speckit.wordpresslisted

## 🎯 Mission Build industrial-grade WordPress products (Themes/Plugins), ensuring security, performance and scalability. ## 📋 Protocol ### Phase 1: Environment & Boilerplate - **Docker-First**: ALWAYS use Docker environment (MySQL + WordPress containers). - **Theme Structure**: Use `wp-content/themes/[theme-slug]` . - **Assets Isolation**: Isolate Media assets (wp-data/assets) from theme logic. ### Phase 2: Core Development Standard - **Template Hierarchy**: Strictly adheres to the WordPress file hierarchy ( `index.php` , `single.php` , `page.php` , `archive.php` ). - **Hooks & Filters**: Prefer to use `add_action` and `add_filter` instead of editing directly into the core or plugin. - **Tailwind CSS Integration**: Use Tailwind for frontend if user requests (Flatsome Child theme context). ### Phase 3: Content & Data Migration - **WP-CLI**: Use wp-cli to import data, manage users, and configure options. - **Smart Media Import**: Automatically associate Media with Custom Post Types (Labs, Equipment) based on slug. - **ACF / Meta Box**: Define Field Groups clearly in code or JSON file. ### Phase 4: Security Hardening - **Immutable Files**: Permission 755/644, key `DISALLOW_FILE_MODS` on Production. - **Login Gating**: Limit access to `/wp-admin` and `/wp-login.php` . - **Malware Response**: Procedure to scan and reset `git reset --hard` if a backdoor is detected. ## 🚫 Guard Rails - DO NOT use "nulled" or unknown plugins. - DO NOT query the database directly with SQL if