Support » Plugin: Jetpack by WordPress.com » Jetpack files modofied

  • Resolved BeniBook.com

    (@benibookcom)


    Warnings:

    * Modified plugin file: wp-content/plugins/jetpack/_inc/jetpack-strings.php

    * Modified plugin file: wp-content/plugins/jetpack/class.jetpack.php

    * Modified plugin file: wp-content/plugins/jetpack/modules/carousel/jetpack-carousel.js

    * Modified plugin file: wp-content/plugins/jetpack/modules/sharedaddy/sharing-service.php

    * Modified plugin file: wp-content/plugins/jetpack/modules/videopress/class.videopress-xmlrpc.php

    * Modified plugin file: wp-content/plugins/jetpack/modules/videopress/utility-functions.php

    * Modified plugin file: wp-content/plugins/jetpack/modules/widgets/image-widget.php

    * Modified plugin file: wp-content/plugins/jetpack/readme.txt

Viewing 14 replies - 1 through 14 (of 14 total)
  • Plugin Author Jeremy Herve

    (@jeherve)

    Jetpack Mechanic 🚀

    This is a list of the files that were modified in the last Jetpack update, 4.7.1. You can find more details about the release here:
    https://wordpress.org/plugins/jetpack/changelog/

    Do you experience issues with those files?

    I believe OP is referring to a modified files warning showing up in Wordfence scans. All of my sites that run Wordfence had that list of files pop as “warning: modified” since the newest version of Jetpack rolled out.

    I will have same problem with all WP..When i update to 4.7.1 ?

    Hi Jeremy
    I don’t check if the was any issues

    Plugin Author Jeremy Herve

    (@jeherve)

    Jetpack Mechanic 🚀

    I’m not quite sure how Wordfence scans work, so it might be worth getting in touch with them about it. I can only confirm that these files were indeed modified in the last Jetpack release, so the notices you’re receiving might be normal and to be expected.

    This is not resolved. I just ran a scan and it comes up with file discrepancies. I have 60 websites reporting the same thing. Something went wrong with your last roll-out.

    And I did contact WordFence support and they told me to post the problem here.

    Here’s the reply from WordFence support.
    —————————
    Thanks for pointing that out. We’ve had several people notify us. You might reach out to jetpack in the forums as well.

    Thanks and stay safe!

    Tim
    Customer Support Engineer

    Is there any similar plugin like jetpack BUt more secure ?

    Not sure that security is the issue here. And I don’t recall any reports of JetPack having security bugs. Frankly, the scope of the things that the JetPack plugin does is quite large. Guessing you would need several plugins to cover all of its functions. But I’m confident that Jeremy, or the person in charge of rolling out a new version will figure out what went wrong and fix it. It was almost certainly just an “oops, forgot to do that.” And no way I’m giving up JetPack. It’s one of the first plugins I install on every website. I currently maintain and host 60 websites and I will say that JetPack makes my life a lot easier.

    Plugin Author Jeremy Herve

    (@jeherve)

    Jetpack Mechanic 🚀

    First of all, you can all rest assured: this is not a security issue. The files mentioned in your reports are all files that were indeed modified, on purpose, for the release of Jetpack 4.7.1. You can find a full changelog here:
    https://wordpress.org/plugins/jetpack/changelog/

    You can also find a list of all the things that were changed in this version here:
    https://github.com/Automattic/jetpack/compare/4.7…4.7.1

    If you have any doubts, you can also delete the Jetpack plugin and reinstall it from scratch.

    I can’t say for sure since I’m not familiar with how Wordfence scans work, but we had a similar issue with a previous Jetpack release a few months ago. I had reported it to the Wordfence team here:
    https://wordpress.org/support/topic/modified-plugin-files-flagged-in-the-most-recent-version-of-jetpack/

    At the time, one of the plugin authors had a few ideas about what could have gone wrong:
    https://wordpress.org/support/topic/modified-plugin-files-flagged-in-the-most-recent-version-of-jetpack/#post-8324599

    I’ve commented on that same thread again to let the Wordfence team know this is happening again. Hopefully they’ll let us know if the problem is the same as last time:
    https://wordpress.org/support/topic/modified-plugin-files-flagged-in-the-most-recent-version-of-jetpack/#post-8922191

    You can subscribe to that thread to be notified when the Wordfence team responds, and I’ll also update you all on this thread as soon as I get a reply.

    Same story in another WP
    Modified plugin file: wp-content/plugins/jetpack/class.jetpack.php

    Again 8 files modified ..No issue!

    this is more likely a case of your host that block updates on certain files. wordfence accurately checks the repo version vs your local files. in my case before readme txt files are not updated in my host by default and they went step further blocking other plugins who seem to not pass their check update script. if i were you id contact them and politely but sometime they dont listen so what i do is manually update plugins like jetpack and other plugins that are deemed “resource heavy” by some hosting companies

    Plugin Author Jeremy Herve

    (@jeherve)

    Jetpack Mechanic 🚀

    The problem should now be fixed, as mentioned here:
    https://wordpress.org/support/topic/modified-plugin-files-flagged-in-the-most-recent-version-of-jetpack/page/2/#post-8928440

    Could you all try to launch a new Wordfence scan, and let us know in the thread above if you still see the same notices with Jetpack files?

    Thanks!

Viewing 14 replies - 1 through 14 (of 14 total)
  • The topic ‘Jetpack files modofied’ is closed to new replies.