Web Development Standards
“Always be learning & evolving” could be our motto here, especially in development standards. This represents the quality assurance & control we expect of ourselves through every detail of your project. Organization, best practices, code comments, namespacing, formatting, OOP, data sanitation… we do it right.
Here’s just a taste of what we concern ourselves with:
- WordPress Best Practices
- Never ever ever edit the Core!
- Header standards
- Use Actions, Hooks & Filters
- Enqueue
- Register
- Namespace prefixes
- $wpdb, no direct db queries
- Remote request cache
- Shortcode QA
- Consider Customer User Roles
- No filesystem writes
- No hardcoded CSS or JS in the templates
- Smart use of options and meta
- Smart use of AJAX
- No template db calls
- Register/deregister plugins
- MySQL Best Practices
- Sanitize & Validate Data before write
- Cache Queries
- Smart use of JOIN
- Smart use of temporary tables
- Limit request weights
- Security
- Password standards, encryption & management
- Form validation & sanitation, defend against SQL injection
- Data Sanitation. “Never trust your users”
- URL escapes
- XSS tokens & nonce
- Traverse considerations, ABSPATH protection
- IP Restrictions
- Timezone agnostic
- PHP & JS
- Data validation, type and test
- Namespacing
- “Indent” formatting
- Object Oriented Programming (OOP)
- Function exists checking
- Relative Paths
- Smart use of GLOBALS
- Verbose Comments, PHPDoc Style
- Documentation
- Avoid shorthand/short tags
- Use plain English naming
- Avoiding Hard-coding variables
- Systems & LAMP
- Permalinks
- Version Control & Useful Commit Comments
- Automated Backups
- Smart use of CRON
- Application Updates across the stack
- PCI Compliance
- Permalinks
- URL Redirects
- Debug notification considerations
- Content
- SEO Meta
- Images optimized for the web
- Design, CSS & HTML
- Favicons
- Sensible Information Design
- Plain English naming
- Consistent case & space formatting
- Smart element targeting, reuse
- Doctype considerations
- Element type considerations
- CSS Comments
- Sass Variables
- Sass Development & Production Output
- Standards validation
- Rems/Ems over Pixels
- Avoid tables
- OOP the Stylesheets (partials)
…and much much more!