Don’t Go Auto Updating WordPress Yet

One of the annoyances of WordPress is that when a new version comes out, you have to take the time to upgrade. Sure, it may be just re-uploading everything, but that still takes a few minutes per blog and I think that’s why a lot of people tend not to do it. To work around this, the InstantUpgrade plugin was created. Good idea, but is it ready for primetime yet?

The plugin explains that it can automatically update to the latest version of WordPress for you, or you can tell it when to update the files for you. It does all the work and you get to sit back and relax.

The first red flag is how many files you need to make writable by the server. The privileges 777 mean that the files are writable by everyone. This sounds like a hackers dream to me but maybe I’m wrong.

It also concerns me that every time there is a WordPress upgrade, some plugins must be updated too. Thus, if it upgrades when you aren’t around, and a plugin breaks, how long will it take you to find out and will your blog be down?

Overall, the buzz around the InstantUpgrade plugin seems quite positive. I’m a big fan of it as long as they can convince me that it’s safe. However, at this point and time, I’m concerned with making all my files writable as I feel that it’ll allow unwanted others to make updates also.

I’m going to keep my eye on the InstantUpgrade plugin and see where it goes. It’s currently in version 0.1 which which means it’s a newborn. As it continues to develop, I’ll be eagerly awaiting to see where it goes and if security is an issue, or if it is safe. It’s a great idea and I hope that it can prove itself in the long run.