Title: wp-security-txt Author: securitytext.org Published: 2017 年 11 月 22 日 Last modified: 2017 年 11 月 22 日 --- 搜尋外掛 ![](https://ps.w.org/wp-security-txt/assets/banner-772x250.png?rev=1773636) 這個外掛**並未在最新的 3 個 WordPress 主要版本上進行測試**。開發者可能不再對這個 外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。 ![](https://ps.w.org/wp-security-txt/assets/icon-256x256.png?rev=1773636) # wp-security-txt 由 [securitytext.org](https://profiles.wordpress.org/securitytxt/) 開發 [下載](https://downloads.wordpress.org/plugin/wp-security-txt.zip) * [詳細資料](https://tw.wordpress.org/plugins/wp-security-txt/#description) * [使用者評論](https://tw.wordpress.org/plugins/wp-security-txt/#reviews) * [安裝方式](https://tw.wordpress.org/plugins/wp-security-txt/#installation) * [開發資訊](https://tw.wordpress.org/plugins/wp-security-txt/#developers) [技術支援](https://wordpress.org/support/plugin/wp-security-txt/) ## 外掛說明 The purpose of this project is to create a set-it-and-forget-it plugin that can be installed without much effort to get a WordPress site compliant with the current [`security.txt`](https://securitytxt.org/) spec. It is therefore highly opinionated but built for configuration. It will automatically configure itself but you are encouraged to visit the plugin settings page after activating it. [`security.txt`](https://github.com/securitytxt) is a [draft](https://tools.ietf.org/html/draft-foudil-securitytxt-00)“ standard” which allows websites to define security policies. This “standard” sets clear guidelines for security researchers on how to report security issues, and allows bug bounty programs to define a scope. Security.txt is the equivalent of ` robots.txt`, but for security issues. There is a help page built into the plugin if you need help configuring it. For developers, there is [documentation for `wordpress-security-txt` online](https://austinheap.github.io/wordpress-security-txt/), the source of which is in the [`docs/`](https://github.com/austinheap/wordpress-security-txt/tree/master/docs) directory. The most logical place to start are the [docs for the `WordPress_Security_Txt` class](https://austinheap.github.io/wordpress-security-txt/packages/WordPress.Security.Txt.html). ### Translations The `security.txt` for WordPress plugin includes translations for the following 17 languages: * Arabic ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-ar_AR.po)) * Bengali ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-bn_BN.po)) * Catalan ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-ca_ES.po)) * Chinese (Simplified) ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-zh_CN.po)) * Chinese (Traditional) ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-zh_TW.po)) * English ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-en_EN.po)) * English (AU) ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-en_AU.po)) * English (US) ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-en_US.po)) * French ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-fr_FR.po)) * German ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-de_DE.po)) * Hindi ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-hi_IN.po)) * Italian ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-it_IT.po)) * Portuguese ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-pt_PT.po)) * Portuguese (BR) ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-pt_BR.po)) * Romanian ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-ro_RO.po)) * Russian ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-ru_RU.po)) * Spanish ([PO file](https://github.com/austinheap/wordpress-security-txt-translations/blob/master/wordpress-security-txt-es_ES.po)) If you would like to contribute a new languge or you spotted in error in one of the translation files, please feel free to contribute directly