[theme-reviewers] Proposed WordPress 3.3 Theme Review Guidelines Revisions

Otto otto at ottodestruct.com
Thu Nov 10 17:02:34 UTC 2011


On Thu, Nov 10, 2011 at 10:39 AM, Rick Anderson <rick at byobwebsite.com> wrote:
> Newbie question - I can't find the imperative against the use of fopen()
> type functions.  Can you point me in the direction of a conversation about
> that?

Directly creating/writing files is a security issue in themes on most
shared host environments. The WP_Filesystem should be used instead, to
avoid said issue. Downside: This sometimes requires gathering FTP
credentials from the user.

-Otto


More information about the theme-reviewers mailing list