PHPackages yemenifree/wp-security - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. yemenifree/wp-security ActiveLibrary[Security](/categories/security) yemenifree/wp-security ====================== Basic security helper for WordPress. 1.0.6(8y ago)212PHP Since Nov 25Pushed 8y ago2 watchersCompare [ Source](https://github.com/salkhwlani/wp-security)[ Packagist](https://packagist.org/packages/yemenifree/wp-security)[ RSS](/packages/yemenifree-wp-security/feed)WikiDiscussions master Synced 2mo ago READMEChangelogDependencies (1)Versions (8)Used By (0) Basic WordPress Security ======================== [](#basic-wordpress-security) [![Software License](https://camo.githubusercontent.com/55c0218c8f8009f06ad4ddae837ddd05301481fcf0dff8e0ed9dadda8780713e/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f6c6963656e73652d4d49542d627269676874677265656e2e7376673f7374796c653d666c61742d737175617265)](LICENSE.md)[![Build Status](https://camo.githubusercontent.com/4c1e5f4f2705206df5ad98412c324147cbe69bf4c670a47afa076c300e03b8cb/68747470733a2f2f7363727574696e697a65722d63692e636f6d2f672f79656d656e69667265652f77702d73656375726974792f6261646765732f6275696c642e706e673f623d6d6173746572)](https://scrutinizer-ci.com/g/yemenifree/wp-security/build-status/maste)[![Quality Score](https://camo.githubusercontent.com/8b60265f124bfaa1b02061c724b05c3456545d9419c8e0c0ec0dd29935dec539/68747470733a2f2f7363727574696e697a65722d63692e636f6d2f672f79656d656e69667265652f77702d73656375726974792f6261646765732f7175616c6974792d73636f72652e706e673f623d6d6173746572)](https://scrutinizer-ci.com/g/yemenifree/wp-security/code-structure) > Basic security helper for WordPress. Features -------- [](#features) - PHP Files Editation Disabled. - Directory Listing Disabled. - PHP Files Forbidden for `uploads` and `wp-includes`. - Disallow file editor for (plugins & themes). - Remove WordPress version from assets url. - Disable REST API methods to anonymous users. - Disable XmlRpc service. - Disallow upload plugin/theme zip file manually via dashboard. - Prevent deactivate security without FTP or file manager access. Getting Started --------------- [](#getting-started) ### via composer [](#via-composer) 1. from `wp-content/plugins` folder run `composer create-project yemenifree/wp-security` 2. Activate the plugin through the 'Plugins' menu in WordPress 3. All done. ### Manually [](#manually) 1. Download [last version](https://api.github.com/repos/yemenifree/wp-security/zipball) 2. unzip & rename folder to `wp-security` 3. Upload the folder `wp-security` to the `/wp-content/plugins/` directory 4. Activate the plugin through the 'Plugins' menu in WordPress 5. All done. Uninstall --------- [](#uninstall) 1. Remove lock file `/wp-content/plugins/wp-security/.wp-security-lock` via FTP or file manager (CPanel). 2. Deactivate plugin through the "Plugins page" in WordPress. 3. Uninstall plugin. Why lock file ------------- [](#why-lock-file) The goal of this plugin prevents use some built-in functions to a hacking website by users they have access to the dashboard, so to confirmed deactivate this plugin you need access to FTP or CPanel to remove the lock file. TODO ---- [](#todo) - Secure/Scan all upload files. - Disable upload plugin manually (zip plugin) form admin panel. Change log ---------- [](#change-log) Please see [CHANGELOG](CHANGELOG.md) for more information on what has changed recently. Contributing ------------ [](#contributing) Please see [CONTRIBUTING](CONTRIBUTING.md) for details. Security -------- [](#security) If you discover any security related issues, please email instead of using the issue tracker. Credits ------- [](#credits) - [Salah Alkhwlani](https://github.com/yemenifree) - [All Contributors](../../contributors) License ------- [](#license) The MIT License (MIT). Please see [License File](LICENSE.md) for more information. ### Health Score 29 — LowBetter than 59% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity8 Limited adoption so far Community8 Small or concentrated contributor base Maturity68 Established project with proven stability Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~0 days Total 7 Last Release 3085d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/60036767b6c53b6c4266f7b46348b93b505cf278203df5d7c06d5f7661d1fcc3?d=identicon)[salahalkhwlani](/maintainers/salahalkhwlani) --- Top Contributors [![salkhwlani](https://avatars.githubusercontent.com/u/10876587?v=4)](https://github.com/salkhwlani "salkhwlani (19 commits)") --- Tags pluginssecuritythemesuploadswordpresswp-includesxmlrpczipwordpresssecurity ### Embed Badge ![Health badge](/badges/yemenifree-wp-security/health.svg) ``` [![Health](https://phpackages.com/badges/yemenifree-wp-security/health.svg)](https://phpackages.com/packages/yemenifree-wp-security) ``` ### Alternatives [brain/nonces OOP package for WordPress to deal with nonces. 26227.1k1](/packages/brain-nonces) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)