The choice between updating and not updating is a false dilemma. Not updating creates security risk. Updating carelessly creates stability risk. The goal is to update safely.
Why updates break things
Updates introduce new code. New code behaves differently from old code. When plugins, themes, or the core CMS expect the old behaviour, conflicts occur.
The risk increases when:
Updates are infrequent - larger version jumps mean more changes. This is a common pattern in sites that fail after launch
The site has many plugins - plugin sprawl means more potential conflicts
Custom code exists - modifications may conflict with core changes
Testing is skipped - problems are discovered in production
Use a staging environment
Every update should be tested in staging before production. Staging is a copy of the live site where changes can be applied and verified without affecting real users.
Staging must mirror production closely. Same PHP version, same database version, same server configuration. A staging environment that differs significantly from production provides false confidence.
Most managed hosting platforms provide staging as a feature. If yours does not, consider whether your hosting is appropriate.
Test what matters
After applying updates in staging, check:
Core functionality - forms submit, purchases complete, logins work
Visual appearance - layouts render correctly, images display
Performance - page load times have not degraded significantly
Error logs - no new warnings or errors appearing
Automated testing helps if you have it. Manual testing of critical paths is the minimum.
Have a rollback plan
Before updating production, ensure you can reverse the change. This typically means:
A recent backup that can be restored quickly
Knowledge of which files and database tables changed
Tested restoration process - not just theoretical. This should be part of proper maintenance
The ability to rollback reduces the pressure when problems occur. You can restore service first, then investigate calmly.
Update frequently in small batches
Monthly updates with a few changes are safer than annual updates with dozens. Small batches mean:
Problems are easier to identify - fewer variables changed
Rollback is simpler - less to reverse
Knowledge stays current - you remember how the system works
Schedule updates as routine maintenance, not as emergency responses.
Read release notes
Major updates often announce breaking changes. Reading release notes before updating reveals:
Deprecated features that your site uses
New requirements for PHP or database versions
Known issues with specific plugins or configurations
This advance warning allows preparation rather than reaction.
The process
A reliable update process:
Review pending updates and release notes
Create a fresh backup of production
Apply updates to staging
Test critical functionality in staging
Fix any issues discovered
Apply updates to production during low-traffic period
Verify production functionality immediately after
Document what was updated
This process takes longer than clicking Update All, but it prevents most problems.
Before your next update, it is worth knowing what you are working with. A site health report flags outdated plugins, abandoned dependencies and anything else that makes updates risky. Delivered in writing within 5 working days. Find out more.
Worried about updates breaking your site?
I can handle updates safely so you do not have to worry.
Get in touch