to the [public `wordpress-security-txt` POEditor project](https://poeditor.com/join/project/utTvBn327C). Once accepted additions/modifications are automagically built by POEditor to PO/ MO files and published to the [wordpress-security-txt-translation](https://github.com/austinheap/wordpress-security-txt-translations) repository. The translations repository is included in builds submitted to the WordPress plugin directory. Users with the [GitHub Updater Plugin](https://github.com/afragen/github-updater) don’t have to wait for builds to the WordPress plugin directory — they can get updated translations as soon as they’re published to the repository by POEditor. ### Anonymous Statistics (Opt-in) This plugin has an option — that is **disabled** by default and _can only be enabled by explicilty opt-ing in_ on the `security.txt` Settings page — to collect anonymous statistics to help better understand how this plugin is used and how people are implementing their `security.txt` documents. The goal of collecting this data is to aid in research and design of the [specification](https://tools.ietf.org/html/draft-foudil-securitytxt-00), the [PHP library](https://github.com/austinheap/php-security-txt), the [plugin](https://github.com/austinheap/wordpress-security-txt) itself, and to help us create a better experience for all users. For example, one function of anonymous statistics is to send your `security.txt` document to our servers. This allows us to track what percent of users are implementing the specification according to the draft RFC, and how it might differ from the explicit definitions submitted to the [Internet Engineering Task Force (IETF)](https://www.ietf.org/). We respect your privacy and are happy to clarify on any aspect of the statistics collection and analysis. More importantly, you can [verify this in the code for yourself on GitHub](https://github.com/austinheap/wordpress-security-txt/tree/master/trunk). We do not track **any** personally-identifiable information and we are committed to protecting your privacy. With regards to performance, the tracking is implemented in such a way so as to not impact of your WordPress site at all. ### Badges All the badges! ## 螢幕擷圖 * [[ * Easily control the declaratives of your `security.txt` document. * [[ * Generates valid `security.txt` documents for the latest spec. ## 安裝方式 This section describes how to install `wordpress-security-txt` and get it working. 1. Upload `wordpress-security-txt` to the `/wp-content/plugins/` directory. 2. Activate the plugin through the ‘Plugins’ menu in WordPress. 3. Configure the plugin using the ‘settings.txt’ link under ‘Settings’. ## 常見問題集 Installation Instructions This section describes how to install `wordpress-security-txt` and get it working. 1. Upload `wordpress-security-txt` to the `/wp-content/plugins/` directory. 2. Activate the plugin through the ‘Plugins’ menu in WordPress. 3. Configure the plugin using the ‘settings.txt’ link under ‘Settings’. Where should I report bugs I encounter? Please report any issues you encounter via the [GitHub issues tracker](https://github.com/austinheap/laravel-security-txt/issues). How can I contribute to the code base? If you’d like to contribute to this plugin, [pull requests](https://github.com/austinheap/laravel-security-txt/pulls) are welcome. For more information please see [CONTRIBUTING.md](https://github.com/austinheap/laravel-security-txt/blob/master/CONTRIBUTING.md). What version of the `security.txt` spec does this plugin implement? This version of the plugin implements the `security.txt` specification found in the plugin folder. The specification the plugin implements is also [available online](https://github.com/austinheap/laravel-security-txt/blob/master/SPECIFICATION.md) or via the ‘settings.txt Help’ page in