Plugin update notice email

  • Resolved rob900

    (@rob900)


    2 years, 2 months ago

    This is similar to

    https://ww.wp.xz.cn/support/topic/prevent-plugin-upgrade-notifications/

    It would really be great to see you split this option “scan for out of date, abandoned, and vulnerable plugins, themes, and WordPress versions” into 2 or 3 separate options.

    I work as manager for about 30 sites, with each on average having 15-20 plugins. This creates an enormous amount of emails every day to go through in addition to all other emails we get every day from all kinds of sources and people.

    Mostly when a plugin has a new version it is 95% of the time some fancy new feature, color, layout change, feature optimizaton etc. which has nothing to do with patching a vulnerability. I don’t need to know about that instantly and I would not rank that as “medium” or a “problem”… Most people have enough other “problems” to deal with during their work day.

    Abandoned or vulnerable plugins is much more serious and relevant to send emails about and should not automatically be tied together with the same checkbox option as a “new version” of something.

    The new version can actually add a vulnerability as well so to make people feel they instantly have to log in and update to a new version by calling a new version a “Medium Severity Problems” doesn’t seem logical.

    I understand that this might be a nice way for you to constantly remind people that we can “upgrade to premium” but for many people I would think it is having the opposite effect and we might just get tired of this and move to another security plugin.

    Yes I know I already changed the scan level notice now to only sent emails for “severity level high” but anyway…

    Just a suggestion!

    • This topic was modified 2 years, 2 months ago by rob900.
    • This topic was modified 2 years, 2 months ago by rob900.
    • This topic was modified 2 years, 2 months ago by rob900.
Viewing 1 replies (of 1 total)
  • Plugin Support wfmargaret

    (@wfmargaret)

    2 years, 1 month ago

    Hi @rob900,

    While Wordfence > All Options > Scan Options > Scan for out of date, abandoned, and vulnerable plugins, themes, and WordPress versions are grouped, any results for out of date plugins are only warnings and can be ignored in the scan results if you wish. Our stance is that all plugins and Wordfence core should be kept up-to-date.

    Plugins that are vulnerable and/or removed from the repository however, are given a “critical” status. This means that you could change your Wordfence > All Options > Email Alert Preferences > Alert me with scan results of this severity level or greater to Critical or High to avoid receiving notices of outdated plugins while continuing to receive notice of abandoned or vulnerable plugins.

    Of course I’ll be happy to pass your suggestion on to the team if you have a use-case where this combination filters out something with a lower severity you do wish to be alerted about.  You can review the severity levels here: https://www.wordfence.com/help/dashboard/alerts/ 

    Thanks,
    Margaret

Viewing 1 replies (of 1 total)

The topic ‘Plugin update notice email’ is closed to new replies.