I'm wondering if you could provide a suggestion.
I have wordpress installed on my site. Every couple of months I get an email from my hosting company saying that they have scanned my files and that the version of wordpress that I have is insecure (vulnerable to some sort of attack, the latest was a XSS attack) and that I should upgrade.
My issue is that I don't much want to have to upgrade to the latest version of wordpress. What I would like instead would be
a) giving wordpress the ability to patch itself by downloading and installing updates without my intervention or
b) a stable version of wordpress that was thoroughly checked for vulnerabilities in the same way that BSD has been.
I guess I'm just a bit frustrated by the upgrades, so I thought I'd post here to express how I feel. I don't want to pay for hosting and the wordpress.com free hosted version of the software is too limited for what I want when compared to what hosting yourself can do. But it's still a hassle!
Cheers : )