Disable plugin install but allow updates
I think it would be very good security-wise and convenience-wise to have a config flag that disallows the installation of new plugins (and therefore disallowing the injection of malicious code) but allows the update of existing plugins and wordpress itself. Kinda like introducing the notion of “trusted” plugins.
What do you think?
- The topic ‘Disable plugin install but allow updates’ is closed to new replies.