No file difference warning if repository readme is updated?

  • John-Pierre Cornelissen

    (@jpnl)


    7 years, 8 months ago

    Hi,

    I have a suggestion to not report/e-mail a file difference warning when the readme file in the WordPress repository has been updated.

    I had a discussion with a plugin developer about him updating the readme file without pushing a real update, and me getting a ton of warning e-mails about the readme file difference. He said:

    Whenever a new WordPress version is about to come out, plugin authors are asked to test their plugins for compatibility and update the readme accordingly. Readme-only updates are supposed to happen, so I’m not sure what WordFence is throwing an alert for.

    Or maybe detect which side of the file has been changed.
    – No warning if the readme file in the repo is updated
    – Do warn if the installed readme is updated

    What do you think about this?

    Thanks
    JP

    https://wordpress.org/plugins/wordfence/

Viewing 5 replies - 1 through 5 (of 5 total)
  • Sonja London

    (@summit)

    7 years, 8 months ago

    I agree. These warnings do not appear to be valid security issues. Investigating them or even having to look at them is a big waste of our time.

    Please do something about these false warnings.

    ldeschenes

    (@ldeschenes)

    7 years, 8 months ago

    I have been complaining about that too for some time. See tread https://wordpress.org/support/topic/readmetxt-warnings
    but got no answer from Wordfence support.

    I also agree, that they should do something about these annoying false alerts.

    WORDFENCE ARE YOU LISTENING.

    bluebearmedia

    (@bluebearmedia)

    7 years, 8 months ago

    Wordfence is simply flagging a difference for your awareness, you can easily ignore it.

    I don’t believe the software should presume to necessarily know how significant something is (especially if it has no way to determine it) – it simply reports a difference for you to interpret as you see fit!

    In my opinion, you run the software, the software doesn’t run you….

    zsl

    (@zsl)

    7 years, 8 months ago

    Yes, please fix this.

    Thread Starter John-Pierre Cornelissen

    (@jpnl)

    7 years, 8 months ago

    @bluebearmedia software exist to make life easier and dor work faster. Not the other way around. I realize it currently only flags a file difference. That’s why I wrote “I have a SUGGESTION”.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘No file difference warning if repository readme is updated?’ is closed to new replies.

Tags