wp-rest-api
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill provides technical guidance for WordPress REST API development that adheres to security best practices, such as requiring a 'permission_callback' for all registered routes to ensure proper authorization.
- [SAFE]: It emphasizes the use of 'validate_callback', 'sanitize_callback', and JSON Schema for all request arguments, which mitigates the risk of injection and data integrity issues.
- [COMMAND_EXECUTION]: The procedure includes running a local vendor-owned Node.js script ('detect_wp_project.mjs') for initial project triage, which is a standard step for identifying the environment and project structure.
Audit Metadata