Does this skill support the latest WordPress versions?

Yes, it includes specific guidance for WordPress 6.7 through 6.9, including breaking changes and PHP 8.5 compatibility.

How does it handle WordPress security?

It enforces the 'Security Trinity' (Sanitize Input, Validate Logic, Escape Output) and mandates the use of nonces for CSRF protection and wpdb::prepare for database safety.

What common errors does this skill prevent?

It targets over 29 documented issues including SQL injection, XSS, prefix collisions, improper capability checks, and database-heavy rewrite rule flushing.

Can I use it for complex plugin architectures?

Absolutely. It provides patterns for Simple functional plugins, Object-Oriented Programming (OOP) structures, and modern PSR-4 compliant architectures.

WordPress Plugin Core Development

Name: WordPress Plugin Core Development
Author: evolv3ai

byevolv3ai

0•

内容管理

Build secure, production-grade WordPress plugins using modern PHP patterns, core APIs, and industry-standard security practices.

This skill provides a comprehensive framework for developing robust WordPress plugins, supporting everything from simple functional scripts to complex PSR-4 compliant architectures. It specializes in implementing the 'Security Trinity' (Sanitization, Validation, Escaping), managing custom post types, and utilizing the WordPress REST API according to the latest standards for WordPress 6.7-6.9. It is an essential companion for developers who need to ensure SQL injection prevention, CSRF protection via nonces, and proper capability checks while avoiding common performance pitfalls like inefficient rewrite rule flushing or global namespace collisions.

主要功能

01Standardized patterns for Custom Post Types, Settings API, and REST API endpoints

02Built-in prevention for 29+ documented WordPress security and performance vulnerabilities

03Secure database interactions using wpdb::prepare to prevent SQL injection

040 GitHub stars

05Support for Simple, OOP, and PSR-4 plugin architecture patterns

06Implementation of the Security Trinity (Sanitize, Validate, Escape) for all data handling

使用场景

01Refactoring legacy WordPress code to meet modern security standards and PHP 8.x compatibility

02Scaffolding a new, secure WordPress plugin from scratch with modern PSR-4 autoloading

03Troubleshooting and patching vulnerabilities like XSS, CSRF, and SQL injection in existing plugins

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add evolv3ai/claude-skills-archive wordpress-plugin-core

For use in Claude.ai and ChatGPT

Download Skill