{"id":326764,"date":"2026-06-19T02:09:50","date_gmt":"2026-06-19T02:09:50","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/botcreds-agent-artifacts\/"},"modified":"2026-06-19T02:09:38","modified_gmt":"2026-06-19T02:09:38","slug":"botcreds-agent-artifacts","status":"publish","type":"plugin","link":"https:\/\/de-at.wordpress.org\/plugins\/botcreds-agent-artifacts\/","author":5977448,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"1.3.6","stable_tag":"1.3.6","tested":"7.0","requires":"6.0","requires_php":"7.4","requires_plugins":null,"header_name":"BotCreds Agent Artifacts","header_author":"Joe Boydston","header_description":"Deploy HTML\/CSS\/JS artifacts to WordPress via REST API. Built for AI agents.","assets_banners_color":"02080e","last_updated":"2026-06-19 02:09:38","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/botcreds.com\/agent-artifacts","header_author_uri":"https:\/\/botcreds.com","rating":0,"author_block_rating":0,"active_installs":0,"downloads":46,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.3.6":{"tag":"1.3.6","author":"jboydston","date":"2026-06-19 02:09:38"},"1.3.7":{"tag":"1.3.7","author":"jboydston","date":"2026-06-19 02:12:00"}},"upgrade_notice":{"1.3.1":"

Bug fix for external script handling. Update recommended.<\/p>","1.3.0":"

New per-artifact API allowlist feature. Artifacts that call external APIs can now declare trusted origins via an HTML pragma comment rather than a server-side CSP filter.<\/p>","1.1.0":"

Rebrand release. If you use the oc_artifacts_csp<\/code> or oc_artifacts_allowed_html<\/code> filters, update them to botcreds_agent_artifacts_csp<\/code> and botcreds_agent_artifacts_allowed_html<\/code>. All data (post type, meta keys, REST endpoints) is unchanged.<\/p>"},"ratings":[],"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3578746,"resolution":"128x128","location":"assets","locale":"","width":128,"height":128}},"assets_banners":{"banner-1544x500.png":{"filename":"banner-1544x500.png","revision":3578746,"resolution":"1544x500","location":"assets","locale":"","width":1544,"height":500},"banner-772x250.png":{"filename":"banner-772x250.png","revision":3578746,"resolution":"772x250","location":"assets","locale":"","width":772,"height":250}},"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.3.6","1.3.7"],"block_files":[],"assets_screenshots":[],"screenshots":{"1":"An artifact deployed via the REST API, rendered at its public URL.","2":"The Artifacts list in WordPress admin."}},"plugin_section":[],"plugin_tags":[15643,2353,1556,244880,23853],"plugin_category":[],"plugin_contributors":[83862],"plugin_business_model":[],"class_list":["post-326764","plugin","type-plugin","status-publish","hentry","plugin_tags-agents","plugin_tags-ai","plugin_tags-api","plugin_tags-artifacts","plugin_tags-rest-api","plugin_contributors-jboydston","plugin_committers-jboydston"],"banners":{"banner":"https:\/\/ps.w.org\/botcreds-agent-artifacts\/assets\/banner-772x250.png?rev=3578746","banner_2x":"https:\/\/ps.w.org\/botcreds-agent-artifacts\/assets\/banner-1544x500.png?rev=3578746","banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/botcreds-agent-artifacts\/assets\/icon-128x128.png?rev=3578746","icon_2x":false,"generated":false},"screenshots":[],"raw_content":"\n

BotCreds Agent Artifacts<\/strong> gives AI agents a permanent home for their outputs.<\/p>\n\n

Post a single HTML file to the REST API. The plugin parses it, extracts scripts and styles, saves them as static files, enqueues them properly via WordPress APIs, and serves the result at a clean public URL with strict security headers. No build tools. No infrastructure. One API call.<\/p>\n\n

How It Works<\/h4>\n\n
    \n
  1. POST raw HTML to \/wp-json\/wp\/v2\/artifacts<\/code><\/li>\n
  2. The plugin extracts <script><\/code> and <style><\/code> blocks and saves them as static files in wp-content\/uploads\/artifacts\/{id}\/<\/code><\/li>\n
  3. JS and CSS are enqueued via wp_enqueue_script()<\/code> \/ wp_enqueue_style()<\/code> \u2014 no inline scripts in rendered output<\/li>\n
  4. The HTML body is sanitized with wp_kses()<\/code> and an expanded allowed-tags list (canvas, SVG, inputs, video, audio, data-* attributes)<\/li>\n
  5. The artifact is served at yourdomain.com\/artifacts\/{slug}\/<\/code> with a strict Content Security Policy<\/li>\n<\/ol>\n\n

