WordPress VIP does not maintain a list of “approved” plugins. Plugins of the customer’s choice can be installed to extend a site’s functionality.
It is the responsibility of the customer to thoroughly research, scan, and test a plugin candidate on a non-production environment prior to activating it on their production site.
- Plugin files and directories can only be added or removed via code commits to GitHub; not from within the WordPress Admin dashboard.
- Third-party plugins should load from the
- Plugins added to the
/pluginsdirectory are automatically scanned by Codebase Manager for security vulnerabilities and available version updates.
- Once installed, plugins can be activated in the “Plugins” screen of a site’s WordPress Admin dashboard. However, for greater control and stability, code activating plugins with a loader file in
- Because of the VIP Platform’s built-in caching layers, security enhancements, and read-only VIP File System, it is possible for some plugins to be incompatible with the platform.
- Third-party plugins should be maintained at their most recent release versions.
Last updated: January 02, 2024