#40602
|
Implement immutable cache headers
|
|
Script Loader
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
04/29/2017
|
#43403
|
Improve wp_add_inline_script()
|
|
Script Loader
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
02/24/2018
|
#51317
|
Remove deprecated JavaScript i18n globals
|
|
Script Loader
|
normal
|
normal
|
Future Release
|
enhancement
|
early
|
05/25/2021
|
#60597
|
Script Modules API: Allow list of enqueued module data to be exposed
|
|
Script Loader
|
normal
|
normal
|
Future Release
|
enhancement
|
|
09/09/2024
|
#38800
|
add WP_ADMIN_URL and WP_INCLUDES_URL constants
|
|
Script Loader
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
09/29/2017
|
#38054
|
class.wp-scripts.php - add_action when init is already doing
|
|
Script Loader
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
reporter-feedback
|
04/09/2019
|
#40276
|
enhancement: add a $type parameter to wp_add_inline_script()
|
|
Script Loader
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
11/08/2021
|
#37162
|
wp_style_add_data and wp_script_add_data should accept SRI information
|
|
Script Loader
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
11/14/2018
|
#51124
|
Can we get an additional parameter in wp_add_inline_script to set the script type?
|
audrasjb*
|
Script Loader
|
normal
|
normal
|
Future Release
|
feature request
|
needs-unit-tests
|
11/08/2021
|
#15394
|
Ancient "Are you sure you want to do this" now confusing
|
|
Security
|
normal
|
minor
|
Future Release
|
defect (bug)
|
dev-feedback
|
05/17/2019
|
#41391
|
Links to media in password protected pages
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
07/24/2017
|
#59824
|
PHP Warning raised in pluggable.php when passing NULL instead of a string
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
11/07/2023
|
#37559
|
Password protected pages require the password only once
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
06/04/2019
|
#50027
|
Retire Phpass and use PHP native password hashing
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
needs-unit-tests
|
10/13/2023
|
#34041
|
Tying nonces to sessions breaks when users are switched
|
|
Security
|
normal
|
major
|
Future Release
|
defect (bug)
|
|
06/04/2019
|
#57882
|
User that has capability to create user can make only administrator.
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
03/07/2023
|
#48955
|
WP 5.3.1 changes cause potential backwards compatibility breakage with kses
|
|
Security
|
normal
|
normal
|
Future Release
|
defect (bug)
|
|
08/12/2020
|
#34852
|
fix broken re-auth loop (due to expired session)
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
06/04/2019
|
#31686
|
wp_authenticate_username_password() should check for a WP_Error object
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
08/06/2019
|
#37670
|
wp_validate_redirect fails when running WordPress on a port
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
06/04/2019
|
#38260
|
A FORCE_SSL_CANONICAL constant
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
06/04/2019
|
#38259
|
A FORCE_SSL_CONTENT constant
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
06/04/2019
|
#38261
|
A FORCE_SSL_SCRIPTS constant
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
06/04/2019
|
#39656
|
Create a submenu item under About admin bar for security
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
01/23/2017
|
#40237
|
Educate users about modern password best-practices
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
06/06/2022
|
#56141
|
Enhance installer security
|
|
Security
|
high
|
major
|
Future Release
|
enhancement
|
dev-feedback
|
12/31/2023
|
#28521
|
FORCE_SSL constant for really forcing SSL
|
adamsilverstein
|
Security
|
normal
|
normal
|
Future Release
|
enhancement
|
|
06/08/2023
|
#43320
|
Harden API requests against man-in-the-middle attacks
|
|
Security
|
low
|
minor
|
Awaiting Review
|
enhancement
|
|
02/18/2018
|
#50510
|
Improve security of wp_nonce implementation
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
07/11/2023
|
#36087
|
Migration plan from insecure RNG fallback
|
|
Security
|
normal
|
normal
|
Future Release
|
enhancement
|
|
09/30/2020
|
#38262
|
Task: Opt in SSL Improvements
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
02/05/2020
|
#51438
|
Use CSP directive upgrade-insecure-requests when using HTTPS
|
|
Security
|
normal
|
normal
|
Future Release
|
enhancement
|
needs-unit-tests
|
11/09/2021
|
#52388
|
Use HTTPS URL already during installation if supported
|
|
Security
|
normal
|
normal
|
Future Release
|
enhancement
|
needs-unit-tests
|
01/28/2021
|
#36177
|
default htaccess should include security measures
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
04/12/2024
|
#43215
|
Allow wp_kses to pass allowed CSS properties
