{"id":151,"date":"2026-01-21T07:21:35","date_gmt":"2026-01-21T06:21:35","guid":{"rendered":"https:\/\/helloblog.io\/et\/wp-cli-abilities-api-wordfence-turvahaldus-terminalist\/"},"modified":"2026-01-21T07:36:54","modified_gmt":"2026-01-21T06:36:54","slug":"wp-cli-abilities-api-wordfence-turvahaldus-terminalist","status":"publish","type":"post","link":"https:\/\/helloblog.io\/et\/wp-cli-abilities-api-wordfence-turvahaldus-terminalist\/","title":{"rendered":"WP-CLI ja Abilities API Wordfence\u2019ile: turvahaldus terminalist ja AI-agentidega"},"content":{"rendered":"\n<p>Wordfence on paljude WordPressi saitide baas-turvakiht, aga igap\u00e4evane haldus toimub enamasti wp-adminis. Kui sul on mitu keskkonda, teed hooldust SSH kaudu v\u00f5i ehitad automaatikat (CI, cron, sise-dashboard), siis muutub UI-p\u00f5hine t\u00f6\u00f6 kiiresti pudelikaelaks.<\/p>\n\n\n\n<p>GitHubis ilmus uus open-source plugin <strong>WP-CLI &#038; Abilities API for Wordfence<\/strong> (<a href=\"https:\/\/github.com\/trueqap\/wpcli-for-wordfence\">github.com\/trueqap\/wpcli-for-wordfence<\/a>), mis lisab Wordfence\u2019ile WP-CLI k\u00e4sud ning on \u00fchtlasi \u00fcks esimesi pluginaid, mis kasutab WordPress 6.9-ga tutvustatud <strong>WordPress Abilities API<\/strong>-t. Praktikas t\u00e4hendab see: Wordfence\u2019i turvatoimingud saab teha terminalist ning samad v\u00f5imed saab standardiseeritud kujul \u201cn\u00e4htavaks\u201d teha automatiseerijatele ja AI-agentidele.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Mida plugin juurde annab: <code>wp wfsec<\/code> k\u00e4suruum WP-CLI-s<\/h2>\n\n\n\n<p>Plugin lisab WP-CLI-sse uue k\u00e4sunimeruumi <code>wp wfsec<\/code>, mille alt saad kontrollida ja juhtida Wordfence\u2019i p\u00f5hifunktsioone ilma WordPressi juhtpaneeli avamata. See on kasulik nii serverihalduses kui ka skriptitavas t\u00f6\u00f6voos (deploy, monitooring, igap\u00e4evane hooldus).<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Security Scanning (turvaskannid)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>Kiir- v\u00f5i t\u00e4ismahus (full) pahavara\/turvaskanni k\u00e4ivitamine<\/li>\n\n\n<li>Skanni progressi j\u00e4lgimine reaalajas<\/li>\n\n\n<li>Skanniajaloo ja detailsete logide vaatamine<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Firewall Management (tulem\u00fc\u00fcr\/WAF haldus)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>IP-aadresside blokeerimine ja blokeeringu eemaldamine<\/li>\n\n\n<li>Blokeeringu kestuse ja p\u00f5hjuse m\u00e4\u00e4ramine<\/li>\n\n\n<li>Kontroll, kas konkreetne IP on blokeeritud<\/li>\n\n\n<li>WAF-kaitse (Web Application Firewall) sisse- ja v\u00e4ljal\u00fclitamine<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Issue Tracking (intsidentide ja leidude haldus)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>K\u00f5igi tuvastatud turvaprobleemide\/leidude loetlemine<\/li>\n\n\n<li>Filtreerimine staatuse j\u00e4rgi (new, ignored, resolved)<\/li>\n\n\n<li>\u00dcksikute ohtude leidude kustutamine v\u00f5i haldamine<\/li>\n\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Configuration (seadistus ja litsents)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>Wordfence\u2019i seadete lugemine ja muutmine<\/li>\n\n\n<li>Litsentsi staatuse kontroll<\/li>\n\n\n<li>Konfiguratsiooni eksport ja import<\/li>\n\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Kiired n\u00e4ited: praktilised k\u00e4sud, mida kohe proovida<\/h2>\n\n\n\n<p>Allolevad n\u00e4ited n\u00e4itavad t\u00fc\u00fcpilisi operatsioone, mida muidu teeksid wp-adminis. Siin saad sama teha SSH-sessioonist v\u00f5i automatiseeritud skriptist.