Code Embed
| 开发者 | dartiss |
|---|---|
| 更新时间 | 2025年12月2日 05:22 |
| 捐献地址: | 去捐款 |
| PHP版本: | 7.4 及以上 |
| WordPress版本: | 6.9 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
Code Embed allows you to embed code (JavaScript, CSS and HTML - it can't be used for server-side code, such as PHP) in a post, without the content being changed by the editor. This is incredibly useful for embedding third-party scripts, etc. The plugin is used by many large sites, including Mozilla.
Key features include...
- Add HTML or JavaScript to posts or pages - particularly useful for embedding videos!
- Embed in widgets using the Widget Logic plugin
- Global embedding allows you set up some code in one post or page and then access it from another
- Modify the keywords or identifiers used for embedding the code to your own choice
- Search for embedding code via a simple search option
- Add a simple suffix to the embed code to convert videos to responsive output
- Embed an external script directly using just the URL
- And much, much more!
安装:
Code Embed can be found and installed via the Plugin menu within WordPress administration (Plugins -> Add New). Alternatively, it can be downloaded from WordPress.org and installed manually...
- Upload the entire
simple-embed-codefolder to yourwp-content/plugins/directory. - Activate the plugin through the 'Plugins' menu in WordPress administration.
屏幕截图:
常见问题:
My code doesn't work
If your code contains the characters ]]> then you'll find that it doesn't - WordPress modifies this itself.
Also, check to see if the post has been modified by a user without unfiltered_html permissions - if it was, they may have caused the code to have been modified (see the "Filtering of code" section above).
Otherwise, it's likely to be your code and not this plugin. The best way to confirm this is to look at the source of the page and compare the code output with what you embedded. Does it match? If it does, then your code is at fault.
What's the maximum size of the embed code that I can save in a custom field?
WordPress stores the custom field contents in a MySQL table using the longtext format. This can hold over 4 billion characters.
Can I use the same embed name on multiple pages?
Yes you can. If you wish to share one set of embed code across multiple posts, though, then you need to give it a unique name (see "How to Use Global Embedding", above).
Is this GDPR compliant?
It is, in that it doesn't save any data that could be odds with GDPR compliance (i.e. it's compliant by design). However, if you use this to embed third-party scripts, then those scripts may not be and you will need to speak to the providers for further details.
Do you support this plugin on forks of WordPress?
No. It was developed for WordPress and so forks remain unsupported. I have no intention of developing and testing this on any other version.
Where do I report security bugs found in this plugin
Please report security bugs found in the source code of the Code Embed plugin through the Patchstack Vulnerability Disclosure Program. The Patchstack team will assist you with verification, CVE assignment, and notify the developers of this plugin.
更新日志:
I use semantic versioning, with the first release being 1.0.
2.5.1
- Enhancement: Changed
wp_remote_gettowp_safe_remote_getto improve security
- Enhancement: This release is a revised version of 2.4, with less impact to other plugins and users. See the README for more details, but this undoes the changes in 2.4 and adds in filtering of code embed fields for users without the correct permissions.
- Bug: Fixed a long time bug that could cause an infinite loop to occur in rare situations
- Enhancement: A vulnerability was raised to me but is actually an issue with Core. I've implemented a fix that protects not just this plugin but any others you may have installed. Please read the section in the README titled "Custom Field Security" for more details
- Enhancement: Tweaked a few bits of code here. No visible changes, just quality improvements
- Enhancement: So, let me tell you a story. To make the output look neat, I was adding carriage returns to the embeds. Except, if you want to embed something part way through a line it can look... well... wrong. And all for it looking clean. Remember kids, cleanliness isn't always next to Godliness. Needless to say, those rogue carriage returns are gone
- Enhancement: Whilst I was at it, I updated some of the settings code to a brand-spanking new version, which I'm sharing across all my plugins
- Enhancement: Tidied up some of the assets, including adding a blueprint for WordPress Playground
- Bug: You know that vulnerability I fixed in 2.3.7? It fixed that but broke something else. That should now resolved. Apologies for that.
- Bug: Fixed a bug which created a potentual vulnerabilty
- Enhancement: Improved code quality, using the latest version of PHPCS and WordPress sniffs
- Bug: Fixed a variable that was incorrectly assigned. It happens. I guess.
- Enhancement: Cleared up a big batch of code quality issues. Now it ticks all the boxes for both the WordPress and VIP rulesets in PHPCS.
- Enhancement: A new, richer, header has been added to the plugin file.
- Enhancement: The plugin version number is now used as a revision for the script queueing - this means that it be cached by the browser until the plugin release changes.
- Enhancement: Lots of changes made to the README - hopeful it should read easier than before!
- Bug: Fixed minor error that occurred due to the removal of the debug code in the last release. Sorry about that.