    From the caller's perspective: POST HTML, get URL. Everything else happens server-side.<\/p>\n\n

    Features<\/h4>\n\n

    Deployment<\/strong><\/p>\n\n

      \n
    • Single REST API call \u2014 no SDK, no library, any HTTP client works<\/li>\n
    • Update artifacts in place \u2014 POST to \/wp-json\/wp\/v2\/artifacts\/{id}<\/code> and the public URL stays the same<\/li>\n
    • Optional artifact_description<\/code> field for internal documentation<\/li>\n
    • Head content preservation \u2014 <meta><\/code> tags and other <head><\/code> elements from submitted HTML are preserved in output<\/li>\n
    • External script support \u2014 <script src=\"...\"><\/code> tags are registered as external dependencies and enqueued alongside local assets<\/li>\n
    • Asset cache busting \u2014 enqueued files are versioned with filemtime()<\/code> so browsers fetch updates automatically<\/li>\n
    • Clean redeploys \u2014 old asset files are deleted before new ones are written<\/li>\n<\/ul>\n\n

      Security<\/strong><\/p>\n\n

        \n
      • Content Security Policy on every artifact page \u2014 blocks external script injection and cross-origin data exfiltration by default<\/li>\n
      • Trusted CDN list out of the box: cdn.jsdelivr.net<\/code>, unpkg.com<\/code>, cdnjs.cloudflare.com<\/code>, esm.sh<\/code>, cdn.skypack.dev<\/code> \u2014 scripts and styles load from these without any configuration<\/li>\n
      • Per-artifact API allowlist \u2014 artifacts that call external APIs declare their origins via an HTML pragma comment (<!-- artifact:fetch https:\/\/api.example.com --><\/code>) or a deploy-time meta field; the plugin adds them to connect-src<\/code> automatically<\/li>\n
      • Additional security headers: X-Content-Type-Options<\/code>, X-Frame-Options<\/code>, Referrer-Policy<\/code><\/li>\n
      • Custom capability type \u2014 artifact<\/code> capabilities are separate from standard post capabilities; only Administrators can create artifacts by default<\/li>\n<\/ul>\n\n

        Developer Hooks<\/strong><\/p>\n\n

          \n
        • botcreds_agent_artifacts_csp<\/code> \u2014 filter the full CSP header value for any artifact<\/li>\n
        • botcreds_agent_artifacts_allowed_html<\/code> \u2014 filter the wp_kses<\/code> allowed-tags array<\/li>\n
        • botcreds_agent_artifacts_grant_to_role()<\/code> \u2014 helper to grant capabilities to additional roles<\/li>\n
        • Custom template \u2014 drop single-artifact.php<\/code> in your active theme to replace the render template<\/li>\n<\/ul>\n\n

          Use Cases<\/h4>\n\n

          OpenClaw (AI personal assistant)<\/strong><\/p>\n\n

          OpenClaw agents can deploy interactive dashboards, daily digests, data visualizations, and mini-apps in a single tool call. Generate the HTML, POST it, get the URL \u2014 no manual steps, no context switching.<\/p>\n\n

          For artifacts that fetch live data, add a pragma comment to the HTML and the CSP is updated automatically:<\/p>\n\n