<\/p>\n\n\n\n<div class=\"wp-block-kevinbatdorf-code-block-pro\" data-code-block-pro-font-family=\"Code-Pro-JetBrains-Mono\" style=\"font-size:.875rem;font-family:Code-Pro-JetBrains-Mono,ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,monospace;line-height:1.25rem;--cbp-tab-width:2;tab-size:var(--cbp-tab-width, 2)\"><span style=\"display:block;padding:16px 0 0 16px;margin-bottom:-1px;width:100%;text-align:left;background-color:#24292e\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"54\" height=\"14\" viewBox=\"0 0 54 14\"><g fill=\"none\" fill-rule=\"evenodd\" transform=\"translate(1 1)\"><circle cx=\"6\" cy=\"6\" r=\"6\" fill=\"#FF5F56\" stroke=\"#E0443E\" stroke-width=\".5\"><\/circle><circle cx=\"26\" cy=\"6\" r=\"6\" fill=\"#FFBD2E\" stroke=\"#DEA123\" stroke-width=\".5\"><\/circle><circle cx=\"46\" cy=\"6\" r=\"6\" fill=\"#27C93F\" stroke=\"#1AAB29\" stroke-width=\".5\"><\/circle><\/g><\/svg><\/span><span role=\"button\" tabindex=\"0\" style=\"color:#e1e4e8;display:none\" aria-label=\"Copy\" class=\"code-block-pro-copy-button\"><pre class=\"code-block-pro-copy-button-pre\" aria-hidden=\"true\"><textarea class=\"code-block-pro-copy-button-textarea\" tabindex=\"-1\" aria-hidden=\"true\" readonly># Check overall Wordfence status\nwp wfsec status\n\n# Start a full security scan\nwp wfsec scan start --type=full\n\n# Watch scan progress\nwp wfsec scan status\n\n# List all security issues\nwp wfsec issues ls --status=all\n\n# Block an IP address for 24 hours\nwp wfsec firewall block 192.168.1.100 --duration=86400 --reason=&quot;Brute force attempt&quot;\n\n# Check license status\nwp wfsec license status\n\n<\/textarea><\/pre><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" style=\"width:24px;height:24px\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path class=\"with-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4\"><\/path><path class=\"without-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2\"><\/path><\/svg><\/span><pre class=\"shiki github-dark\" style=\"background-color:#24292e;color:#e1e4e8\" tabindex=\"0\"><code><span class=\"line\"><span style=\"color:#6A737D\"># Check overall Wordfence status<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> status<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Start a full security scan<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> scan<\/span><span style=\"color:#9ECBFF\"> start<\/span><span style=\"color:#79B8FF\"> --type=full<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Watch scan progress<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> scan<\/span><span style=\"color:#9ECBFF\"> status<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># List all security issues<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> issues<\/span><span style=\"color:#9ECBFF\"> ls<\/span><span style=\"color:#79B8FF\"> --status=all<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Block an IP address for 24 hours<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> firewall<\/span><span style=\"color:#9ECBFF\"> block<\/span><span style=\"color:#79B8FF\"> 192.168.1.100<\/span><span style=\"color:#79B8FF\"> --duration=86400<\/span><span style=\"color:#79B8FF\"> --reason=<\/span><span style=\"color:#9ECBFF\">\"Brute force attempt\"<\/span><\/span>\n<span class=\"line\"><\/span>\n<span class=\"line\"><span style=\"color:#6A737D\"># Check license status<\/span><\/span>\n<span class=\"line\"><span style=\"color:#B392F0\">wp<\/span><span style=\"color:#9ECBFF\"> wfsec<\/span><span style=\"color:#9ECBFF\"> license<\/span><span style=\"color:#9ECBFF\"> status<\/span><\/span>\n<span class=\"line\"><\/span><\/code><\/pre><\/div>\n\n\n\n<p>K\u00f5ik k\u00e4sud toetavad <code>--format=json<\/code> lippu, mis teeb tulemused skriptidele ja automaatikale sobivaks (n\u00e4iteks logikogumine, alarmid v\u00f5i andmete edastamine teise s\u00fcsteemi).