Hi Steve,
First of all, thank you for taking the time to write such a detailed and thoughtful post.
We truly appreciate your continued trust in JoomShaper over the years. Feedback from experienced professionals like you, who manage many Joomla websites in production, is incredibly valuable to us. We're also grateful for your kind words about our products and our support team.
We've carefully read through your feedback, and we'd like to respond to each of your points below.
1. Response Time
We completely understand your concern about the time it took to release the security updates.
During a security incident, our first priority is to investigate the reports thoroughly, identify the root cause, develop a reliable fix, and validate it before releasing an update. While we always aim to respond as quickly as possible, we also have a responsibility to ensure the fix is stable and doesn't introduce new issues.
2. Communication
Thank you for pointing this out.
We agree that communication is just as important as the technical fix during a security incident. Your suggestions about earlier notifications, clearer messaging, and providing more detailed guidance are appreciated.
We'll continue working to improve how we communicate important security-related information with our customers.
3. Simultaneous Releases
Although the underlying issue may affect multiple products, each product has its own codebase, compatibility requirements, and testing process. Because of that, updates cannot always be released at the same time.
That said, we understand why a coordinated release would be beneficial for customers managing many websites, and we'll continue looking for ways to improve this process.
4. Security Advisories
We appreciate this suggestion.
A more detailed security advisory that clearly explains the affected versions, the required actions, how to determine whether a site has been compromised, and the recommended remediation steps would certainly be helpful.
We'll take this into consideration as we continue improving our security communication.
5. AI for Security Analysis
Security is an ongoing effort, and we're always evaluating new tools and technologies that can strengthen our development and review processes.
Your suggestion about using AI to assist with security analysis is appreciated, and it's something we'll continue exploring.
6. Security and Stability Before New Features
We understand your perspective.
While we continue developing new features, security and product stability remain among our highest priorities. Finding the right balance is important, and feedback like yours helps us better understand what matters most to agencies and long-term customers.
7. Release Quality
We understand how frustrating follow-up releases can be, especially when you're responsible for updating many production websites.
Every release goes through testing before publication, but we know there's always room to improve. We're continuously refining our QA process and testing procedures to deliver more stable releases and reduce the need for follow-up updates.
8. Forum Knowledge Base
Thank you for this excellent suggestion.
We agree that, whenever possible, sharing the root cause and a general explanation of the solution would make the forum much more valuable for the community.
While some cases involve customer-specific configurations that can't be shared publicly, we'll continue encouraging our team to provide more useful technical summaries whenever appropriate.
Once again, thank you for taking the time to share your feedback and for your continued support of JoomShaper.
Constructive feedback like yours helps us improve not only our products, but also our communication, documentation, and the overall customer experience.
We truly appreciate your trust and look forward to continuing to earn it.