| | 18 | Also, looking through the code examples in the ticket description, quite a bit of the data seems "sensitive", i.e. only admins should be able to see it. So at best this should be a page under the Plugins and Themes menu items in wp-admin accessible only to site admins, or perhaps a "More Info" link for each plugin and theme. For security reasons this data (as proposed above) should never be freely accessible. The point is: whether this should be available through REST API should be decided after the implementation details and UI are ready, not before. |