          <!-- artifact:fetch https:\/\/api.openweathermap.org -->\n<\/code><\/pre>\n\n
          For recurring reports (daily digests, weekly summaries), store the artifact ID after the first deploy and update in place on subsequent runs. The URL never changes.<\/p>\n\n
          Claude Code (terminal-based coding agent)<\/strong><\/p>\n\n
          Claude Code sessions can invoke a shell deploy script directly after generating output. Add a scripts\/deploy-artifact.sh<\/code> to your project and reference it in your CLAUDE.md<\/code> \u2014 Claude will use it to ship outputs without leaving the terminal. No manual copy-paste, no browser switching.<\/p>\n\n
          Codex (OpenAI coding agent)<\/strong><\/p>\n\n
          Same pattern as Claude Code. Add deployment instructions to your AGENTS.md<\/code> and Codex can write HTML, call the deploy script, and report the live URL \u2014 all in one agent run.<\/p>\n\n
          GitHub Actions (versioned project)<\/strong><\/p>\n\n
          For projects that build a static HTML output \u2014 dashboards, reports, documentation, changelogs \u2014 a GitHub Actions workflow can deploy to an artifact on every push to main<\/code>. The artifact ID is stored as a repository variable so the public URL stays stable across all future deploys. Push \u2192 build \u2192 deploy \u2192 done.<\/p>\n\n
          Example: Deploy via REST API<\/h4>\n\n
          curl -X POST \"https:\/\/your-site.com\/wp-json\/wp\/v2\/artifacts\" \\\n  -u \"username:application-password\" \\\n  -H \"Content-Type: application\/json\" \\\n  -d '{\n    \"title\": \"My App\",\n    \"status\": \"publish\",\n    \"meta\": {\n      \"artifact_html\": \"<!DOCTYPE html><html><body><h1>Hello.<\/h1><\/body><\/html>\",\n      \"artifact_description\": \"Built by my AI agent\"\n    }\n  }'\n<\/code><\/pre>\n\n
          The response link<\/code> field is the public URL of the deployed artifact.<\/p>\n\n
          Example: Artifact with Live Data<\/h4>\n\n
          Include the fetch pragma in your HTML \u2014 no configuration needed:<\/p>\n\n
          <!-- artifact:fetch https:\/\/api.openweathermap.org -->\n<!DOCTYPE html>\n<html>\n<body>\n  <div id=\"weather\"><\/div>\n  <script>\n    fetch('https:\/\/api.openweathermap.org\/data\/2.5\/weather?q=Denver&appid=YOUR_KEY')\n      .then(r => r.json())\n      .then(d => document.getElementById('weather').textContent = d.weather[0].description);\n  <\/script>\n<\/body>\n<\/html>\n<\/code><\/pre>\n\n
          Example: GitHub Actions Deployment<\/h4>\n\n
          name: Deploy Artifact\non:\n  push:\n    branches: [main]\njobs:\n  deploy:\n    runs-on: ubuntu-latest\n    steps:\n      - uses: actions\/checkout@v4\n      - run: npm ci && npm run build\n      - name: Deploy to Artifact\n        env:\n          WP_SITE: ${{ secrets.ARTIFACT_WP_SITE }}\n          WP_USER: ${{ secrets.ARTIFACT_WP_USER }}\n          WP_PASS: ${{ secrets.ARTIFACT_WP_PASS }}\n          ARTIFACT_ID: ${{ vars.ARTIFACT_ID }}\n        run: |\n          PAYLOAD=$(jq -n --arg title \"My Dashboard\" --rawfile html dist\/index.html \\\n            '{title: $title, status: \"publish\", meta: {artifact_html: $html}}')\n          ENDPOINT=\"$WP_SITE\/wp-json\/wp\/v2\/artifacts\"\n          [ -n \"$ARTIFACT_ID\" ] && ENDPOINT=\"$ENDPOINT\/$ARTIFACT_ID\"\n          curl -sf -X POST \"$ENDPOINT\" -u \"$WP_USER:$WP_PASS\" \\\n            -H \"Content-Type: application\/json\" -d \"$PAYLOAD\" | jq -r '.link'\n<\/code><\/pre>\n\n\n
            \n
          1. Upload the botcreds-agent-artifacts<\/code> folder to \/wp-content\/plugins\/<\/code><\/li>\n
          2. Activate BotCreds Agent Artifacts<\/strong> in the WordPress admin under Plugins<\/strong><\/li>\n
          3. Go to Settings \u2192 Permalinks<\/strong> and click Save Changes<\/strong> to flush rewrite rules<\/li>\n
          4. Create a WordPress Application Password<\/strong> for your agent user: Users \u2192 Profile \u2192 Application Passwords<\/strong><\/li>\n<\/ol>\n\n\n
            \n
            Does this work with any REST client or AI agent?<\/h3><\/dt>\n
            Yes. Any HTTP client that can POST JSON with Basic Auth (username + Application Password) works. No SDK or special library required. curl, Python's urllib, Node's fetch \u2014 anything goes.<\/p><\/dd>\n
            Are artifacts sandboxed?<\/h3><\/dt>\n
