[wp-meta] [Making WordPress.org] #6939: Reporting Security vulnerabilities in plugins
Making WordPress.org
noreply at wordpress.org
Thu Apr 20 14:44:32 UTC 2023
#6939: Reporting Security vulnerabilities in plugins
------------------------------+---------------------
Reporter: dd32 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Plugin Directory | Resolution:
Keywords: 2nd-opinion |
------------------------------+---------------------
Comment (by Otto42):
Replying to [comment:4 yani.iliev]:
> Reporting a security vulnerability in a plugin can trigger an immediate
disabling of the said plugin from the WordPress.org plugin repo.
Definitely no. The whole point of having a security reporting system is
that anybody can file a security report. Therefore, no action (from the
general public) can be used to take automatic actions.
--
Ticket URL: <https://meta.trac.wordpress.org/ticket/6939#comment:6>
Making WordPress.org <https://meta.trac.wordpress.org/>
Making WordPress.org
More information about the wp-meta
mailing list