[wp-trac] [WordPress Trac] #25436: Permissions system.

WordPress Trac noreply at wordpress.org
Sat Sep 28 23:41:32 UTC 2013

#25436: Permissions system.
 Reporter:  trusktr          |       Owner:
     Type:  feature request  |      Status:  new
 Priority:  normal           |   Milestone:  Awaiting Review
Component:  General          |     Version:
 Severity:  normal           |  Resolution:
 Keywords:  close            |
Changes (by SergeyBiryukov):

 * keywords:   => close


 > It'd be nice if plugins had to specify certain permissions to access
 certain features of wordpress (IMHO, I'd like it) for more security.

 We have a system of [http://codex.wordpress.org/Roles_and_Capabilities
 roles and capabilities] that can be leveraged by plugins.

 > What does WordPress have in place to detect malicious plugins?

 The [http://make.wordpress.org/plugins/ Plugin Review Team] checks every
 plugin submitted to the WordPress.org directory to make sure it conforms
 to the [http://wordpress.org/plugins/about/guidelines/ guidelines]. The
 team's updates are posted on

Ticket URL: <http://core.trac.wordpress.org/ticket/25436#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software

More information about the wp-trac mailing list