← Back to Skills Marketplace
maverick

Wordpress mcp

by Maverick · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
28
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install maverick-wordpress-mcp
Description
Use WordPress integration context for posts, pages, media, comments, sites, and publishing workflows. Use after Maverick connects WordPress and provisions ru...
README (SKILL.md)

WordPress

Quick start

This skill has the shared mcporter wrapper scripts, but no skill-local mcporter.json is registered for WordPress yet. Do not call bash {baseDir}/scripts/invoke.sh until a provider MCP manifest is added. In current runtime, inspect the available WordPress tools first, then use the smallest read path that can identify the site, post, page, media item, comment, or publishing target.

When a WordPress MCP manifest is added, follow the same wrapper rule as Linear: invoke through bash {baseDir}/scripts/invoke.sh, never call mcporter directly, and discover tool schemas before choosing tool names.

Safety

Write operations that create, update, publish, unpublish, delete, moderate, upload media, or edit site content can change public WordPress content. Confirm clear user intent before invoking write tools, and read current site/post/page/comment state before changing it.

Authentication

Tokens are provisioned and rotated automatically. If available runtime tools return HTTP 401 that doesn't recover within a few seconds, the OAuth grant has been revoked — re-authorize the integration to refresh credentials.

Data flow

No provider-owned WordPress MCP endpoint is registered in this repository yet. Runtime tool calls, if present in the active OpenClaw environment, use Maverick-provisioned OAuth credentials and expose WordPress post, page, media, comment, site, and publishing data to the active tool provider. Use this skill for WordPress-related work only; do not pass unrelated sensitive content through these tools.

Dependencies

  • mcporter (github.com/steipete/mcporter) — MCP CLI used by the shared wrapper once a WordPress MCP manifest exists. Auto-installed via npm install -g --ignore-scripts mcporter if missing on PATH (see install spec in frontmatter). The install spec uses unpinned mcporter (npm latest); operators with strict supply-chain controls should override the install to pin a specific version (e.g. mcporter@\x3Cversion>).
  • jq (stedolan.github.io/jq) — JSON processor used by the vault initializer. System dependency; install via your OS package manager (apt install jq, brew install jq, etc.).
  • flock (part of util-linux) — file locking used to serialize concurrent vault writes. Available by default on Linux; on macOS install via brew install flock.
  • shasum (Perl, ships with Digest::SHA) — computes the SHA-256 hashes used to derive the mcporter vault key and the provisioned-token marker. Preinstalled on macOS and on Debian/Ubuntu (incl. the deployed cloudflare/sandbox Ubuntu 22.04 image); on minimal Linux images install perl-Digest-SHA. The script invokes shasum -a 256 rather than GNU sha256sum so it runs on stock macOS without coreutils.
Usage Guidance
Before installing, confirm you trust the Maverick WordPress runtime provider, pin or review the mcporter dependency if supply-chain control matters, use scoped and revocable WordPress OAuth credentials, and require explicit approval before publishing, deleting, moderating, uploading, or editing site content.
Capability Analysis
Type: OpenClaw Skill Name: maverick-wordpress-mcp Version: 1.0.0 The skill is a standard integration wrapper for WordPress using the `mcporter` tool. It includes utility scripts (`init-mcporter.sh` and `invoke.sh`) to manage OAuth token rotation and initialize the mcporter credential vault. The implementation follows security best practices, such as using `flock` for safe concurrent file access and passing sensitive credentials to `jq` via environment variables to prevent exposure in process listings. No malicious behavior, data exfiltration, or prompt injection attempts were identified.
Capability Tags
requires-oauth-tokenrequires-sensitive-credentials
Capability Assessment
Purpose & Capability
The stated purpose is coherent with WordPress posts, pages, media, comments, and publishing workflows; users should note that the described tools can affect public site content.
Instruction Scope
The instructions tell the agent to inspect available WordPress tools, use the smallest read path, and confirm user intent before writes; the current runtime tools are not defined in this repository.
Install Mechanism
The install path uses the third-party npm package mcporter without a pinned version, which is disclosed in SKILL.md and mitigated somewhat by --ignore-scripts.
Credentials
OAuth access, refresh, and client ID environment variables are expected for a WordPress integration, but they are sensitive credentials and should be scoped and revocable.
Persistence & Privilege
The helper script persists OAuth tokens into the local mcporter credential vault and writes a non-secret hash marker in the skill directory; this is purpose-aligned but sensitive.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install maverick-wordpress-mcp
  3. After installation, invoke the skill by name or use /maverick-wordpress-mcp
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of the maverick-wordpress-mcp skill. - Provides integration context for managing WordPress posts, pages, media, comments, sites, and publishing workflows. - No provider-owned WordPress MCP manifest registered yet; only shared `mcporter` wrapper scripts included. - Documents required dependencies and environment variables for runtime operation and authentication. - Includes safety and usage guidelines for read and write operations.
Metadata
Slug maverick-wordpress-mcp
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Wordpress mcp?

Use WordPress integration context for posts, pages, media, comments, sites, and publishing workflows. Use after Maverick connects WordPress and provisions ru... It is an AI Agent Skill for Claude Code / OpenClaw, with 28 downloads so far.

How do I install Wordpress mcp?

Run "/install maverick-wordpress-mcp" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Wordpress mcp free?

Yes, Wordpress mcp is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Wordpress mcp support?

Wordpress mcp is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Wordpress mcp?

It is built and maintained by Maverick (@maverick); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments