wordpress-penetration-testing
AUTHORIZED USE ONLY: Use this skill only for authorized security assessments, defensive validation, or controlled educational environments.
WordPress Penetration Testing
WordPress 7.0 Security Considerations
WordPress 7.0 (April 2026) introduces new features that create additional attack surfaces:
Real-Time Collaboration (RTC)
- Yjs CRDT sync provider endpoints
wp_sync_storagepost meta- Collaboration session hijacking
- Data sync interception
AI Connector API
/wp-json/ai/v1/endpoints- Credential storage in Settings > Connectors
- Prompt injection vulnerabilities
- AI response manipulation
More from sickn33/antigravity-awesome-skills
docker-expert
You are an advanced Docker containerization expert with comprehensive, practical knowledge of container optimization, security hardening, multi-stage builds, orchestration patterns, and production deployment strategies based on current industry best practices.
15.0Knodejs-best-practices
Node.js development principles and decision-making. Framework selection, async patterns, security, and architecture. Teaches thinking, not copying.
11.2Ktypescript-expert
TypeScript and JavaScript expert with deep knowledge of type-level programming, performance optimization, monorepo management, migration strategies, and modern tooling.
8.3Kapi-security-best-practices
Implement secure API design patterns including authentication, authorization, input validation, rate limiting, and protection against common API vulnerabilities
7.0Kclean-code
This skill embodies the principles of \"Clean Code\" by Robert C. Martin (Uncle Bob). Use it to transform \"code that works\" into \"code that is clean.\"
6.6Knextjs-best-practices
Next.js App Router principles. Server Components, data fetching, routing patterns.
5.2K