by Mark | Feb 27, 2023 | CSS3, Industry News, JavaScript, Web Development
Here are some of the articles we have been reviewing during the month We hope you find them as interesting as we did. [Note: these links will all open in a new browser tab.] Don’t forget to let us know what else you would like to see in terms of current professional trends in web design and development. Here are the categories of what we encountered during February:
- CSS
- JavaScript
- Web Development Trends
CSS
Here is an interesting read – 10 modern layouts in one line of CSS. These include sidebar says, the pancake stack, the 12 span grid and much more. Let us know what you think of these.
If you are curious where CSS is going, consider the high definition CSS color guide. With Chrome 111, there is support for CSS Color 4 gamuts ( size of something) and color spaces (this is explained in much ore detail in the linked article). This means there is 50% more colors in supporting browsers.
Native CSS nesting may also be finally arriving (in Chrome 112, for example). Bryce Wray provides a nice overview of recent experiments with this.
JavaScript
Did you get a chance to review the state of JavaScript in 2022 article? In a nutshell, JavaScript is more vibrant than ever. Of course, there are many more details to be found in the linked article.
Web Development Trends
Robin Wieruch published an interesting overview of 10 web development trends in 2023. Among the trends discussed is a movement from client side rendering to server side rendering. It is worth noting that server side rendering is now relying on JavaScript. Serverless functions continue to be a trend this year.Because of this, databases are also experiencing a renaissance. In terms of JavaScript runtimes, Deno is a successor of node. To learn more about these trends (and much more), we recommend reading the entire article.
Horror stories
As professionals, we are always working with clients. We thought it might be helpful to share a horror story or two each month. Obviously, there are lessons to be learned. However, the fact that we have been using web technologies over three decades and still see some problems repeating means we are not fully learning these lessons.
Case in point. I was helping a client with a WordPress site. They had recently purchased a plugin and were experiencing difficulty in using the enhanced features which came with the upgraded plugin (freemium model is still very popular, isn’t it). Specifically, I was asked to investigate why all the added functionality remained greyed out despite having paid for the upgrade. To keep the story short, one had to click on the greyed out item to “load” the enhancement. Took yours truly about an hour to figure that one out. Lesson we should all have learned by now – there are standard design patterns which must be followed. To show something as greyed out means it is not active and not available. Breaking a pattern which has been in use for well over a decade causes unnecessary consternation. A simple explanation that one must click on an item to activate it might have sufficed (instead of wasting the time of multiple individuals).
As if that wasn’t enough, when helping another client, I needed to contact technical support for a WordPress plugin. Believe it or not, the individual who was trying to help me quickly asked for my username and password so they could access the site as an administrator to see what the problem was. Ummm, NO. Ok, they then asked if I could create a separate administrator account for them to use so they could see the site. Ummm. NO again. Think about this from a security perspective – if you allow someone (who you don’t know) administrative access to your site, you have handed over the data and capabilities of the site to a stranger. Would you gladly hand your car key fob to a stranger who asked for a ride to the store while you were waiting for the light to change? Maybe if your car was making a strange noise? Same concept. Never, ever, provide such access no matter how severe you think the problem is with a WordPress plugin. If you need that much help, it is time to find an alternate plugin. Shame on the vendor in this case for even allowing an employee to make such a request.
OK, readers, that is enough on the horror stories for this month. Do you have something you would like to share which tops these horror stories. Please let us know in the comments (or send us an email to our membership email at the top of the page). We are always interested in what you liked and would like to see in future articles. Just let us know that as well.
In case you missed these…
We recently published additional information about the proposed Websites and Software Applications Accessibility Act. We encourage you to review this post to keep up to date with what is happening regarding website accessibility.
Curious about security (especially passwords), please review our passwords and psychology article.
We also announced our 2023 web design and development competitions (including that we are recognized as a SkillsUSA Official Partner.
Your turn
We are always what you find interesting and what you would like to learn more about. Please provide comments below so we can better address what you find most interesting.
by Mark | Jan 31, 2023 | CSS3, HTML5, JavaScript, Web Security
Hard to believe January is almost behind us. Yes, time flies. As Executive Director, I am now in my 31st year of working with web technologies (yep, started in 1992). Obviously a lot has changed over three decades. And things continue to change at a rapid pace. Since it has been 3 decades, I found it entertaining to review the site focusing on web browser engines from 1990 until today. Nice bit of history for those who want a refresher (and for educators). [Note: these links will all open in a new browser tab.]