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
feature request
|
|
07/12/2024
|
#30465
|
Dashboard alert if a plugin/theme was removed from WordPress repo
|
|
Security
|
normal
|
normal
|
Future Release
|
feature request
|
dev-feedback
|
06/19/2024
|
#38536
|
Hook/Function to Set Content-Security-Policy
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
feature request
|
|
06/04/2019
|
#55228
|
Provide Option to Remove Password Visibility Button and Dashicons from WordPress' Login Form
|
|
Security
|
normal
|
normal
|
Awaiting Review
|
feature request
|
close
|
02/25/2022
|
#32067
|
Remove inline javascript from WP-Core to allow CSP protection
|
|
Security
|
normal
|
normal
|
Future Release
|
feature request
|
|
06/18/2024
|
#50437
|
Add leniency to the overdue check for plugin and theme auto updates
|
|
Security
|
normal
|
normal
|
Future Release
|
task (blessed)
|
|
07/14/2020
|
#49877
|
Content enclosed by (content enclosing) shortcode gets stripped from excerpt
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
dev-feedback
|
07/24/2020
|
#51377
|
Front End elements break after too many shortcodes
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
09/24/2020
|
#43725
|
Multiple instances of opening / closing shortcode only works when closing tag is provided
|
|
Shortcodes
|
normal
|
normal
|
Future Release
|
defect (bug)
|
|
07/16/2020
|
#57790
|
Parsing of Shortcode Attributes: bug locating a final attribute
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
changes-requested
|
02/28/2023
|
#59509
|
Shortcode attributes named 0 are ignored
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
needs-unit-tests
|
10/04/2023
|
#58386
|
Shortcode generated by a block element is not executed in templates
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
06/09/2023
|
#52567
|
Shortcodes in separate <p> tags appear on same line in browser
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
05/25/2023
|
#43456
|
`wp_html_split` <script>
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
03/02/2018
|
#40958
|
force_balance_tags breaks Ninjaforms and probably other plugins that output html within js.
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
08/30/2024
|
#57267
|
wp_enqueue_style is not working under shortcode
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
12/15/2022
|
#6984
|
wpautop() formats the the contents of shortcodes
|
|
Shortcodes
|
normal
|
normal
|
Future Release
|
defect (bug)
|
|
04/01/2019
|
#41086
|
Conditional loading of CSS files from (for example) shortcodes
|
|
Shortcodes
|
normal
|
normal
|
Awaiting Review
|
feature request
|
|
06/16/2017
|
#49923
|
Change "Critical Issue" to "Recommendation"
|
|
Site Health
|
normal
|
critical
|
Awaiting Review
|
defect (bug)
|
close
|
12/08/2021
|
#54351
|
Checking for temp update directories may throw warnings
|
|
Site Health
|
normal
|
normal
|
Future Release
|
defect (bug)
|
dev-feedback
|
04/04/2022
|
#52343
|
Site Health Page: Inactive theme message is inconsistent
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
dev-feedback
|
01/28/2021
|
#51088
|
Site Health Status widget displays incorrect or inconsistent number of issues
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
05/17/2021
|
#59251
|
Site Health incorrectly reports low disk space available for updates when disk_free_space function disabled
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
05/02/2024
|
#47428
|
Site Health: Remove duplicate code in VCS test
|
|
Site Health
|
normal
|
normal
|
Future Release
|
defect (bug)
|
|
08/11/2019
|
#53204
|
This means any errors on the site will be written to a file which is potentially available to normal users
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
09/01/2022
|
#55280
|
Unsupported operand types in Site Health
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
02/27/2024
|
#61534
|
if debug mode is true and go to the site-heath page showing extra margin top at admin-menu
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
dev-feedback
|
07/24/2024
|
#52945
|
wp_cache settings not recognized in site health / plugins
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
reporter-feedback
|
03/31/2021
|
#60619
|
Add a DNS section to Site Health (and status checks for SPF and DMARC)
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
02/23/2024
|
#50055
|
Add more user-actionable information to the timezone health check
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
06/15/2020
|
#57159
|
Add scheduled events in the site health report.
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
01/31/2023
|
#47210
|
Allow html on site health titles and description
|
|
Site Health
|
normal
|
minor
|
Awaiting Review
|
enhancement
|
dev-feedback
|
09/05/2022
|
#53230
|
Allow nested arrays to be displayed in site health.
