[wp-trac] [WordPress Trac] #62202: allow plugin versions to be flagged as security updates
WordPress Trac
noreply at wordpress.org
Thu Oct 10 10:56:55 UTC 2024
#62202: allow plugin versions to be flagged as security updates
------------------------------+-----------------------------
Reporter: oliversild | Owner: (none)
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version:
Severity: normal | Keywords:
Focuses: coding-standards |
------------------------------+-----------------------------
With the Cyber Resilience Act estimated to become a law within the
European Union somewhere in Q4 2024 - we should take some steps early on
to make it easy for plugin & theme developers to comply.
One of the specific requirements from the CRA is to release security
updates separately from functional updates. This allows the end-users to
quickly patch security issues without the need to go over the rest of the
changes, which may have compatibility issues or breaking changes.
Making it possible for the plugin developers to flag a new version as a
"security update" helps to better communicate security updates to the end-
users, but also creates a new capability for the end-users to turn on
automatic updates for security updates only.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/62202>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list