OK, now that the past is behind us, let’s see what is happening with the following web technologies (a few articles which caught my attention in these areas).
- CSS
- HTML
- JavaScript
- Security
CSS
If you are using CSS animations, you might consider AnimatiSS (a collection of CSS animations for your web project).
I also enjoyed reading more about the :has() pseudo-class including real world examples.
When working with media queries, I like the MediaQuery.style site. It has many of the more commonly employed ones readily available.
Although this is still a work in progress, the CSS fingerprint site demonstrates how one can use CSS (and only CSS) to track visitors. It is not really scalable as it presently requires over 1 MB of CSS downloads. However, it is an interesting concept. It does avoid technologies such as NoScript.
HTML
Yep, there are still changes happening to markup and tags. After much discussion, there has been some consensus on how to best use the dialog element. Actually, how it should handle its initial focus. You can read more at the post titled “Use the dialog element (reasonably)“. Note that this may not be implemented in all browsers, but it should be in subsequent releases of said browsers.
JavaScript
For those teaching JavaScript, you might find the beginners guide to Chrome tracing useful. Sometimes a DevTools trace is not enough.
I also came across this interesting article explaining why using document.write() is not always a good idea. It is fairly in depth and explains why the placement of suck code matter as well.
Security
Microsoft recently published their 2022 Digital Defense Report. You can follow the link to read much more. Here are some of the highlights (scary though they are).
- 921 password attacks happen every second (up 74% from last year).
- they blocked 37 billion email threats last year.
- Attackers are leveraging vulnerabilities in IoT device firmware to gain access to corporate networks.
- The average cost of a data breach reached $4.35 million.
- People are now the primary attack vector. Identity driven attacks account for 61% of breaches. Phishing remains the most common form of cyber attack.
Your thoughts?
These are some of the articles I have encountered and found interesting over the past month. What have you found in addition? We look forward to your comments and insights.
by Mark | Oct 30, 2022 | CSS3, Industry News, JavaScript, Web Accessibility, Web Security
It has been some time since I posted some thoughts on the current state of web technologies. A lot has happened during recent months. Let’s focus on several key areas:
- web accessibility,
- security,
- JavaScript,
- and CSS.
More areas may be the focus of subsequent articles. Stay tuned. As always, we at Web Professionals Global are interested in what you think. Let us know in the comments or contact us directly.
Web Accessibility
WCAG 3 has been released as a draft (published in December, 2021). Latest editors draft updated as of July, 2022. The approach is iterative with content ranging from temporary (just a placeholder for future content) to mature (ready for publication). This version is somewhat evolutionary in that it will be easy to understand and provide guidance. A key differentiator is that this version has a broader scope (beyond web content). I encourage you to view the above links and consider helping develop the next version of Web Content Accessibility Guidelines.
Of course, there is also a new ARIA authoring practices guide website. Lots of patterns and resources. Check it out.
Security
This is a bit beyond web security, but definitely something readers should be aware of – ransomware attacks which target home PCs (delivered by fake Windows 10 or anti-virus updates). This is called Magniber (details can also be found at this ZDNet article). Essentially, a visitor is directed to a website (although it looks legitimate, it is controlled by malicious individuals). That site informs the visitor their computer operating system or software is out of date and they need to update it as soon as possible. The visitor is tricked into downloading a malicious JavaScript file which contains the malware payload. Once installed (via as technique called DotNetToJscript) the individual’s hard drive is encrypted. They are directed to a link to negotiate payment to recover their contents. More details can be found in the above article.
As web professionals, we should remind ourselves (and our clients of some fundamental tactics which help mitigate these sorts of attacks.
At a minimum, never act on anything that purports to have an extreme sense of urgency. That is what malicious individuals want. Act before you have a chance to think about the implications. It is also good practice to never click on links in emails or text messages. Instead, open a browser and type the site directly (or use a reliable search engine). Lastly, only install updates from trusted sources (and use the traditional channels where those updates are distributed).
