WordPress.org

Make WordPress Core

Opened 5 years ago

Last modified 5 months ago

#31725 new defect (bug)

Protect against jQuery being downgraded by poorly coded plugins and themes

Reported by: markjaquith Owned by:
Milestone: Priority: normal
Severity: normal Version:
Component: General Keywords:
Focuses: Cc:
PR Number:

Description

I'm sick to death of plugins and themes that replace core's jQuery with their own version or link to Google's CDN but without matching version numbers, or hardcode an additional version that overwrites jQuery. It causes so many headaches.

I'm willing, at this point, to consider drastic measures. How can core protect against this?

Change History (2)

#1 @ocean90
5 years ago

Related: #22896

#2 @SergeyBiryukov
5 years ago

In 43:ticket:22896, the assumption was that if they're using the correct hook (admin_enqueue_scripts for admin, login_enqueue_scripts for wp-login.php), they know what they're doing.

If the assumption is no longer accurate, should we remove the hook checks? See [23378], [25443].

Note: See TracTickets for help on using tickets.