{"id":162,"date":"2026-01-21T07:21:44","date_gmt":"2026-01-21T06:21:44","guid":{"rendered":"https:\/\/helloblog.io\/da\/wp-cli-abilities-api-wordfence-styr-sikkerhed-fra-terminalen\/"},"modified":"2026-01-21T07:37:11","modified_gmt":"2026-01-21T06:37:11","slug":"wp-cli-abilities-api-wordfence-styr-sikkerhed-fra-terminalen","status":"publish","type":"post","link":"https:\/\/helloblog.io\/da\/wp-cli-abilities-api-wordfence-styr-sikkerhed-fra-terminalen\/","title":{"rendered":"WP-CLI og Abilities API til Wordfence: styr sikkerheden fra terminalen (og via AI-agenter)"},"content":{"rendered":"\n<p>Der er to typer WordPress-sikkerhedsarbejde: det, du g\u00f8r ad hoc i admin, og det, du gerne vil kunne gentage, automatisere og k\u00f8re p\u00e5 tv\u00e6rs af mange sites. Et nyt open source-plugin, <strong>WP-CLI &#038; Abilities API for Wordfence<\/strong>, bygger bro mellem Wordfence Security og kommandolinjen ved at tilf\u00f8je en fuld WP-CLI-kommandoflade \u2013 og det er samtidig blandt de f\u00f8rste plugins, der underst\u00f8tter den nye <strong>WordPress Abilities API<\/strong> fra WordPress 6.9.<\/p>\n\n\n\n<p>Hvis du administrerer flere WordPress-installationer, arbejder i et Bedrock-lignende setup, eller bare foretr\u00e6kker terminalen, giver det her v\u00e6rkt\u00f8j dig mulighed for at k\u00f8re malware scans, styre firewall-regler og h\u00e5ndtere trusler uden at r\u00f8re wp-admin. Den ekstra dimension er Abilities API-integrationen, som g\u00f8r Wordfence-funktionalitet tilg\u00e6ngelig for automationv\u00e6rkt\u00f8jer og AI-agenter via en standardiseret, selvbeskrivende gr\u00e6nseflade.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Hvad pluginet tilf\u00f8jer: <code>wp wfsec<\/code> i WP-CLI<\/h2>\n\n\n\n<p>Pluginet registrerer et nyt kommandonamespace i WP-CLI: <code>wp wfsec<\/code>. Under det namespace f\u00e5r du adgang til centrale Wordfence-operationer \u2013 opdelt i scanning, firewall\/WAF, issue-h\u00e5ndtering og konfiguration.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Security scanning<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>Start quick eller full malware scans<\/li>\n\n\n<li>F\u00f8lg scan-progress i realtid<\/li>\n\n\n<li>Se scan-historik og detaljerede logs<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Firewall management (inkl. WAF)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>Block eller unblock IP-adresser<\/li>\n\n\n<li>Angiv block-varighed og begrundelse<\/li>\n\n\n<li>Tjek om en specifik IP er blokeret<\/li>\n\n\n<li>Aktiv\u00e9r eller deaktiv\u00e9r WAF-beskyttelse<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Issue tracking<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>List alle detekterede sikkerhedsissues<\/li>\n\n\n<li>Filtr\u00e9r p\u00e5 status (new, ignored, resolved)<\/li>\n\n\n<li>Slet eller h\u00e5ndt\u00e9r individuelle trusler<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Konfiguration og drift<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>L\u00e6s og skriv Wordfence-indstillinger<\/li>\n\n\n<li>Tjek licensstatus<\/li>\n\n\n<li>Eksport\u00e9r og import\u00e9r konfigurationer<\/li>\n\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Hurtige CLI-eksempler du kan copy\/paste<\/h2>\n\n\n\n<div class=\"wp-block-kevinbatdorf-code-block-pro\" data-code-block-pro-font-family=\"Code-Pro-JetBrains-Mono\" style=\"font-size:.875rem;font-family:Code-Pro-JetBrains-Mono,ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,monospace;line-height:1.25rem;--cbp-tab-width:2;tab-size:var(--cbp-tab-width, 2)\"><span style=\"display:block;padding:16px 0 0 16px;margin-bottom:-1px;width:100%;text-align:left;background-color:#24292e\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"54\" height=\"14\" viewBox=\"0 0 54 14\"><g fill=\"none\" fill-rule=\"evenodd\" transform=\"translate(1 1)\"><circle cx=\"6\" cy=\"6\" r=\"6\" fill=\"#FF5F56\" stroke=\"#E0443E\" stroke-width=\".5\"><\/circle><circle cx=\"26\" cy=\"6\" r=\"6\" fill=\"#FFBD2E\" stroke=\"#DEA123\" stroke-width=\".5\"><\/circle><circle cx=\"46\" cy=\"6\" r=\"6\" fill=\"#27C93F\" stroke=\"#1AAB29\" stroke-width=\".5\"><\/circle><\/g><\/svg><\/span><span