drop me a message and I will come to you even if it's outside of the venue.

This is me:

MWUG in full swing.

The wonderful @mwug.uk is back! Very excited to be here in Stockport which is totally Manchester...

But so happy to see it happening congrats to @rhys.wales @jwo.ng on re-launch.

I don't know there possibly is to much Evan...

GitHub Advisory Database A database of software vulnerabilities, using data from maintainer-submitted advisories and from other vulnerability databases.

Heads up!
If you make use of NPM there has been multiple packages compromised and distributing malware. List of effected packages github.com/advisories?q... including big ones like debug and chalk.

Some commentary on the event including from the Chalk dev news.ycombinator.com/item?id=4516...

☝️

TLS 2.0 - Because “Address Failed” Just Isn’t Good Enough Anymore – We are AG Remember our original Traffic Light System? You know, the one that gave you a few coloured circles and told you things like “Address failed”? It was useful, sure, but… it was basically the equivalent ...

The folks @weareag.bsky.social have rolled an update of one of my favourite features in their payment gateways, their Payment Failure Traffic Light system.

Making it so easy to understand payment issues, and identify potential fraud issues.

weareag.co.uk/tls-2-0-beca...

Melapress Role Editor The complete WordPress user roles plugin for everyone

I have been playing with wordpress.org/plugins/mela... as a replacement for User Role Editor. I didn't include it in the course as it was still Alpha and also the user module is very @melapress.bsky.social heavy!

How strange, they all use the same pattern so the links should not vary and the video control is also in the pattern. Will go take a look. Thanks for the heads up!

GitHub - timnashcouk/tn-tame-session-defaults: Taming your WordPress user sessions, to help reduce the chance of session hijacking Taming your WordPress user sessions, to help reduce the chance of session hijacking - timnashcouk/tn-tame-session-defaults

github.com/timnashcouk/...

It's hidden in the resource section but will make it more obvious thanks for the feedback!

I believe @melapress.bsky.social Login Security includes such a rule, but I would have to check.