            Artifact pages are served with a Content Security Policy that blocks external script injection and cross-origin fetch\/XHR by default. The CSP is filterable (botcreds_agent_artifacts_csp<\/code>) for custom use cases, and per-artifact API origins can be declared via the artifact:fetch<\/code> pragma or the artifact_connect_src<\/code> meta field.<\/p><\/dd>\n
            What scripts and CDNs are allowed without configuration?<\/h3><\/dt>\n
            The following CDNs are in the default script-src<\/code> allowlist: cdn.jsdelivr.net<\/code>, unpkg.com<\/code>, cdnjs.cloudflare.com<\/code>, esm.sh<\/code>, cdn.skypack.dev<\/code>. External modules loaded from these CDNs work in artifact HTML without any additional configuration.<\/p><\/dd>\n
            How do I allow my artifact to call an external API?<\/h3><\/dt>\n
            Two options:<\/p>\n\n
            Option 1 \u2014 HTML pragma (recommended):<\/strong> Add a comment to your submitted HTML:\n    <\/p>\n\n
            The plugin strips the comment from output and adds the origin to connect-src<\/code>.<\/p>\n\n
            Option 2 \u2014 Deploy-time meta field:<\/strong> Pass artifact_connect_src<\/code> as an array:\n    \"meta\": { \"artifact_connect_src\": [\"https:\/\/api.example.com\"] }<\/p>\n\n
            Both options accept only https:\/\/<\/code> origins. No wildcards, no http:\/\/<\/code>.<\/p><\/dd>\n
            How do I update an artifact without changing its URL?<\/h3><\/dt>\n
            POST to \/wp-json\/wp\/v2\/artifacts\/{id}<\/code> with the same fields. The existing asset files are cleared, new files are written, and the public URL (\/artifacts\/{slug}\/<\/code>) does not change.<\/p><\/dd>\n
            What HTML elements and attributes are allowed?<\/h3><\/dt>\n
            The plugin allows a superset of wp_kses_allowed_html('post')<\/code> including <canvas><\/code>, <svg><\/code>, <path><\/code>, <input><\/code>, <button><\/code>, <select><\/code>, <option><\/code>, <label><\/code>, <video><\/code>, and <audio><\/code> with their common attributes. data-*<\/code> attributes are allowed on interactive elements. Additional tags and attributes can be added via the botcreds_agent_artifacts_allowed_html<\/code> filter.<\/p><\/dd>\n
            Who can create artifacts?<\/h3><\/dt>\n
            Only Administrators by default. To grant access to additional roles:<\/p>\n\n
            botcreds_agent_artifacts_grant_to_role( 'editor' );\n<\/code><\/pre><\/dd>\n
            Can I use a custom template?<\/h3><\/dt>\n
            Yes. Place single-artifact.php<\/code> in your active theme and it takes precedence over the plugin's default template. The plugin template is used as a fallback.<\/p><\/dd>\n
            Will my old artifacts still work after upgrading?<\/h3><\/dt>\n
            Yes. Artifacts created before v1.0 (stored as raw HTML) are still rendered via a legacy fallback path. No migration needed.<\/p><\/dd>\n
            How do I update the Content Security Policy?<\/h3><\/dt>\n
            Use the botcreds_agent_artifacts_csp<\/code> filter:<\/p>\n\n
            add_filter( 'botcreds_agent_artifacts_csp', function( $csp, $post_id ) {\n    return $csp . \"; worker-src 'self'\";\n}, 10, 2 );\n<\/code><\/pre><\/dd>\n\n<\/dl>\n\n\n
            1.3.4<\/h4>\n\n
              \n
            • Fix: sanitize head content output in single-artifact.php using wp_kses() with a safe head-element allowlist (meta, link, title, base)<\/li>\n
            • Fix: rename BOTCREDS_ARTIFACTS_VERSION constant to BCAA_VERSION and template variables to bcaa_ prefix to satisfy PrefixAllGlobals coding standard<\/li>\n<\/ul>\n\n
              1.3.3<\/h4>\n\n
                \n
              • Fix: align version constant and Stable tag with plugin header<\/li>\n
              • Fix: add jboydston to Contributors list<\/li>\n<\/ul>\n\n
                1.3.2<\/h4>\n\n
                  \n
                • Fix: prefix all template-scope variables in single-artifact.php<\/code> with botcreds_<\/code> to satisfy WordPress coding standards (PrefixAllGlobals)<\/li>\n
                • Fix: bump \"Tested up to\" to 7.0<\/li>\n<\/ul>\n\n
                  1.3.1<\/h4>\n\n
                    \n
                  • Bug fix: external <script src=\"...\"><\/code> nodes are now correctly removed from the DOM before the body is serialized, preventing duplicate rendering<\/li>\n<\/ul>\n\n
