wp-security

Installation

SKILL.md

WordPress Security Best Practices

OWASP Top 10 for WordPress

1. SQL Injection Prevention

// WRONG - Never do this
$wpdb->query( "SELECT * FROM table WHERE id = " . $_GET['id'] );

// CORRECT - Always use prepare()
$wpdb->get_results( $wpdb->prepare(
    "SELECT * FROM {$wpdb->prefix}table WHERE id = %d",
    absint( $_GET['id'] )
) );

Related skills

More from alanef/plugin-fullworks-support-diagnostics-project

wordpress-plugin-dev
Professional WordPress plugin development best practices following our project structure with composer, namespaced classes, wp-env testing, WPCS compliance, and proper plugin architecture. Use this when working on WordPress plugin code.
12

Installs

Repository

alanef/plugin-f…-project

GitHub Stars

First Seen

Jan 29, 2026

Security Audits

Gen Agent Trust HubPass

SocketPass

SnykPass

wp-security

WordPress Security Best Practices

OWASP Top 10 for WordPress

1. SQL Injection Prevention

More from alanef/plugin-fullworks-support-diagnostics-project

wordpress-plugin-dev