Web development is better together. As we create increasingly ambitious digital experiences and build more mission-critical web presences, the number of people working together on these projects grows. Fading are the days where the list of everything you need to make a website can fit on the back of a postcard. Instead, modern web projects require the efforts of multiple people working closely together in a collaborative fashion.
Your website is more important than ever as a marketing tool. Whether visitors find you through a web search, an email nurture campaign, or an ad, at some point they come to your website.
At Pantheon we frequently bridge the WordPress and Drupal communities, working with agencies who use both. A lot of my work recently has been focused around developer workflows and automation. I see a lot of similarities between how agencies use WordPress and Drupal, especially around tooling and workflow.
Drupal SA-2018-002 has been weaponized. Within 12 hours of a published proof-of-concept by security researchers, we can see automated attempts to systematically exploit sites across the internet.
Today we’re announcing new site plans with increased traffic limits and lots more storage to better accommodate the needs of websites launching on or migrating to Pantheon. This is the first-ever increase to our prices, and we’ve added a lot of value since we got started—free HTTPS, a world-class integrated Global CDN, New Relic APM Pro, and more—all without adding cost. We’ve also learned more about how customers use our platform, and have heard a great deal of feedback as to where our plans fit, or leave a gap.
The Drupal Security Team has published Drupal SA-2018-002 to address a critical vulnerability. This the first update of this magnitude since SA-2014-005 (aka “Drupageddon”) back in 2014. In that case, the time from release to automated exploitation was around seven hours.