role=\"button\" tabindex=\"0\" style=\"color:#e1e4e8;display:none\" aria-label=\"Copy\" class=\"code-block-pro-copy-button\"><pre class=\"code-block-pro-copy-button-pre\" aria-hidden=\"true\"><textarea class=\"code-block-pro-copy-button-textarea\" tabindex=\"-1\" aria-hidden=\"true\" readonly># Tjek overordnet Wordfence-status\nwp wfsec status\n\n# Start et fuldt security scan\nwp wfsec scan start --type=full\n\n# F\u00f8lg scan-status\/progress\nwp wfsec scan status\n\n# List alle security issues\nwp wfsec issues ls --status=all\n\n# Bloker en IP i 24 timer\nwp wfsec firewall block 192.168.1.100 --duration=86400 --reason=&quot;Brute force attempt&quot;\n\n# Tjek licensstatus\nwp wfsec license status\n<\/textarea><\/pre><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" style=\"width:24px;height:24px\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path class=\"with-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4\"><\/path><path class=\"without-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2\"><\/path><\/svg><\/span><pre class=\"shiki github-dark\" style=\"background-color:#24292e;color:#e1e4e8\" tabindex=\"0\"><code><span class=\"line\"><span style=\"color:#6A737D\"># Tjek overordnet Wordfence-status<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> status<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Start et fuldt security scan<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> scan<\/span><span style=\"color:#9ECBFF\"> start<\/span><span style=\"color:#79B8FF\"> --type=full<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># F\u00f8lg scan-status\/progress<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> scan<\/span><span style=\"color:#9ECBFF\"> status<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># List alle security issues<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> issues<\/span><span style=\"color:#9ECBFF\"> ls<\/span><span style=\"color:#79B8FF\"> --status=all<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Bloker en IP i 24 timer<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> firewall<\/span><span style=\"color:#9ECBFF\"> block<\/span><span style=\"color:#79B8FF\"> 192.168.1.100<\/span><span style=\"color:#79B8FF\"> --duration=86400<\/span><span style=\"color:#79B8FF\"> --reason=<\/span><span style=\"color:#9ECBFF\">\"Brute force attempt\"<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Tjek licensstatus<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> license<\/span><span style=\"color:#9ECBFF\"> status<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n<p>Alle kommandoer underst\u00f8tter <code>--format=json<\/code>, hvilket g\u00f8r dem egnede til scripting, CI-jobs, cron og andre automationsflows, hvor du vil parse output deterministisk.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Abilities API i WordPress 6.9: hvorfor det er interessant (is\u00e6r til AI\/automation)<\/h2>\n\n\n\n<p>Den mest sp\u00e6ndende del er underst\u00f8ttelsen af <strong>WordPress Abilities API<\/strong>. I WordPress 6.9 blev Abilities API introduceret som en standardiseret m\u00e5de for AI-agenter og automationv\u00e6rkt\u00f8jer at <strong>opdage<\/strong> og <strong>interagere<\/strong> med WordPress-funktionalitet. I stedet for at hver plugin-udbyder opfinder sin egen integrationsmodel, er m\u00e5let en f\u00e6lles gr\u00e6nseflade, som kan beskrives, valideres og bruges uden specialbygget glue-kode per plugin.<\/p>\n\n\n\n<p>I praksis betyder det, at Wordfence-funktioner kan indg\u00e5 i AI-drevne sikkerhedsflows, custom dashboards og automatiske rutinetjek via en selvbeskrivende og schema-valideret API, som AI-agenter kan finde og bruge.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">De 7 abilities, pluginet eksponerer<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li><strong>scan-status<\/strong> \u2013 hent nuv\u00e6rende scan-state og progress<\/li>\n\n\n<li><strong>scan-start<\/strong> \u2013 start security scans programmatisk<\/li>\n\n\n<li><strong>issues-list<\/strong> \u2013 hent liste over detekterede security issues<\/li>\n\n\n<li><strong>issues-count<\/strong> \u2013 f\u00e5 issue-counts fordelt p\u00e5 severity<\/li>\n\n\n<li><strong>firewall-status<\/strong> \u2013 tjek WAF-state<\/li>\n\n\n<li><strong>firewall-block<\/strong> \u2013 blok\u00e9r IP\u2019er via API<\/li>\n\n\n<li><strong>license-status<\/strong> \u2013 sl\u00e5 licensinformation op<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Autentificering<\/h3>\n\n\n\n<p>Autentificering sker via <strong>WordPress Application Passwords<\/strong> over <strong>Basic Auth<\/strong>. Det g\u00f8r integrationen forholdsvis ligetil i interne v\u00e6rkt\u00f8jer og automatisering, hvor du kan udstede et application password til en specifik bruger og afgr\u00e6nse adgangen operationelt.