JPKCom ACF References

class-plugin-updater.php

JPKCom Plugin Updater – GitHub Self-Hosted Updates

This class provides a secure, self-hosted update mechanism for WordPress plugins hosted on GitHub. It integrates with the WordPress plugin update system and provides comprehensive security features including:

  • SHA256 checksum verification of downloaded packages
  • URL validation and sanitization of all remote data
  • Race condition prevention for manifest fetching
  • Comprehensive error logging in WP_DEBUG mode
  • Transient caching with 24-hour TTL
  • Backward compatibility with manifests without checksums

Security Features:

  • All URLs are validated using wp_http_validate_url() before use
  • All manifest data is sanitized before display
  • Download packages are verified against SHA256 checksum from manifest
  • Failed verifications prevent installation and log errors

Namespace: JPKComAcfReferencesGitUpdate PHP Version: 8.3+ WordPress Version: 6.8+

Tags
since
1.0.0

Initial release with GitHub integration

Table of Contents

Classes

JPKComGitPluginUpdater
Class JPKComGitPluginUpdater

        

        
    




    

    

                                

                

                            
    

        On this page

        
    


                

                            

            

    

        

            
Search results