<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Abilities API tugi WordPress 6.9-s: miks see on oluline just automatiseerimisel<\/h2>\n\n\n\n<p>WP-CLI tugi on juba iseenesest suur v\u00f5it, aga selle plugina k\u00f5ige huvitavam osa on <strong>WordPress Abilities API<\/strong> integreerimine. Tegemist on WordPress 6.9-ga lisandunud standardse liidesega, mille kaudu saavad AI-agendid ja automatiseerimist\u00f6\u00f6riistad avastada (discover) ning kasutada WordPressi funktsionaalsust \u00fchtses formaadis.<\/p>\n\n\n\n<p>Ehk kui sul on m\u00f5ni agent, sisemine orkestreerija v\u00f5i custom dashboard, ei pea sa igale pluginale eraldi \u201ck\u00e4sitsi\u201d integratsioonikoodi kirjutama samal moel. Abilities API m\u00f5te on, et v\u00f5imekused on <strong>ennast kirjeldavad<\/strong> (self-describing) ja <strong>skeemip\u00f5hiselt valideeritavad<\/strong> (schema-validated), mis sobib h\u00e4sti masinloetavate t\u00f6\u00f6voogude jaoks.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Seitse v\u00f5imekust (abilities), mida plugin v\u00e4lja eksponeerib<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li><strong>scan-status<\/strong> \u2013 hetke skanni oleku ja progressi k\u00fcsimine<\/li>\n\n\n<li><strong>scan-start<\/strong> \u2013 turvaskanni programmiline k\u00e4ivitamine<\/li>\n\n\n<li><strong>issues-list<\/strong> \u2013 tuvastatud turvaprobleemide\/leidude p\u00e4rimine<\/li>\n\n\n<li><strong>issues-count<\/strong> \u2013 leidude loendamine t\u00f5siduse (severity) l\u00f5ikes<\/li>\n\n\n<li><strong>firewall-status<\/strong> \u2013 WAF-i oleku kontroll<\/li>\n\n\n<li><strong>firewall-block<\/strong> \u2013 IP-de blokeerimine API kaudu<\/li>\n\n\n<li><strong>license-status<\/strong> \u2013 litsentsiinfo p\u00e4ring<\/li>\n\n<\/ul>\n\n\n\n<p>Praktilises elus t\u00e4hendab see, et saad ehitada AI-toega turvamonitooringu, siduda Wordfence\u2019i oma haldusvaatega v\u00f5i lasta automaatikal teha rutiinseid kontrolle ja reageerimisi &#8211; ilma et peaksid Wordfence\u2019i jaoks eraldi, mitte-standardselt integreerima igat tegevust.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Autentimine: Application Passwords + Basic Auth<\/h3>\n\n\n\n<p>Abilities API poole pealt kasutab autentimine <strong>WordPress Application Passwords<\/strong> mehhanismi \u00fcle <strong>Basic Auth<\/strong>. Ehk ligip\u00e4\u00e4s on seotud WordPressi kasutajaga ning masinkasutuseks m\u00f5eldud rakenduseparooliga.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">N\u00f5uded (Requirements)<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n\n<li>WordPress 6.9+<\/li>\n\n\n<li>PHP 8.0+<\/li>\n\n\n<li>WP-CLI 2.5+<\/li>\n\n\n<li>Wordfence Security plugin (tasuta v\u00f5i premium)<\/li>\n\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Paigaldus: ZIP v\u00f5i Composer<\/h2>\n\n\n\n<p>Kui tahad kiirelt proovida, siis laadi alla release ZIP ja t\u00f5sta see oma saidi <code>\/wp-content\/plugins\/<\/code> kataloogi.