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Krav (versionskrav du skal have p\u00e5 plads)<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>WordPress 6.9+<\/li>\n\n\n<li>PHP 8.0+<\/li>\n\n\n<li>WP-CLI 2.5+<\/li>\n\n\n<li>Wordfence Security-pluginet (free eller premium)<\/li>\n\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Download og installation<\/h2>\n\n\n\n<p>Du kan hente en zip-release og uploade den til din <code>\/wp-content\/plugins\/<\/code> mappe:<\/p>\n\n\n<a href=\"https:\/\/github.com\/trueqap\/wpcli-for-wordfence\/releases\/download\/v1.0.0\/wpcli-for-wordfence-1.0.0.zip\" class=\"download-card\" download>\n                <span class=\"download-icon\"><i class=\"fa-duotone fa-file-zipper\"><\/i><\/span>\n                <span class=\"download-info\">\n                    <span class=\"download-title\">Download WP CLI for Wordfence v1.0.0<\/span>\n                    <span class=\"download-meta\"><span class=\"download-filename\">wpcli-for-wordfence-1.0.0.zip<\/span><\/span>\n                <\/span>\n                <span class=\"download-action\"><i class=\"fa-duotone fa-arrow-down-to-line\"><\/i><\/span>\n            <\/a>\n\n\n<p>Alternativt kan du installere via Composer, hvis du k\u00f8rer et Bedrock-style setup.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Opsummering: hvor det her giver mest v\u00e6rdi<\/h2>\n\n\n\n<p>Hvis du allerede bruger Wordfence, er v\u00e6rdien ret konkret: et komplet <code>wp wfsec<\/code>-namespace til scanning, firewall\/WAF, issue-h\u00e5ndtering og konfiguration \u2013 plus JSON-output til automation. Abilities API-underst\u00f8ttelsen l\u00f8fter det et niveau op, fordi den g\u00f8r Wordfence-funktioner tilg\u00e6ngelige via en standardiseret gr\u00e6nseflade, der er m\u00e5lrettet AI-agenter og integrationsv\u00e6rkt\u00f8jer i WordPress 6.9+.<\/p>\n\n\n<div class=\"references-section\">\n                <h2>Referencer \/ Kilder<\/h2>\n                <ul class=\"references-list\"><li><a href=\"https:\/\/github.com\/trueqap\/wpcli-for-wordfence\" target=\"_blank\" rel=\"noopener noreferrer\">WP-CLI &amp; Abilities API for Wordfence: Manage Security from Terminal and AI Agents<\/a><\/li><\/ul>\n            <\/div>","protected":false},"excerpt":{"rendered":"<p>Wordfence er typisk noget, man klikker rundt i via wp-admin. Med et nyt open source-plugin kan du i stedet k\u00f8re scans, styre WAF og h\u00e5ndtere issues direkte via WP-CLI \u2013 og endda eksponere funktionerne via WordPress Abilities API til automation og AI-agenter.<\/p>\n","protected":false},"author":64,"featured_media":163,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[65,11,13,10,7],"class_list":["post-162","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-sikkerhed","tag-automation","tag-sikkerhed","tag-wordfence","tag-wordpress","tag-wp-cli"],"_links":{"self":[{"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/posts\/162","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/users\/64"}],"replies":[{"embeddable":true,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/comments?post=162"}],"version-history":[{"count":1,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/posts\/162\/revisions"}],"predecessor-version":[{"id":164,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/posts\/162\/revisions\/164"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/media\/163"}],"wp:attachment":[{"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/media?parent=162"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/categories?post=162"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/helloblog.io\/da\/wp-json\/wp\/v2\/tags?post=162"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}