PHPackages typisttech/wordfence-api - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. typisttech/wordfence-api ActiveLibrary[Security](/categories/security) typisttech/wordfence-api ======================== Fetch WordPress vulnerability information from Wordfence vulnerability data feed. v0.2.0(6mo ago)36[6 PRs](https://github.com/typisttech/wordfence-api/pulls)MITPHPPHP ^8.3CI passing Since Dec 3Pushed 1mo agoCompare [ Source](https://github.com/typisttech/wordfence-api)[ Packagist](https://packagist.org/packages/typisttech/wordfence-api)[ Docs](https://github.com/typisttech/wordfence-api)[ Fund](https://typist.tech/donation/)[ GitHub Sponsors](https://github.com/tangrufus)[ RSS](/packages/typisttech-wordfence-api/feed)WikiDiscussions main Synced 1mo ago READMEChangelog (5)Dependencies (9)Versions (14)Used By (0) Wordfence API ============= [](#wordfence-api) [![Packagist Version](https://camo.githubusercontent.com/c524047f6e31156b57b8c6998900e89208d0ed0eb4680cec3ca02a787881fa76/68747470733a2f2f696d672e736869656c64732e696f2f7061636b61676973742f762f747970697374746563682f776f726466656e63652d617069)](https://packagist.org/packages/typisttech/wordfence-api)[![PHP Version Require](https://camo.githubusercontent.com/cd61bb0b784416bbdbd3cf98ac070b644a8f36c2182d5dea6ff7bee06b9e3160/68747470733a2f2f696d672e736869656c64732e696f2f7061636b61676973742f646570656e64656e63792d762f747970697374746563682f776f726466656e63652d6170692f706870)](https://github.com/typisttech/wordfence-api/blob/main/composer.json#:~:text=%22php%22%3A,%22%2C)[![Test](https://github.com/typisttech/wordfence-api/actions/workflows/test.yml/badge.svg)](https://github.com/typisttech/wordfence-api/actions/workflows/test.yml)[![codecov](https://camo.githubusercontent.com/90df1cc94d726c472f240d106e5c637d9c06bc2644dd90138f42328a7340baae/68747470733a2f2f636f6465636f762e696f2f67682f747970697374746563682f776f726466656e63652d6170692f67726170682f62616467652e7376673f746f6b656e3d5047485a375a4f524331)](https://codecov.io/gh/typisttech/wordfence-api)[![License](https://camo.githubusercontent.com/5b23b2219c05033589496b2e68081f328bd442f82df27580ad0bec863cc78696/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f6c6963656e73652f747970697374746563682f776f726466656e63652d6170692e737667)](https://github.com/typisttech/wordfence-api/blob/master/LICENSE)[![Follow @TangRufus on X](https://camo.githubusercontent.com/7415ea9d2391e64fc2a35887d01d58c13cac70988c9ecc62b57bc7fee6104de5/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f466f6c6c6f772d54616e6752756675732d3135323032423f6c6f676f3d78266c6f676f436f6c6f723d7768697465)](https://x.com/tangrufus)[![Follow @TangRufus.com on Bluesky](https://camo.githubusercontent.com/6d838460816d5ab6e0e1f911a11f2731f12f3538761d12b8638f32861fcf2e1a/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f426c7565736b792d54616e6752756675732e636f6d2d626c75653f6c6f676f3d626c7565736b79)](https://bsky.app/profile/tangrufus.com)[![Sponsor @TangRufus via GitHub](https://camo.githubusercontent.com/49753abc8cb53b971b0e46dec52e9ed32eaebf73be15ce3963306559a3ec7ccb/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f53706f6e736f722d54616e6752756675732d4541344141413f6c6f676f3d67697468756273706f6e736f7273)](https://github.com/sponsors/tangrufus)[![Hire Typist Tech](https://camo.githubusercontent.com/13f50b9bd2301613833b4f0ac55700b2f1c297c0fff7ba45a2a98b6c938a18db/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f486972652d547970697374253230546563682d373738383939)](https://typist.tech/contact/) **Fetch WordPress vulnerability information from [Wordfence vulnerability data feed.](https://www.wordfence.com/help/wordfence-intelligence/v2-accessing-and-consuming-the-vulnerability-data-feed/)** Built with ♥ by [Typist Tech](https://typist.tech/) --- Tip **Hire Tang Rufus!** I am looking for my next role, freelance or full-time. If you find this package useful, I can build you more API clients like this. Let's talk if you are hiring PHP / Ruby / Go developers. Contact me at --- Usage ----- [](#usage) ``` use \TypistTech\WordfenceAPI\{Client, Feed, Record}; $client = new Client; // Alternatively, use `Feed::Scanner` for the scanner feed. $records = $client->fetch(Feed::Production); foreach($records as $record) { /** @var Record $record */ echo $record->title; } ``` Known Issues ------------ [](#known-issues) ### `Allowed memory size of 999999 bytes exhausted (tried to allocate 99 bytes)` [](#allowed-memory-size-of-999999-bytes-exhausted-tried-to-allocate-99-bytes) Tip Set `memory_limit` on the fly as a temporary fix: ``` php -d memory_limit=512MB your-script.php ``` As of October 2025, the [production Wordfence vulnerability data feed](https://www.wordfence.com/api/intelligence/v2/vulnerabilities/production) is over 117 MB. [`Client::fetch()`](./src/Client.php) downloads the feed into memory and `json_decode()` the entire feed all in one go. It causes PHP to run out of memory. A possible solution is to use a streaming JSON parser like [`json.Decoder`](https://pkg.go.dev/encoding/json#example-Decoder.Decode-Stream) in Go. If you know how to do that in PHP, please send pull requests. 