the WordPress admin. Can I add more than one `Contact` directive? While the specification explicitly allows for more than one `Contact` directive, this plugin currently only supports a single entry. ## 使用者評論 ![](https://secure.gravatar.com/avatar/0564a4892b58bb26ccca2b31db9ad1f283f604bed8e1d611c46501244caaef50? s=60&d=retro&r=g) ### 󠀁[Excellent](https://wordpress.org/support/topic/excellent-5776/)󠁿 [Pierre Lannoy](https://profiles.wordpress.org/pierrelannoy/) 2018 年 1 月 8 日 1 則留言 Do exactly what it says. Clean code / clean UI… what else? Great plugin. Thanks for it. [ 閱讀全部 1 則使用者評論 ](https://wordpress.org/support/plugin/wp-security-txt/reviews/) ## 參與者及開發者 以下人員參與了開源軟體〈wp-security-txt〉的開發相關工作。 參與者 * [ securitytext.org ](https://profiles.wordpress.org/securitytxt/) 〈wp-security-txt〉外掛目前已有 13 個本地化語言版本。 感謝[全部譯者](https://translate.wordpress.org/projects/wp-plugins/wp-security-txt/contributors) 為這個外掛做出的貢獻。 [將〈wp-security-txt〉外掛本地化為台灣繁體中文版](https://translate.wordpress.org/projects/wp-plugins/wp-security-txt) ### 對開發相關資訊感興趣? 任何人均可[瀏覽程式碼](https://plugins.trac.wordpress.org/browser/wp-security-txt/)、 查看 [SVN 存放庫](https://plugins.svn.wordpress.org/wp-security-txt/),或透過 [RSS](https://plugins.trac.wordpress.org/log/wp-security-txt/?limit=100&mode=stop_on_copy&format=rss) 訂閱[開發記錄](https://plugins.trac.wordpress.org/log/wp-security-txt/)。 ## 變更記錄 #### 1.0.0 * Initial release. ## 中繼資料 * 版本 **1.0.0** * 最後更新 **8 年前** * 啟用安裝數 **60+** * WordPress 版本需求 ** 4.9 或更新版本 ** * 已測試相容的 WordPress 版本 **4.9.29** * PHP 版本需求 ** 7.0 或更新版本 ** * 語言 * [Arabic](https://ar.wordpress.org/plugins/wp-security-txt/)、[Catalan](https://ca.wordpress.org/plugins/wp-security-txt/)、 [Chinese (China)](https://cn.wordpress.org/plugins/wp-security-txt/)、[English (Australia)](https://en-au.wordpress.org/plugins/wp-security-txt/)、 [English (US)](https://wordpress.org/plugins/wp-security-txt/)、[French (France)](https://fr.wordpress.org/plugins/wp-security-txt/)、 [German](https://de.wordpress.org/plugins/wp-security-txt/)、[Hindi](https://hi.wordpress.org/plugins/wp-security-txt/)、 [Italian](https://it.wordpress.org/plugins/wp-security-txt/)、[Portuguese (Brazil)](https://br.wordpress.org/plugins/wp-security-txt/)、 [Romanian](https://ro.wordpress.org/plugins/wp-security-txt/)、[Russian](https://ru.wordpress.org/plugins/wp-security-txt/)、 [Spanish (Chile)](https://cl.wordpress.org/plugins/wp-security-txt/)、及 [Spanish (Spain)](https://es.wordpress.org/plugins/wp-security-txt/). * [將這個外掛本地化為你的母語版本](https://translate.wordpress.org/projects/wp-plugins/wp-security-txt) * 標籤 * [infosec](https://tw.wordpress.org/plugins/tags/infosec/)[netsec](https://tw.wordpress.org/plugins/tags/netsec/) [responsible disclosure](https://tw.wordpress.org/plugins/tags/responsible-disclosure/) [security](https://tw.wordpress.org/plugins/tags/security/)[security.txt](https://tw.wordpress.org/plugins/tags/security-txt/) * [進階檢視](https://tw.wordpress.org/plugins/wp-security-txt/advanced/) ## 評分 5 星,滿分為 5 星 * [ 1 個 5 星使用者評論 ](https://wordpress.org/support/plugin/wp-security-txt/reviews/?filter=5) * [ 0 個 4 星使用者評論 ](https://wordpress.org/support/plugin/wp-security-txt/reviews/?filter=4) * [ 0 個 3 星使用者評論 ](https://wordpress.org/support/plugin/wp-security-txt/reviews/?filter=3) * [ 0 個 2 星使用者評論 ](https://wordpress.org/support/plugin/wp-security-txt/reviews/?filter=2) * [ 0 個 1 星使用者評論 ](https://wordpress.org/support/plugin/wp-security-txt/reviews/?filter=1) [Your review](https://wordpress.org/support/plugin/wp-security-txt/reviews/#new-post) [查看全部使用者評論](https://wordpress.org/support/plugin/wp-security-txt/reviews/) ## 參與者 * [ securitytext.org ](https://profiles.wordpress.org/securitytxt/) ## 技術支援 使用者可在技術支援論壇提出意見反應或使用問題。 [檢視技術支援論壇](https://wordpress.org/support/plugin/wp-security-txt/) ## 贊助 想要支援這個外掛的發展嗎? [ 贊助這個外掛 ](https://securitytxt.org/)