Feature suggestion : periodical email notification/reminder of security updates

Hello Sabinou,

I just stumbled over this thread and totally agree with you.
I had the same idea last year and created a plugin to address that exact problem, which I believe will help a lot of people to keep the sites they are responsible for up-to-date without needing to login to each site and check for updates manually.

We have a dedicated team looking for publicly disclosed vulnerabilities in dozens of different sources around the web, process and store this information. From within the plugin you can subscribe to a professional feed that will alert you per e-mail about vulnerabilities that affect your website. If you subscribe with the same user on multiple sites, you would only get one e-mail for each vulnerability but stating exactly which of your sites are affected by this vulnerability.

The plugin (MVIS Security Center) is in the beta phase now, so the subscription is free for 3 months.
We are also working on improving the e-mail notification settings to include status e-mails about plugins that have updates available in addition to informing users about vulnerabilities in WordPress, the plugins or themes. Please feel free to post features you would like to see in the support forum of the plugin itself and I will make sure that they get included.

Of course it would also be helpful to not have the plugin page disappear but have an informative page explaining why the plugin is currently disabled. Even further, maybe exposing this through the WordPress update checks to give users information if a plugin was disabled because of security vulnerabilities, similar to if an update is available for a plugin or not.

Good point Sabinou, I’ll take a look at it and see if this can be detected reliably and how this feature can be incorporated.

Let’s cross our fingers in the meantime that this debate will be relaunched, with a better outcome 🙂