What is the purpose of the “user” global parameter in wp-cli.yml config?

There’s a difference between doing things to a user, and doing things as a user.

E.g. when you are logged in you are the current user, but by default in WP CLI there is no “current user”. You can specify this via a parameter but adding a user via wp-cli.yml saves time. You may even create a dedicated alias for running commands as that user.

Furthermore, why is user: admin recommended as a default value? That username hasn’t been default in WordPress for several years already… are there security or usability concerns with defining this global option, esp. depending on various web hosting environments that may or may not include user-level wp-cli.yml files?

There’s been a misunderstanding, admin is used as an example, not as a recommendation. The documentation is not telling you to use the value admin or suggesting its best practice. Rather it’s providing an example so that people who want to use this option have an example they can compare against.

It’s not telling you to use admin, it’s saying if you wanted to use user with a value e.g. admin, that’s what it would look like. You can see other uses of the user directive further down.

are there security or usability concerns with defining this global option

If you have WP CLI access then it does not matter what the user parameter says, access has already been compromised, it’s already game over. This is like asking if the shape of the buttons on your personal safe matter to burglars, after all WP CLI provides many other options, as well as --user.

but what is the purpose of having a default WordPress user specificied in wp-cli.yml exactly? If anything, it seems a bit risky, or confusing.

Then don’t specify a default user, most people do not do this, it requires additional steps. Most people don’t have a config file in the first place when using WP CLI. It’s simply an option that is available if it’s convenient.

Related Posts:

  1. WP CLI “Error establishing a database connection” in localhost (MAMP)
  2. How do I run a PHP script from WordPress environment, like `wp shell`?
  3. Using wp-cli can I not query pages by their title?
  4. wp-cli 0.14.1 MySQL error
  5. Changing the WP CLI cache folder
  6. How to use wp-cli.yml file?
  7. WP cli –path does not seem to work
  8. Enable Auto-updates for all plugins using wp-cli? (since wordpress 5.5)
  9. How do I activate an mu-plugin with WP-CLI?
  10. WP-CLI get all posts from certain post type and taxonomy term
  11. How to create a WP-CLI command with $_POST?
  12. Does wp post delete also delete metadata associated with posts?
  13. wp-cli import theme sample data
  14. WP-CLI works on non WP-CLI installed WordPress instance?
  15. WP-CLI – Return posts with matching meta key
  16. Prompt user for input in WP CLI
  17. WP-CLI throwing PHP Fatal error: Call to undefined function apply_filters() [closed]
  18. WPCLI – update plugins, themes, and core, all in one row, instead 3 rows?
  19. “Could not open input file” error even when WP-CLI is in the path
  20. Revert WordPress default options after a PHPUnit test has run
  21. Can I create multiple pages at once using WP-CLI?
  22. WP-CLI update date and time format
  23. WP-CLI over SSH – wp command not found
  24. PHP warning are displaying when using WP CLI [closed]
  25. WP CLI – show users whose ID is larger than given ID
  26. How can I replace all regex matches using the WP_CLI search-replace tool
  27. Is it possible to use WP-CLI via PHP-framework?
  28. Wp-cli-ssh global installation problem [closed]
  29. WPCLI search and replace variants for all tables
  30. Can I create (or update) user password with WP-CLI by hash?
  31. Is there a way to pre-cache plugins with WP-CLI for faster installation?
  32. Allow download_url for lan addresses
  33. wp-cli silently fails with 255 when running wp core install
  34. Execute wp-cli command on all sites on server
  35. wp-cli: run post generate and post meta add together
  36. Setting boolean and array values using wp theme mod set
  37. How to change a post attribute to homepage using WP CLI?
  38. Unable to install plugins from wp-cli
  39. How can I get the WP-CLI eval-file command to report errors to stderr?
  40. In a continuous integration environment how do you implement the database entries for plugins and themes
  41. How to verify a correct wp-cli installation?
  42. wp-cli: wp term generate xxxxx – Error: ‘xxxxx’ is not a registered taxonomy
  43. Shortest way to install WP-CLI
  44. Uninstall WP-CLI
  45. How do you kill WP-CLI execution?
  46. How to specify to wp-cli for the `wp config create` (`wp core config`) command that the DB user is an ‘all hosts’ user?
  47. Get last published post in WordPress using wp-cli
  48. Where do the files of a custom WP CLI Command reside?
  49. Does WP-CLI support updating multiple options via a single command?
  50. How to use wp db export and import together?
  51. WP CLI not finding plugin commands
  52. WP CLI not outputting anything
  53. WP-CLI search-replace posts content for certain URLs
  54. Bulk remove custom post type and its attachments with wp-cli?
  55. Specify custom php.ini to use with WP-CLI
  56. How do I add HTML code to a widget with wp-cli?
  57. WP-CLI can not find Url
  58. Running custom defined WP-CLI commands without WordPress installation present
  59. Wrong output order when mixing WP_CLI::API and php-cli-tools
  60. Is resetting post data necessary with custom WP_CLI commands?
  61. WP-CLI not working from Bash script
  62. MySQL 5.6 Causes Errors with WP CLI
  63. Using WP-CLI, how do I delete a post by title or slug, not ID?
  64. Do all WordPress installations include WP CLI by default
  65. wp-cli only displays PHP version for all input options
  66. Why doesn’t ‘wp’ command work in my WP-CLI installation?
  67. WP CLI allowed fields?
  68. WP-CLI unable to recongnise PHP server / environment variables on Ubuntu
  69. How to move back a command in WP-CLI from wp shell?
  70. wp_clear_object_cache() is deprecated. What should I use instead?
  71. How best to keep my localhost on Http while my Remote production is on Https
  72. Can’t Connect to MySQL Database using WP CLI and MAMP on a macOS Catalina, using Oh My Zsh
  73. PHPUnit via WP-CLI: Warning: Cannot modify header information … bootstrap.php:68
  74. What user should I use for wp-cli on Ubuntu VPS [closed]
  75. WP-CLI: Does “wp post create” will create post normally and will ping to Ping Service?
  76. Trying to install/configure wp-cli for WordPress
  77. Working with CLI and missing my namespace classes inside
  78. Logs for WP CLI
  79. WP-Cli Autoloads Non-existant Framework
  80. Give WP-Cli User Home Directory Privileges
  81. WP-CLI: detect altered core files and restore them automatically
  82. WP CLI: critical error on your website
  83. WP-CLI plugin activate – ‘activate’ is not a registered subcommand of ‘plugin’
  84. wp-cli core install unknown: fatal: file /etc/postfix/main.cf: parameter mail_owner: user postfix has same user ID as _postfix
  85. bash script wp-cli search-replace 0 replacements, but command-line 3000+
  86. Creating a subcommand for custom wp-cli command
  87. Is WP-CLI safe to use in a hosting environment? Why?
  88. WP-CLI – How to install a plugin from a remote server
  89. How to fix “Not enough memory” on Windows 7 and PHP 7.2.0 (cli)
  90. Is it possible to use WP CLI to update a theme that is not in the WordPress Repo?
  91. Can I use WP-CLI from a remote computer?
  92. Install WordPress using PHP
  93. wp-cli output ‘column display format’ / wrapping
  94. When might you need to specify the “url” argument/option in WP-CLI?
  95. WP-CLi Uable to Install / Update Plugins
  96. wp-cli incorrectly believes a plugin is currently installed
  97. Remote Export DB w. WP-cli.phar Over SSH
  98. Using wp-cli on remote with quoted commands
  99. Post Count for Multisite?
  100. Why doesn’t “wp db cli” enable tab completion?
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)