Wordpress is well known as software that requires regular maintenance to be kept running and secure, so we want to avoid it when it is not necessary. Each new wordpress instance increases the long-term operational burden so we should only host them or have them on OSM/OSMF domains when alternatives will not work.
Based on discussions at the meeting a policy a starting place would be to only allow new wordpress sites when they
require something that cannot be done with hugo or jekyll (e.g. civicrm, blog post comments),
will continue to remain in-use beyond a single event (e.g. no proliferation of SOTM wordpresses),
have users who are capable of managing wordpress accounts and access without regular sysadmin intervention.
Wordpress is well known as software that requires regular maintenance to be kept running and secure, so we want to avoid it when it is not necessary. Each new wordpress instance increases the long-term operational burden so we should only host them or have them on OSM/OSMF domains when alternatives will not work.
Based on discussions at the meeting a policy a starting place would be to only allow new wordpress sites when they