What is the WordPress `DISALLOW_FILE_MODS` constant and how does it interact with plugin and theme installation security?

WordPress Expert Hard

WordPress Expert — Hard

What is the WordPress `DISALLOW_FILE_MODS` constant and how does it interact with plugin and theme installation security?

Key points

  • DISALLOW_FILE_MODS enforces a read-only filesystem policy
  • Prevents plugin/theme installation and updates
  • Ideal for production environments
  • Changes should go through deployment pipelines, not admin UI

Ready to go further?

Start full exam Practice more questions

Related questions