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
08/28/2022
|
#52652
|
Check for display_errors in Site Health
|
|
Site Health
|
normal
|
normal
|
Future Release
|
enhancement
|
|
09/14/2023
|
#47336
|
Consider adding a JS/Client based Site Health Check for the REST API
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
close
|
10/25/2020
|
#51527
|
Debugging in Multisite context: list of plugins
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
10/19/2020
|
#59362
|
Display deprecated function usage in Site Health
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
09/16/2023
|
#57826
|
Either core themes should not be automatically installed OR their presence should not be a site health issue
|
|
Site Health
|
normal
|
minor
|
Awaiting Review
|
enhancement
|
dev-feedback
|
03/01/2023
|
#50389
|
Improve support for site health issues in WordPress
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
06/15/2020
|
#53024
|
List https functionality health check failures as critical
|
|
Site Health
|
normal
|
normal
|
Future Release
|
enhancement
|
|
11/10/2021
|
#57349
|
Page cache is not detected but the server response time is OK
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
reporter-feedback
|
03/07/2024
|
#47653
|
Site Health plugin security check
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
09/07/2021
|
#47426
|
Site Health should check for incompatible plugins and plugins no longer maintained
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
12/29/2020
|
#56987
|
Site Health: add visual placeholder for checks that are still loading
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
10/23/2023
|
#57964
|
Sitehealth recommended improvements - utf8mb4 requires a newer client library
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
03/23/2023
|
#48331
|
Snoozing the admin email verification screen when a user initiates/confirms a site email change
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
12/06/2019
|
#51336
|
Support php-error.php outside of WP_CONTENT_DIR
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
reporter-feedback
|
09/18/2020
|
#57059
|
add complete phpinfo() to site health
|
|
Site Health
|
normal
|
minor
|
Awaiting Review
|
enhancement
|
close
|
03/07/2024
|
#59070
|
child theme should not be counted as additional theme
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
|
10/25/2023
|
#59979
|
Add a wp_mail() check to Site Health Info
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
feature request
|
close
|
01/15/2024
|
#60802
|
Enable debug mode / debug options in site health
|
|
Site Health
|
normal
|
minor
|
Awaiting Review
|
feature request
|
close
|
03/19/2024
|
#51702
|
Warn of potentially poor/insecure password generation
|
|
Site Health
|
normal
|
normal
|
Awaiting Review
|
feature request
|
dev-feedback
|
06/01/2021
|
#43989
|
Allow plugin searches to be filtered by "Requires PHP" version information
|
|
Site Health
|
normal
|
normal
|
Future Release
|
task (blessed)
|
needs-unit-tests
|
06/24/2019
|
#50787
|
Consolidate the logic for displaying WP & PHP compatibility messages for themes
|
SergeyBiryukov*
|
Site Health
|
normal
|
normal
|
Future Release
|
task (blessed)
|
|
02/22/2021
|
#47880
|
Extend unit tests for Site Health component.
|
|
Site Health
|
normal
|
normal
|
Future Release
|
task (blessed)
|
needs-unit-tests
|
07/06/2020
|
#51004
|
New sitemaps feature work only on root site in a multisite subdirectory setup
|
|
Sitemaps
|
normal
|
normal
|
Future Release
|
defect (bug)
|
has-patch
|
10/15/2020
|
#51117
|
Sitemap & XSL requests execute main query for home page.
|
pbiron*
|
Sitemaps
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
05/04/2023
|
#51280
|
wp_register_sitemap_provider() breaks sitemap functionality if provider name contains a dash (-)
|
pbiron
|
Sitemaps
|
normal
|
minor
|
Future Release
|
defect (bug)
|
|
07/12/2023
|
#54463
|
Need 'wp_sitemaps_{provider}_url_list' filter for caching.
|
|
Sitemaps
|
low
|
normal
|
Awaiting Review
|
enhancement
|
dev-feedback
|
03/16/2023
|
#51860
|
wp-sitemap includes empty post entries returned by filters
|
|
Sitemaps
|
normal
|
normal
|
Awaiting Review
|
enhancement
|
close
|
03/16/2023
|
#42422
|
'unique' index not removed from the 'slug' column of the 'wp_terms' table
|
|
Taxonomy
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
11/11/2017
|
#60076
|
200 tags maximum
|
|
Taxonomy
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
dev-feedback
|
12/17/2023
|
#52975
|
Add "states" to terms list table (for WP_Taxonomy::$default_term)
|
|
Taxonomy
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
04/05/2021
|
#45938
|
Adding new term meta fails if column is wrapped in a conditional
|
|
Taxonomy
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
dev-feedback
|
02/01/2019
|
#57419
|
Adding terms to a taxonomy with non-latin characters results in PHP notice
|
|
Taxonomy
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
|
01/10/2023
|
#14691
|
Allow commas in tag names
|
|
Taxonomy
|
normal
|
normal
|
Future Release
|
defect (bug)
|
|
07/25/2024
|