Why doesn’t WP_Image_Editor save images using the Filesystem API?

Directly accessing the filesystem for writing is evil… for most of the cases where people are actually doing that.

If you’re editing an image file, and it is in the wp-content/uploads directory, then you know, whatever. That’s not the common case. Plugins and themes don’t typically do that because they don’t have to do that. WordPress has the code to do that for them. That’s perfectly safe.

No, the thing plugins and themes want to edit are the dangerous things. They want to write PHP files with config information, or save custom CSS files, or things like that. They want to write all those things which are not safe to be world-editable.

If somebody on the same cheapo shared server as my site is decides to fiddle with my images and such, that’s an annoyance. If they decide to fiddle with my PHP code or my CSS, that’s a security breach. The question about directly writing to the filesystem being evil depends entirely on what you’re writing and in what context it is used.

Related Posts:

  1. Is there a plugin to make attaching images easier?
  2. Managing Images for a WordPress Blog: Picasa or Flickr?
  3. Automatically wrap post image in div
  4. Custom image size not selectable in uploader
  5. Retrieving and Storing Images Linked from Other Domains on Local Server?
  6. Customizer image control default value showing in customizer but not on frontend
  7. Importing media medium setting image gallery / image attachments
  8. Extract & Display the REAL first image attached to a post – extend the_post_thumbnail()
  9. Add filename to attachment page url
  10. How To Add buttons to the toolbar which appears in TinyMce when you click over images
  11. Image Editor does not affect custom sizes!
  12. How to display post title & excerpt when mouse hovers on an image?
  13. Automatically add image caption with values from a post parent field?
  14. Is there a way to dynamically get to your uploads folder?
  15. Using Fullscreenr with a wordpress blog – weird bug
  16. Get Image from Media Library with the Title
  17. Get Custom Logo Alt Text
  18. Using custom image resizing script in a page
  19. Background image not appearing
  20. Best way to allow overwriting images shipped with the plugin?
  21. NextGEN Gallery – open all images on page in fancybox [closed]
  22. Featured Image If Else Condition
  23. If custom image header does not exist display text header
  24. Is there a possiblity to replace profile image gravatar with custom user images
  25. Custom theme – how to link the image without posting it
  26. Trying to set specific image dimensions and crop with ACF
  27. Customizing the gallery of the post correctly
  28. Personalized Gallery what are my options?
  29. adding fade on mouseover to images
  30. Lightbox not showing image caption
  31. WordPress 5: including larger thumbnail image sizes in srcset than I have set
  32. POST 429 Error when trying to place more than 20 images into post at once
  33. How to add the option to choose between sizes for featured image within post editor?
  34. Creating custom setting in add media popup
  35. Upload image without resizing but insert in post with resizing
  36. Bio comes up when the visitor clicks on a picture
  37. Adding images to anchors in the list created and fetched with wp_nav_menu
  38. Change default “Apply Changes To” radio option when editing images
  39. WP_Customize_Image_Control and selecting from library?
  40. featured images – custom links
  41. Get a different size of Image thumbnail while working with custom metabox
  42. Custom image sizes ignored in WP 3.5
  43. Edit image alignment in WordPress twentysixteen child theme on attachment page [closed]
  44. Set custom banner image size with wp_customize
  45. How to search for replacement titles and contents, excluding image URLs
  46. Custom Search on media files PDF images pages posts
  47. Running Gutenberg React in Development Mode
  48. Is there a blank theme framework compatible with WP 3.0? [closed]
  49. WordPress hook before inserting post into database
  50. Check for and enforce unique value in user-entered custom meta field in WP Admin
  51. switch theme on fly
  52. Can I disable the auto complete?
  53. I want to replace a word in my theme with another throughout wordpress
  54. Can I create front-end editable user profile pages with WordPress? How do I do it?
  55. Add a page that appears in the backend admin that lists files to download? WP 3.3
  56. wp_nav_menu google analytics event tracking
  57. How can I & how do I change text displayed in comment via child theme
  58. Hide Login information in Account settings in Buddy Boss
  59. Custom column sorting in WordPress admin post table
  60. Edit admin post page
  61. Adding my own “add to cart button”
  62. Filter my home page posts by category or by tag
  63. Function to remove archive sidebar for custom taxonomy?
  64. Google font doesn’t show in theme option
  65. Add a InfoBox in the media upload window
  66. How to get custom page template being edited in gutenberg editor
  67. Steps for custom data retrieval
  68. Is there a way to use LaTeX formatting for WordPress?
  69. I’d like to move the Widgets Panel to the bottom of the list in Customizer
  70. What is the best way to move a single site from one MS installation to another? [duplicate]
  71. Basic Authentication problem with custom API endpoints
  72. Don’t change Custom Post Type slug to unique value
  73. Shop page custom buttons which is visible to only administrator
  74. Insert menu with a custom walker into page / post body using shortcode?
  75. Query for specific custom field
  76. Woocommerce custom field calculation
  77. Dynamic Control in customiser
  78. How to auto add nofollow to links in custom field?
  79. How to load a mycred hook from a plugin?
  80. toggle Multiple Loop with tittle
  81. What are some good resources for teaching end-users how to use WordPress?
  82. How To make Custom page of every Category
  83. Created Custom Block – When I come back to edit post/page and change my block content – Update button stays disabled
  84. Global theme customization multisite
  85. How to style bootstrap container in WordPress?
  86. Floating CTA Image Integration
  87. Contact form 7 ajax response true/false based on some condtion
  88. Alt attribute is not showing while the value is given in Media
  89. Altered Media Library URLs
  90. Query 1 custom post type, each day, alphabetically
  91. Admin menu disable new/delete page
  92. How to loop through 1 CPT with 2 Taxonomies
  93. If I delete my wordpress site then does that delete all my sites?
  94. How to support extra color options for shortcodes?
  95. retrieve theme custom settings
  96. pull custom fields values from wp-database in a nested foreach loop
  97. Customise default site setup
  98. Adding a third custom taxonomies
  99. Custom CSS File wont work on second Page
  100. How to create a shortcode with HTML code in it and custom parameters/

Leave a Comment