<\/p>\n\n\n<a href=\"https:\/\/github.com\/trueqap\/wpcli-for-wordfence\/releases\/download\/v1.0.0\/wpcli-for-wordfence-1.0.0.zip\" class=\"download-card\" download>\n                <span class=\"download-icon\"><i class=\"fa-duotone fa-file-zipper\"><\/i><\/span>\n                <span class=\"download-info\">\n                    <span class=\"download-title\">Download WP CLI for Wordfence v1.0.0<\/span>\n                    <span class=\"download-meta\"><span class=\"download-filename\">wpcli-for-wordfence-1.0.0.zip<\/span><\/span>\n                <\/span>\n                <span class=\"download-action\"><i class=\"fa-duotone fa-arrow-down-to-line\"><\/i><\/span>\n            <\/a>\n\n\n<p>Alternatiivina saab paigaldada Composeriga, kui kasutad Bedrock-stiilis \u00fclesehitust (projektip\u00f5hine s\u00f5ltuvuste haldus).<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Kus see eriti h\u00e4sti t\u00f6\u00f6tab: mitu saiti, automatiseerimine ja auditij\u00e4lg<\/h2>\n\n\n\n<p>Terminalip\u00f5hine Wordfence\u2019i haldus on eriti mugav, kui haldad mitut WordPressi instantsi ja tahad \u00fchtlustatud k\u00e4ske (skannid, WAF-i olek, IP-blokid) \u00fcle serveripargi. <code>--format=json<\/code> annab v\u00f5imaluse logida tulemused, hoida auditij\u00e4lge ja \u00fchendada toimingud olemasoleva monitooringu\/opsi automatiseerimisega.<\/p>\n\n\n\n<p>Abilities API lisab siia j\u00e4rgmise kihi: v\u00f5imekused on \u00fchtse, avastatava liidesena k\u00e4ttesaadavad ka t\u00f6\u00f6riistadele, mis ei jookse WP-CLI kontekstis, vaid suhtlevad WordPressiga HTTP kaudu ning oskavad \u201cv\u00f5imeid\u201d d\u00fcnaamiliselt tuvastada ja kasutada.<\/p>\n\n\n<div class=\"references-section\">\n                <h2>Viited \/ Allikad<\/h2>\n                <ul class=\"references-list\"><li><a href=\"https:\/\/github.com\/trueqap\/wpcli-for-wordfence\" target=\"_blank\" rel=\"noopener noreferrer\">WP-CLI &amp; Abilities API for Wordfence: Manage Security from Terminal and AI Agents<\/a><\/li><li><a href=\"https:\/\/github.com\/trueqap\/wpcli-for-wordfence\/releases\/download\/v1.0.0\/wpcli-for-wordfence-1.0.0.zip\" target=\"_blank\" rel=\"noopener noreferrer\">Download WP CLI for Wordfence v1.0.0<\/a><\/li><\/ul>\n            <\/div>","protected":false},"excerpt":{"rendered":"<p>Kui Wordfence\u2019i adminnuppude kl\u00f5psimine on t\u00fc\u00fctu v\u00f5i haldad korraga mitut WordPressi saiti, siis see uus avatud l\u00e4htekoodiga plugin toob Wordfence\u2019i toimingud WP-CLI-sse ja teeb need Abilities API kaudu masinloetavalt k\u00e4ttesaadavaks.<\/p>\n","protected":false},"author":49,"featured_media":152,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[29,10,13,9,8],"class_list":["post-151","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-wordpressi-okosusteem","tag-api","tag-turvalisus","tag-wordfence","tag-wordpress","tag-wp-cli"],"_links":{"self":[{"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/posts\/151","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/users\/49"}],"replies":[{"embeddable":true,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/comments?post=151"}],"version-history":[{"count":1,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/posts\/151\/revisions"}],"predecessor-version":[{"id":153,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/posts\/151\/revisions\/153"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/media\/152"}],"wp:attachment":[{"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/media?parent=151"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/categories?post=151"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/helloblog.io\/et\/wp-json\/wp\/v2\/tags?post=151"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}