Version Locker

1.2.2 – 2026-01-24

New

• Theme locking — lock individual themes just like plugins
• Global killswitches — disable all plugin, all theme, or core updates with a single toggle
• Email notifications — get alerted when a locked item tries to update
• Quick toggle — lock or unlock without a page reload
• Bulk lock/unlock — select multiple items and toggle them at once
• Auto-lock for newly installed plugins (optional)
• Live search and filter on plugins and themes tabs
• Multisite support — each site manages its own locks independently
• Audit log now available on all sites (previously multi-admin only)
• Audit log CSV export
• Rate limiting on AJAX actions to prevent abuse

Improvements

• Rebuilt with a proper class-based structure (autoloader, services, failsafe layer)
• Error handling now catches bootstrap failures and shows a graceful admin notice instead of crashing
• Improved input validation across all form submissions and AJAX handlers
• Added VLOCKER_DISABLE_ALL constant as an emergency kill switch (define in wp-config.php)
• Better performance through caching
• PHP requirement lowered from 7.4 to 7.0
• Uninstall behavior changed to safe-by-default — data is now preserved on removal unless you opt in to deletion from the Settings tab

Security

• Separate capability checks per tab (plugins, themes, settings)
• AJAX nonce verification on all endpoints
• CSV injection protection on audit log export
• Transient-based rate limiting on quick toggle and test email

1.2.1

• Initial release
• Plugin locking only (no theme support)
• Audit log for multi-admin sites only