                    1.3.0<\/h4>\n\n
                      \n
                    • Per-artifact API allowlist: declare trusted external API origins via <!-- artifact:fetch https:\/\/api.example.com --><\/code> pragma in submitted HTML<\/li>\n
                    • Per-artifact API allowlist: artifact_connect_src<\/code> meta field for deploy-time origin declaration via REST<\/li>\n
                    • Both methods are merged and deduplicated; only https:\/\/<\/code> origins accepted (no wildcards, no http)<\/li>\n
                    • CSP connect-src<\/code> is now dynamically built from declared origins per artifact<\/li>\n<\/ul>\n\n
                      1.2.0<\/h4>\n\n
                        \n
                      • Trusted CDN allowlist in default CSP: cdn.jsdelivr.net<\/code>, unpkg.com<\/code>, cdnjs.cloudflare.com<\/code>, esm.sh<\/code>, cdn.skypack.dev<\/code><\/li>\n
                      • External <script src=\"...\"><\/code> tags are now extracted and enqueued as external script dependencies<\/li>\n
                      • Head content (<head><\/code> tags) from submitted HTML is preserved and injected into the artifact's <head><\/code><\/li>\n
                      • Asset cache busting: enqueued files are versioned with filemtime()<\/code> for automatic browser cache invalidation<\/li>\n
                      • Clean redeploys: old asset files are deleted before new files are written<\/li>\n
                      • File operations use WP_Filesystem<\/code> for proper WordPress filesystem abstraction<\/li>\n<\/ul>\n\n
                        1.1.0<\/h4>\n\n
                          \n
                        • Rebrand: OC Artifacts \u2192 BotCreds Agent Artifacts<\/li>\n
                        • Updated plugin header (Plugin URI, Author, Text Domain)<\/li>\n
                        • Renamed filter hooks: botcreds_agent_artifacts_csp<\/code>, botcreds_agent_artifacts_allowed_html<\/code><\/li>\n
                        • Renamed helper: botcreds_agent_artifacts_grant_to_role()<\/code><\/li>\n
                        • Added Requires at least<\/code> and Requires PHP<\/code> headers<\/li>\n
                        • Improved inline documentation and code style<\/li>\n
                        • Post type slug, meta keys, and REST endpoints unchanged (drop-in compatible)<\/li>\n<\/ul>\n\n
                          1.0.0<\/h4>\n\n
                            \n
                          • Complete rewrite: HTML is now parsed server-side; scripts and styles are extracted and properly enqueued via WordPress APIs<\/li>\n
                          • Strict Content Security Policy applied to all artifact pages<\/li>\n
                          • Sanitization via wp_kses()<\/code> with expanded allowed-tag list<\/li>\n
                          • Backwards compatibility with pre-1.0 raw-HTML artifacts<\/li>\n<\/ul>\n\n
                            0.3.0<\/h4>\n\n
                              \n
                            • Security headers added (X-Frame-Options, Referrer-Policy)<\/li>\n
                            • Custom capability type for fine-grained access control<\/li>\n<\/ul>\n\n
                              0.2.0<\/h4>\n\n
                                \n
                              • REST API endpoint for artifact creation<\/li>\n
                              • Custom single template<\/li>\n<\/ul>\n\n
                                0.1.0<\/h4>\n\n
                                  \n
                                • Initial release<\/li>\n<\/ul>","raw_excerpt":"Deploy self-contained HTML\/CSS\/JS apps to WordPress via REST API. One call from any AI agent or CI pipeline \u2014 plugin handles the rest.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/326764","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=326764"}],"author":[{"embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/jboydston"}],"wp:attachment":[{"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=326764"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=326764"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=326764"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=326764"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=326764"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/de-at.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=326764"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}