🙇 Tip **Hire Tang Rufus!** There is no need to understand any of these quirks. Let me handle them for you. I am seeking my next job, freelance or full-time. If you are hiring PHP / Ruby / Go developers, contact me at Installation ------------ [](#installation) ``` composer require typisttech/wordfence-api ``` Credits ------- [](#credits) [`Wordfence API`](https://github.com/typisttech/wordfence-api) is a [Typist Tech](https://typist.tech) project and maintained by [Tang Rufus](https://x.com/TangRufus), freelance developer [for hire](https://typist.tech/contact/). Full list of contributors can be found [on GitHub](https://github.com/typisttech/wordfence-api/graphs/contributors). Copyright and License --------------------- [](#copyright-and-license) This project is a [free software](https://www.gnu.org/philosophy/free-sw.en.html) distributed under the terms of the MIT license. For the full license, see [LICENSE](./LICENSE). ### Wordfence Intelligence Terms and Conditions [](#wordfence-intelligence-terms-and-conditions) Before using Wordfence Vulnerability Data Feed API, you must read and agree to the [Wordfence Intelligence Terms and Conditions](https://www.wordfence.com/wordfence-intelligence-terms-and-conditions/). Learn more at [Wordfence help documentation](https://www.wordfence.com/help/wordfence-intelligence/v2-accessing-and-consuming-the-vulnerability-data-feed/#vulnerability-data-feed). If you have any questions about the terms and conditions, please contact Wordfence directly. ### MITRE Attribution Requirement [](#mitre-attribution-requirement) Any company or individual who uses Wordfence vulnerability database API needs to display the MITRE copyright claims included in that vulnerability record for any MITRE vulnerabilities that they display to their end user. Learn more at [Wordfence help documentation](https://www.wordfence.com/help/wordfence-intelligence/v2-accessing-and-consuming-the-vulnerability-data-feed/#mitre_attribution_requirement). If you have any questions about the attribution requirement, please contact Wordfence directly. Contribute ---------- [](#contribute) Feedbacks / bug reports / pull requests are welcome. ### Health Score 39 — LowBetter than 86% of packages Maintenance79 Regular maintenance activity Popularity9 Limited adoption so far Community9 Small or concentrated contributor base Maturity51 Maturing project, gaining track record Bus Factor1 Top contributor holds 53.7% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~81 days Total 5 Last Release 204d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/c1b05c8ed4ea3f68173555264d0226d5faeb7f315ed9df91890c351ef576ce72?d=identicon)[TangRufus](/maintainers/TangRufus) --- Top Contributors [![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?v=4)](https://github.com/dependabot[bot] "dependabot[bot] (29 commits)")[![tangrufus](https://avatars.githubusercontent.com/u/2259834?v=4)](https://github.com/tangrufus "tangrufus (24 commits)")[![tastendruck[bot]](https://avatars.githubusercontent.com/u/25708257?v=4)](https://github.com/tastendruck[bot] "tastendruck[bot] (1 commits)") --- Tags wordfencewordpresswordpress-securitywordpresssecuritywordfence ### Code Quality TestsPest Static AnalysisPHPStan Type Coverage Yes ### Embed Badge ![Health badge](/badges/typisttech-wordfence-api/health.svg) ``` [![Health](https://phpackages.com/badges/typisttech-wordfence-api/health.svg)](https://phpackages.com/packages/typisttech-wordfence-api) ``` ### Alternatives [dgtlss/warden A Laravel package that proactively monitors your dependencies for security vulnerabilities by running automated composer audits and sending notifications via webhooks and email 8745.6k](/packages/dgtlss-warden)[brain/nonces OOP package for WordPress to deal with nonces. 26227.1k1](/packages/brain-nonces) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)