JavaScript
The creator of JSON made an interesting comment about JavaScript a couple months ago. Douglas Crockford stated that “The best thing we can do today to JavaScript is to retire it.” Yes, JavaScript is the world’s most popular programming language (used by over 65% of developers according to a StackOverflow survey). Yes, it is bloated (and is becoming more so over time. However, it powers the majority of web sites. Of course, JavaScript is supported in every browser so making a change to something else would be a monumental undertaking. We are curious what your thoughts are about JavaScript. Is Douglas Crockford correct? Please discuss in the comments below.
CSS
Remember the days of aural style sheets (yes, they were a thing). Of course, no browsers supported them. However, a recent article (October, 2022) has raised some hope for me again. Why we need CSS speech is the article. What are your thoughts about CSS speech? Again, reach out to us in the comments.
Of course, there are many enhancements in the works for CSS. These include items such as:
- The ability to nest selectors is presently in the works. This is possible a good way to organize your CSS code. Of course, no browsers yet support this.
- Cascade layers (which give authors the ability to group their CSS and affect how the cascade applies). The linked article should give you a much better understanding. This is like nesting selectors, but much more. Is this feature ready for prime time? No, but you might want to start learning about them.
- CSS subgrid allows for styling on a page to inherit the parent’s grid styling. MDN has a nice overview with examples. That is the reference linked at the start of this bullet.
Now you know a little more about what is happening with respect to web accessibility, security, JavaScript, and CSS. Please let us know if you find this information helpful and provide more thoughts in the comments below.
Best always,
Mark DuBois, Executive Director
Web Professionals Global (a.k.a. World Organization of Webmasters)
by Harshala | Apr 13, 2018 | JavaScript
What is JavaScript Framework?
A JavaScript framework is an application framework written in JavaScript. It differs from a JavaScript library in its control flow: a library offers functions to be called by its parent code, whereas a framework defines the entire application design. A developer does not call a framework; instead it is the framework that will call and use the code in some particular way. Some JavaScript frameworks follow the model–view–controller paradigm designed to segregate a web application into orthogonal units to improve code quality and maintainability.
Here is the link for the popular Wiki article.
(more…)
by Mark | Jan 12, 2018 | Industry News, JavaScript, Web Development
As web professionals are undoubtedly aware, many changes are happening with JavaScript these days. Yes, there is a fair amount of churn in frameworks employed on various projects. We did ask the question (some time ago) – are we relying too much on JavaScript? Regardless of your opinion about that question, we need to be aware that major changes are happening to core JavaScript as well. ES6/ ES2015 (ECMAScript 6) is the latest version making its way into browsers near you (and many other places). For those who have been working with web technologies for quite a while, you may recall that ES5 was released in 2009. Yes, nearly a decade ago. (more…)
by Mark | Nov 1, 2016 | Content Management Systems, JavaScript, Semantic Web, State of the Web, Web Accessibility
As you know, we are big proponents of accessibility. We believe that content should be available to anyone at any time on any device. As 2016 draws to a close, it has become apparent that many web pages rely heavily on JavaScript (and associated frameworks). It would appear the pendulum has swung away from semantic markup towards dynamic/ generated content.
Concerns
One nagging question keeps coming to my mind – are we preventing access for some (because of reliance on these frameworks)? Although anecdotal, I ran various websites I use on a daily basis through the Functional Accessibility Evaluator (and similar tools). Some received scores as low as 29 (out of 100) resulting in automated comments such as “accessibility was not considered in the design of the website.”
Taking this one step further, I turned off JavaScript in my browser (Chrome in this case). Some of the sites I use on a daily basis (for example my school email) were rendered useless (I did receive a message that JavaScript needed to be activated and if I had problems, I could always use Internet Explorer). Similarly, the learning management system used predominantly at my school was not functional without JavaScript. As I understand, not all assistive technologies fully embrace JavaScript. This would seem to be a problem.
Let’s discuss further
I am not trying to point a finger at specific sites, I seek a broader understanding of the current state of web development. This begs the question – what has happened to graceful degradation? Are we relying too much on JavaScript? As we support web professionals (and aspiring web professionals), we seek to begin a discussion on this topic. Are we making the WWW less inclusive as we rely more on frameworks and content management systems? Have we overlooked something important? We look forward to your comments and insights.
Best always,
Mark DuBois
Community Evangelist and Executive Director
