WP Interactivity API

Name: agent-skills/wp-interactivity-api
Author: wordpress

View on GitHub↗

Share on X Share on LinkedIn Share on Bluesky

100Critical

This skill grants broad filesystem and command execution, enabling arbitrary

ThreatsCI SM CS BC S HITL

Behavior Analysis

Description verified — behavior matches claim

Claims to do

WP Interactivity API: Use this skill when the user mentions:

Actually does

The skill searches the repository for WordPress Interactivity API patterns (`data-wp-*`, `@wordpress/interactivity`, `viewScriptModule`). It guides on modifying `block.json` or PHP files to enable server-side rendering and initialize state using `wp_interactivity_state()` and `wp_interactivity_data_wp_context()`. It also provides debugging steps, suggests using `@wordpress/create-block-interactive-template`, and refers to internal reference markdown files.

Threat Analysis

AI Agent Traps ↗Scanned 5/5/2026

Content InjectionPerceptionclean

Semantic ManipulationReasoningclean

Cognitive StateMemory & Learningclean

Behavioural ControlAction5 findings

SystemicMulti-Agent Dynamicsclean

Human-in-the-LoopHuman Overseerclean

Skill Info

Namewordpress/agent-skills/wp-interactivity-api

Registrygithub

Version2ec2cd8e9da7

PURLpkg:github/wordpress/agent-skills@2ec2cd8e9da7?skill=wp-interactivity-api

Stars1,417

Installs921

Source

Repository ↗SKILL.md ↗

SHA-2567d21134c676d...

SHA-1343d7f8d5dae...

MD5ac9563af8aae...

TLSHebd1841135e7...

ssdeep192:NcEY4j66...

Size6,188 bytes

Install

This skill has been flagged as potentially malicious. Review the findings below before installing.

GitHub

https://github.com/WordPress/agent-skills

921 installs

Skills.shDocs

npx skills add https://github.com/wordpress/agent-skills

Assessments (1)

AI Agent Traps ↗

Broad Command Execution and Filesystem Accesscriticalcommand execution

The agent is explicitly granted filesystem access and the ability to execute `bash` and `node` commands. This allows for arbitrary code execution, system manipulation, and potential compromise of the host environment.

100% confidence

compatibility: "Filesystem-based agent with bash + node."

WP-CLI Access for Administrative Controlcriticalcommand execution

The agent has access to `WP-CLI`, a powerful command-line interface for WordPress. This enables administrative actions such as managing users, plugins, themes, and the database, posing a significant risk for site compromise or data manipulation.

100% confidence

compatibility: "Some workflows require WP-CLI."

Potential for Malicious PHP Code Injectionhighpersistence

The skill involves generating and modifying PHP code (e.g., for `wp_interactivity_state` and `wp_interactivity_data_wp_context`). Combined with filesystem access, this capability could be abused to inject malicious PHP code into WordPress files, leading to backdoors or persistent compromise.

90% confidenceline 79

wp_interactivity_state( 'myPlugin', array( ... ));

Interaction with Build Tools (Node/Bash)mediumresource abuse

The agent is expected to verify and potentially interact with build tools (`@wordpress/scripts`, webpack/vite). This involves executing `node` or `bash` commands, which could be exploited for resource abuse (e.g., infinite loops, excessive compilation) or to inject malicious build steps.

80% confidenceline 135

Verify the repo supports the required module build path: if it uses `@wordpress/scripts`, prefer its conventions. if it uses custom bundling, confirm module output is supported.

Playwright E2E Test Interactionmediumreconnaissance

The agent is instructed to add or extend Playwright E2E tests. If the agent can control Playwright scripts, this could be leveraged for reconnaissance (e.g., browsing internal web applications, collecting sensitive information) or even data exfiltration through automated browser actions.

70% confidenceline 152

If tests exist: add/extend Playwright E2E around the interaction path.

Badge

Markdown

[![Mondoo Skill Check](https://mondoo.com/ai-agent-security/api/badge/github/wordpress/agent-skills/wp-interactivity-api.svg)](https://mondoo.com/ai-agent-security/skills/github/wordpress/agent-skills/wp-interactivity-api)

HTML

<a href="https://mondoo.com/ai-agent-security/skills/github/wordpress/agent-skills/wp-interactivity-api"><img src="https://mondoo.com/ai-agent-security/api/badge/github/wordpress/agent-skills/wp-interactivity-api.svg" alt="Mondoo Skill Check" /></a>

Image URL

https://mondoo.com/ai-agent-security/api/badge/github/wordpress/agent-skills/wp-interactivity-api.svg

Secure your AI agents

Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.

Continuous scanning of skills across all registries
Policy enforcement before skills reach your agents
Integration with your existing security workflow