{"id":19146385,"url":"https://github.com/netzstrategen/wordpress-core-standards","last_synced_at":"2025-05-07T02:03:59.452Z","repository":{"id":43415910,"uuid":"52965413","full_name":"netzstrategen/wordpress-core-standards","owner":"netzstrategen","description":"Common enhancements for WordPress Core.","archived":false,"fork":false,"pushed_at":"2025-04-28T17:06:38.000Z","size":456,"stargazers_count":3,"open_issues_count":6,"forks_count":3,"subscribers_count":19,"default_branch":"master","last_synced_at":"2025-05-07T02:03:53.633Z","etag":null,"topics":["php","wordpress","wordpress-plugin"],"latest_commit_sha":null,"homepage":null,"language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/netzstrategen.png","metadata":{"files":{"readme":"README.txt","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2016-03-02T13:37:49.000Z","updated_at":"2025-04-28T17:06:41.000Z","dependencies_parsed_at":"2023-01-18T11:18:02.303Z","dependency_job_id":"2022f397-9c72-4ebd-9393-c8ba5770f3cc","html_url":"https://github.com/netzstrategen/wordpress-core-standards","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/netzstrategen%2Fwordpress-core-standards","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/netzstrategen%2Fwordpress-core-standards/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/netzstrategen%2Fwordpress-core-standards/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/netzstrategen%2Fwordpress-core-standards/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/netzstrategen","download_url":"https://codeload.github.com/netzstrategen/wordpress-core-standards/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":252798852,"owners_count":21805886,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["php","wordpress","wordpress-plugin"],"created_at":"2024-11-09T07:43:59.729Z","updated_at":"2025-05-07T02:03:59.435Z","avatar_url":"https://github.com/netzstrategen.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"=== Core Standards ===\nContributors: netzstrategen, tha_sun, fabianmarz, juanlopez4691, lucapipolo, colourgarden\nTags: core, standards, defaults, enhancements, security\nRequires at least: 4.5\nTested up to: 5.3.2\nStable tag: 3.0.1\nLicense: GPLv2 or later\nLicense URI: http://www.gnu.org/licenses/gpl-2.0.html\n\nVarious features and adjustments for WordPress Core that do not need configuration.\n\n== Description ==\n\nPerforms several adjustments to native WordPress functionality that should be in\nCore already but are not for different reasons (as the name implies).\n\n\n= Features =\n\n- Adds HTTP headers to prevent clickjacking, XSS, and other vulnerabilities.\n\n- Replaces the front controller `wp-login.php` with `login.php` and blocks\n  access to `wp-login.php` and `xmlrpc.php` to prevent Denial-of-Service (DoS)\n  and brute-force attacks.\n\n  For Apache, this requires `AllowOverride all` to be set for the directory of the\n  virtual host or the whole server (the latter is not recommended for production\n  servers).\n\n- Adds the current Git commit hash to all JS and CSS front-end asset files to\n  ensure a stable cache invalidation, and adds client-side caching for assets\n  having a `'ver'` query string.\n\n\n= Customization =\n\nYou can override the default HTTP response headers by defining a constant named\n`CORE_STANDARDS_HTTP_HEADERS` in `wp-config.php` or a custom plugin. The value\nfor each header must include quotes where needed. For example:\n```\nconst CORE_STANDARDS_HTTP_HEADERS = [\n  'Strict-Transport-Security' =\u003e '\"max-age=63072000; includeSubDomains; preload\" env=HTTPS',\n  'X-Frame-Options' =\u003e '\"ALLOW-FROM https://example.com\"',\n];\n```\n\nBy default, /wp-login.php is replaced with /login.php. You can use a custom path\nby setting the constant CORE_STANDARDS_LOGIN_PATH in wp-config.php:\n```\nconst CORE_STANDARDS_LOGIN_PATH = '/user/login';\n```\nand routing inbound requests on that path into the original /wp-login.php file\nby adding the following lines to the top of .htaccess:\n```\n# Route /user/login into /wp-login.php.\nRewriteEngine On\nRewriteRule ^/?user/login$ /wp-login.php [QSA,END]\n```\n\n\n== Installation ==\n\n1. Extract the archive into the plugins directory as usual.\n\n2. Activate the plugin as usual.\n\n\n= Requirements =\n\n- PHP 7.1 or later.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnetzstrategen%2Fwordpress-core-standards","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnetzstrategen%2Fwordpress-core-standards","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnetzstrategen%2Fwordpress-core-standards/lists"}