WordPress.org

Make WordPress Core

Opened 5 weeks ago

Last modified 3 weeks ago

#47528 new enhancement

Site Health: Add test for file checksums

Reported by: swissspidy Owned by:
Milestone: Future Release Priority: normal
Severity: normal Version:
Component: Site Health Keywords: site-health needs-patch
Focuses: Cc:

Description (last modified by swissspidy)

For a while now there has been a WP-CLI command to verify the current installation's integrity by comparing checksums. This makes it easy to detect suspicious modifications to core files and even plugins (if the plugin is hosted on WordPress.org)

I think Site Health would be a good place to possibly add such a checksum verification to WordPress core itself.

If a user is presented with a warning that core files have been modified, they could be offered the opportunity to re-install WordPress (just like you can do under Dashboard -> Updates)

The same goes for plugin checksums.

Change History (3)

#1 @desrosj
5 weeks ago

  • Keywords needs-patch added
  • Milestone changed from Awaiting Review to Future Release

#2 @desrosj
4 weeks ago

  • Component changed from Administration to Site Health

Moving Site Health tickets into their lovely new home, the Site Health component.

#3 @swissspidy
3 weeks ago

  • Description modified (diff)
  • Summary changed from Site Health: Add test for core file checksums to Site Health: Add test for file checksums

Updated the description to indicate that this can be applied to both plugins and core.

Note: See TracTickets for help on using tickets.