ataylorme
commented
6 years ago Thanks for the link @ScreamingDev - I haven't seen this resource before.
Closed ScreamingDev closed 6 years ago
ataylorme
commented
6 years ago Thanks for the link @ScreamingDev - I haven't seen this resource before.
ataylorme
commented
6 years ago @ScreamingDev I think rather than bringing this all in we can link to it as an additional resource in the security section, which had a lot more content added in #16
See #20 for the PR
ataylorme
commented
6 years ago @ScreamingDev thanks for the suggestion but I don't think we will be including this for now. See the details in #20.
ScreamingDev
commented
6 years ago Nice. Link is enough, right. As this is almost open source don't we want to enhance the owasp or maintain a wp entry there? Feels better than everyone doing their own documents. Dunno if this fits to the goal of this repo but I am sure you can tell :)
ataylorme
commented
6 years ago I agree open source is about helping all parties. I requested access to make edits about 2 weeks ago and haven't heard anything. If that changes I can suggest changes but if the docs stay as-is we don't feel comfortable linking to outdated materials.
Suggestion:
OWASP has a site for WordPress with lots of information (maybe partly outdated):
https://www.owasp.org/index.php/OWASP_Wordpress_Security_Implementation_Guideline
As the security site is still empty you may want to bring in some of those contents.