PHPackages generoi/wp-cli-wordfence - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [CLI & Console](/categories/cli) 4. / 5. generoi/wp-cli-wordfence AbandonedArchivedWordpress-plugin[CLI & Console](/categories/cli) generoi/wp-cli-wordfence ======================== A Wordfence plugin scanner for WP CLI 0.0.2(2y ago)1361MITPHPPHP >=8.0.0 Since Sep 6Pushed 2y ago2 watchersCompare [ Source](https://github.com/generoi/wp-cli-wordfence)[ Packagist](https://packagist.org/packages/generoi/wp-cli-wordfence)[ Docs](https://github.com/generoi/wp-cli-wordfence)[ RSS](/packages/generoi-wp-cli-wordfence/feed)WikiDiscussions master Synced 1mo ago READMEChangelog (1)Dependencies (7)Versions (4)Used By (0) wp-cli-wordfence ================ [](#wp-cli-wordfence) > A WP CLI command packaged as a plugin which uses [Wordfence public vulnerablitiy feed](https://www.wordfence.com/intelligence-documentation/v2-accessing-and-consuming-the-vulnerability-data-feed/) to scan all plugins against known security advisories. Note that security advisories without a patch will use exit(0) and thus not detected as an error exit(1) Requirements ------------ [](#requirements) - WP-CLI Usage ----- [](#usage) ``` NAME wp wordfence scan DESCRIPTION Scan plugins for vulnerabilities SYNOPSIS wp wordfence scan [...] [--email=] [--format=] [--only-errors] [--force] [--verbose] [...] One or more plugin slugs to check [--email=] Send vulnerability report to email [--format=] Format to use: ‘table’, ‘json’, ‘csv’, ‘yaml’, ‘ids’, ‘count’ (default: `table`) [--only-errors] Only output errors [--force] Force run even if unchanged [--verbose] Use verbose output ``` Example output -------------- [](#example-output) ``` +----------------------------------------------------------------------------------+---------------------+-----------+-------------------------------------------------------------------------------------+ | vulnerability | exception | has patch | references | +----------------------------------------------------------------------------------+---------------------+-----------+-------------------------------------------------------------------------------------+ | WordPress Core - All Versions - Authenticated(Administrator+) PHP File Upload | * < 6.2.2 < * | | https://www.wordfence.com/threat-intel/vulnerabilities/id/0a6707ef-aab7-449c-8160-0 | | | | | 34bc188a998?source=api-scan | | WordPress Core > $GITHUB_ENV cat ./composer.json >> $GITHUB_ENV echo 'EOF' >> $GITHUB_ENV - name: Setup PHP uses: shivammathur/setup-php@v2 with: php-version: ${{ fromJson(env.COMPOSER_JSON).config.platform.php }} - name: Start MySQL service run: | sudo /etc/init.d/mysql start mysql -e 'CREATE DATABASE db;' -uroot -proot mysql -e "CREATE USER 'db'@'localhost' IDENTIFIED BY 'db';" -uroot -proot mysql -e "GRANT ALL PRIVILEGES ON db.* TO 'db'@'localhost' WITH GRANT OPTION;" -uroot -proot - name: Install packages run: composer install - name: Launch web server run: ./vendor/bin/wp server & - name: Setup .env run: | cp .env.example .env sed -i 's/WP_HOME=.*/WP_HOME=http:\/\/localhost:8080/g' .env sed -i 's/DB_HOST=.*/DB_HOST=localhost/g' .env - name: Install WordPress run: ./vendor/bin/wp core install --url=http://localhost:8080 --title="Bedrock" --admin_user="admin" --admin_password="admin" --admin_email="bedrock@example.test" - name: Run scan run: | ./vendor/bin/wp plugin activate wp-cli-wordfence ./vendor/bin/wp wordfence scan --email=foo@example.org ``` Development ----------- [](#development) Install dependencies ``` composer install ``` Run the tests ``` npm -g i @wordpress/env wp-env start wp-env run tests-cli --env-cwd=wp-content/plugins/wp-cli-wordfence ./vendor/bin/phpunit ``` ### Health Score 21 — LowBetter than 18% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity10 Limited adoption so far Community9 Small or concentrated contributor base Maturity40 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~0 days Total 2 Last Release 983d ago ### Community Maintainers ![](https://avatars.githubusercontent.com/u/302736?v=4)[oxyc](/maintainers/oxyc)[@oxyc](https://github.com/oxyc) --- Top Contributors [![oxyc](https://avatars.githubusercontent.com/u/302736?v=4)](https://github.com/oxyc "oxyc (25 commits)") --- Tags wordpress ### Code Quality TestsPHPUnit Static AnalysisPHPStan Code StylePHP\_CodeSniffer Type Coverage Yes ### Embed Badge ![Health badge](/badges/generoi-wp-cli-wordfence/health.svg) ``` [![Health](https://phpackages.com/badges/generoi-wp-cli-wordfence/health.svg)](https://phpackages.com/packages/generoi-wp-cli-wordfence) ``` ### Alternatives [wp-cli/wp-cli WP-CLI framework 5.0k17.2M320](/packages/wp-cli-wp-cli)[wp-cli/wp-cli-bundle WP-CLI bundle package with default commands. 896.3M131](/packages/wp-cli-wp-cli-bundle)[aaemnnosttv/wp-cli-valet-command White-glove services for turn-key installs in seconds. 3142.4k](/packages/aaemnnosttv-wp-cli-valet-command)[wearerequired/wp-cli-clear-opcache Use WP-CLI to clear the OPcache for a site via HTTP. 1735.6k](/packages/wearerequired-wp-cli-clear-opcache) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)