- Enhancement: I've removed the debug code. I allowed to be switched off but I've never used it and it may not have switched off properly anyway. So it's gone
- Enhancement: Added some additional plugin meta
- Bug: Fixed another pesky bug that was affecting embedded URLs. My code to do this was years old and I couldn't understand why I'd written it the way I had. So I've re-written it from scratch
- Bug: Fixed a variable naming issue that I may, or may not (I did), have created in the latest release
- Enhancement: All the code is now compliant with the full-fat VIP coding standards. It was no mean feat but, as a result, the plugin is more secure than ever before
- Enhancement: The default is to now use double braces around your embed name, which is kind-of the universal default for template tags such as this. If you're an existing user, your current configuration won't change, though - this only affects new users
- Enhancement: Improved translation output, including where I'd accidentally added an extra character to the text domain
- Enhancement: Using the
checkedfunction on fields, rather than the form parameter - Enhancement: Added a useful links sidebar to the Help for both screens
- Maintenance: Throughout, use Yoda conditions I now do
- Maintenance: Added links to the sparkly new Github repo
- Bug: When updating the options you sometimes didn't get a confirmation message. You do now!
- Bug: Fixed a weird one where I was referencing a variable that I was never using ¯_(ツ)_/¯
- Maintenance: Updated README to work better with new plugin directory format. Also, now converting all text to US English, which is the WordPress standard. Snazzy.
- Maintenance: Updated all links to artiss.blog and removed donation links. Clickable.
- Maintenance: Minimum WordPress level is now 4.6 for this plugin, meaning I could remove various pieces of code. Strong and stable.
- Maintenance: Lots of language updates, many of which are a consequence of the move to WordPress 4.6 (including removal of language files and links, etc). Verbacious.
- Maintenance: Updated branding, inc. adding donation links
- Enhancement: Added support for embedding code in excerpts
- Enhancement: Validated, sanitized and escaped the admin screen data
- Maintenance: Overhauled the way default options are fetched and/or generated. Now a lot more efficient
- Maintenance: Updated the admin screens so they are formatted in a similar way to the default WordPress screens
- Maintenance: Removed hardcoding of plugin folder
- Maintenance: Updated author and removed donation links
- Maintenance: Renamed files and file functions - removed prefix from files and update it on functions
- Maintenance: Added a domain path for translations
- Maintenance: Added missing text domain, ready for automatic translation.
- Maintenance: Updated help text
- Maintenance: Modified admin screen headings so they're compatible with WP4.3
- Enhancement: Added options to suppress debug output
- Enhancement: Added donation link to plugin meta. Go on, you know you want to...
- Maintenance: Updated plugin branding
- Maintenance: Removed feature pointer - no longer required
- Enhancement: Removed support screen and moved remaining admin screens
- Bug: Fixed issues with translations
- Enhancement: Fixed minor XSS vulnerability (kindly reported by Mozilla)
- Enhancement: Shows README appropriate to the current installed version, instead of the latest
- Enhancement: Removed restriction on embed code length
- Maintenance: Removed dashboard widget
- Maintenance: Further code tidying
- Maintenance: Added new code for contextual help to use new WP 3.3 elements
- Enhancement: New admin menu option, under which existing option screens now exist along with a support screen. If you have the README Parser plugin installed then it will also add a sub-menu displaying README instructions
- Enhancement: Added internationalization to code
- Enhancement: Will now work with widgets if you install the plugin Widget Logic
- Enhancement: Added experimental ability to convert to responsive output
- Enhancement: Added option to specify a URL instead of an embed code
- Enhancement: Added feature pointer for when plugin is activated
- Bug: Fixed bug where name of plugin folder was incorrect
- Maintenance: Improved code further from 1.5, including separating code into separate includes
- Enhancement: Added global embeds option
- Enhancement: New tools option in the administration menu which allows you to search for code embeds
- Enhancement: Added form security
- Maintenance: Renamed plugin to bring in line with new plugin conventions
- Maintenance: Plugin re-write to create more efficient code - can now also completely personalize the embed code used in the post
- Maintenance: PHPDoc used throughout for documentation purposes, plus new coding standards
- Maintenance: Instructions completely re-written
- Enhancement: Support information improved, including contextual help on the settings screen (if supported) versions of this plugin
- Bug: Version details as HTML comments were being output whether an embed existed or not - corrected
- Enhancement: Option screen which allows you to specify the maximum number of possible embeds per post and the embed word
- Enhancement: Increased limit of number of code embeds from 5 to 20
- Maintenance: Simplification of code
- Maintenance: The instructions have been corrected (thanks to John J. Camilleri for pointing it out!)
- Maintenance: Plugin has been tested with version 2.8 of WordPress. No code changes have been made
- Initial release