[wp-trac] [WordPress Trac] #62332: Display last update on plugins page in WordPress backend
WordPress Trac
noreply at wordpress.org
Mon Nov 4 10:24:08 UTC 2024
#62332: Display last update on plugins page in WordPress backend
-----------------------------+------------------------------------------
Reporter: tonikasch | Owner: (none)
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Plugins | Version:
Severity: normal | Resolution:
Keywords: | Focuses: performance, sustainability
-----------------------------+------------------------------------------
Comment (by benniledl):
I don’t believe that introducing a health check based on the last updated
time of plugins is beneficial. Such a security message could unnecessarily
alarm users, prompting them to replace plugins and potentially waste hours
of their time. The fact that a plugin hasn’t been updated for more than
six months does not inherently indicate a security issue.
For example, consider the Hello Dolly plugin, which is included by default
in WordPress and hasn’t been updated in 12 months. This would result in
every new WordPress user encountering a "security" warning after a fresh
installation, which is far from ideal. Imagine setting up WordPress for
the first time and being met with a security alert. A two-year threshold
would be more reasonable, in my opinion. However, setting such a threshold
could lead users to believe that it applies universally to all plugins,
causing them to think it’s acceptable to install a plugin that hasn’t been
updated for, say, 18 months, even though this is not a straightforward
matter and should be assessed on a case-by-case basis.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/62332#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list