Skip to content

Releases: openstream/hello-dolly

Release v1.7.3

28 Oct 14:06
@nickweisser nickweisser
v1.7.3
d5fd036
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Release v1.7.3 Latest
Latest

Release v1.7.3 - WordPress Coding Standards Compliant

🎉 Hello Dolly - Fixed & Secure Edition

This release transforms the classic Hello Dolly plugin into a fully compliant, secure, and modern WordPress plugin that passes all WordPress.org standards.

📦 Installation

  1. Download hello-1.7.3.zip
  2. Go to WordPress Admin → Plugins → Add New → Upload Plugin
  3. Choose the zip file and click "Install Now"
  4. Activate the plugin

Or via WP-CLI:

wp plugin install hello-1.7.3.zip --activate

✨ What's New in v1.7.3

Security Enhancements

  • Proper output escaping - All output now uses esc_html(), esc_attr(), and esc_html__()
  • XSS protection - Prevents cross-site scripting vulnerabilities
  • Defense in depth - Multiple layers of security validation

Code Quality Improvements

  • WordPress functions - Replaced mt_rand() with wp_rand() for better randomness
  • Internationalization - Added text domain hello for proper translation support
  • GPL v2 license - Added proper license header and URI
  • WordPress.org ready - Complete readme.txt with all required sections

Structure & Standards

  • Proper folder structure - Moved from single-file to plugins/hello/ structure
  • Text domain compliance - Follows WordPress i18n best practices
  • WordPress Coding Standards - 100% compliant with WPCS

🔍 Validation Results

WordPress Plugin Check

✅ Success: Checks complete. No errors found.

Before → After

Check v1.7.2 v1.7.3
License Header ❌ Missing ✅ GPL v2
Output Escaping ❌ None ✅ Full
WordPress Functions mt_rand() wp_rand()
Text Domain ❌ Missing hello
Structure ❌ Single file ✅ Proper folder
Documentation ❌ None ✅ readme.txt

📋 Requirements

  • WordPress: 4.6 or higher
  • PHP: 5.6 or higher
  • Tested up to: WordPress 6.8

🎓 Educational Value

This release demonstrates:

  • Modern WordPress plugin development workflow
  • Security through proper output escaping
  • Internationalization best practices
  • WordPress.org plugin directory requirements
  • Using Context7 MCP for documentation
  • WP-CLI Plugin Check validation

View the complete development journey in the commit history.

📝 Full Changelog

Added

  • GPL v2 or later license header with URI
  • Text domain header for internationalization
  • Complete readme.txt with WordPress.org format
  • Proper output escaping for all variables
  • WordPress-specific wp_rand() function

Changed

  • Moved plugin to proper folder structure (plugins/hello/)
  • Updated text domain from missing to hello
  • Replaced mt_rand() with wp_rand()
  • Added escaping to all output functions

Security

  • Fixed XSS vulnerabilities through output escaping
  • Added esc_html__() for translated text
  • Added esc_attr() for HTML attributes
  • Added esc_html() for content output

🔗 Links

👥 Credits

  • Original Author: Matt Mullenweg
  • Fixes & Documentation: Generated with Claude Code
  • License: GPL v2 or later

🚀 What's Next?

This plugin now serves as a reference implementation for:

  • WordPress plugin security best practices
  • Proper internationalization
  • WordPress.org submission requirements
  • Modern plugin development workflow

Use this as a template for your own WordPress plugins!

Assets 3
Loading