[wp-hackers] WordPress plugin update bugs
Viper007Bond
viper at viper007bond.com
Sun Sep 30 12:30:24 GMT 2007
#5115: Unable to reproduce. It works fine for me on multiple installs on
multiple OSes. If this issue was widespread, I'm sure it would have been
reported much earlier. Sounds like a non-issue or some very rarely occurring
bug due to server configuration or something.
#5116: Valid, somewhat. If "Plugin A" has existed for years, I hope the
moderators of the official repository aren't going to accept a request for a
plugin of the same there, so that prevents that. In the reverse, plugin
authors shouldn't be noobs and name their plugins the same as ones already
existing on the repository. All that said, I don't see a real code solution
to this all as the URI, author, etc. is all able to change. There's no real
constants when it comes to plugins.
#5117: Agreed, although it would get rather spammy with a bar below each
non-known plugin. We'd need to find a clean way to display this notice.
On 9/30/07, Travis Snoozy <ai2097 at users.sourceforge.net> wrote:
>
> Hey folks,
>
> I've been having some trouble with getting the plugin upgrade feature
> to work for my plugin[1]. I poked around and inferred a bit about how
> the update system backend works[2]. Unfortunately, I also found a few
> less-than-ideal behaviors, two of which stem from the assumption that
> all plugins are hosted with WordPress:
>
> http://trac.wordpress.org/ticket/5115
> http://trac.wordpress.org/ticket/5116
> http://trac.wordpress.org/ticket/5117
>
> I'm pretty concerned about 5115 and 5117 security-wise, since the user
> can get the impression that all his/her plugins are up-to-date when
> they're not. Any extra eyes on this feature or comments on the bugs
> would be appreciated.
>
>
> Thanks,
>
> --
> Travis
>
> In Series maintainer
> Random coder & quality guy
> <http://remstate.com/>
>
> [1]
>
> http://comox.textdrive.com/pipermail/wp-hackers/2007-September/thread.html#14874
> [2] http://remstate.com/2007/09/30/plugin-updates-and-wordpress-23/
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
>
--
Viper007Bond | http://www.viper007bond.com/
More information about the wp-hackers
mailing list