Insecure Content Warning

Description

Insecure Content Warning helps content creators with secure (HTTPS) websites avoid insecure-content warnings in the browser by flagging any elements in the content editor (such as images, videos, and embeds) that are being delivered or sourced from an insecure (HTTP) web address. All insecure elements are flagged before the content is published, and can be fixed manually or simply by clicking “fix it.”

Compatible with the “classic” editor as well as the block editor (aka Gutenberg).

Technical Notes

  • Requires PHP 7.4+.
  • Requires WordPress 5.8+.
  • Requires a secure / SSL (HTTPS) website, front and back end.

Usage

This plugin requires no configuration. Simply activate and the plugin will prevent posts with insecure elements from being published, as well as provide a banner with information on the offending assets.

Optional WP-CLI Commands

These are not required for normal usage of the plugin, but are available as a utility for more advanced usage.

wp icw fix

Used to fix insecure elements in existing content. Can target specific posts or bulk batches.

wp icw fix [<id>] [--include] [--all] [--post_type] [--limit] [--offset] [--dry-run]

Example:
$ wp icw fix --all --post_type=page
Checking post content...
Total posts checked for insecure URL(s): 10
+-------------------------------------+
| URL(s) fixed summary |
+-------------------------------------+
| 0/0 URL(s) fixed in post 98 |
| 0/0 URL(s) fixed in post 96 |
| 0/0 URL(s) fixed in post 76 |
| ........................... |
| 0/0 URL(s) fixed in post 6 |
| 0/0 URL(s) fixed in post 1 |
+-------------------------------------+

Run wp help icw fix for more information on the command args.

Screenshots

  • Example of attempting to publish a post with insecure content - classic editor.
  • Example of attempting to publish a post with insecure content - block editor.

Installation

  1. Install the plugin via the plugin installer, either by searching for it or uploading a .zip file.
  2. Activate the plugin.

Reviews

There are no reviews for this plugin.

Contributors & Developers

“Insecure Content Warning” is open source software. The following people have contributed to this plugin.

Contributors

“Insecure Content Warning” has been translated into 1 locale. Thank you to the translators for their contributions.

Translate “Insecure Content Warning” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.2.0 – 2023-10-16

1.1.0 – 2023-06-21

1.0.3 – 2023-01-09

1.0.2 – 2022-06-27

  • Added: Dependency security scanning (props @jeffpaul via #70).
  • Changed: Bump WordPress version “tested up to” 6.0 (props @cadic via #74).
  • Security: Bump minimist from 1.2.5 to 1.2.6 (props @dependabot via #67).
  • Security: Bump postcss from 7.0.32 to 7.0.39 (props @dependabot via #68).

1.0.1 – 2022-02-17

1.0.0 – 2021-08-24

  • Added: Initial public release! 🎉