[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f1quI5yO32-OL9Ev9pX_G0tqKh7A09beMyQy_Bap5eTw":3,"$f3263h-PnExZzyfkQD6CKF7LY_rPNfqq1QUJBHZT_A5M":295,"$fX2EXH9XTUOlp9iomQpR0K_cF_YipJpbbyuzssS1mPN4":299},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":38,"analysis":134,"fingerprints":258},"brief-message","Brief Message","0.0.5","ZIPANG","https:\u002F\u002Fprofiles.wordpress.org\u002Fzipang\u002F","\u003Cp>Add a widget to display a short sentence.It will be displayed in the form of Twitter.Like the theme “P2”, logged-in users can post from the front end.\u003C\u002Fp>\n","Add a widget to display a short sentence.It will be displayed in the form of Twitter.Like the theme \"P2\", logged-in users can post from the front end.",60,2981,0,"2026-01-03T04:15:00.000Z","6.9.4","4.7","5.6.0",[19,20,21,22],"message","short","tweet","twitter","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrief-message.0.0.5.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"zipang",5,330,86,4,90,"2026-05-20T02:36:44.674Z",[39,60,79,98,117],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":47,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":23,"tags":53,"homepage":57,"download_link":58,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"twitter-hash-tag-shortcode","Twitter Hash Tag Shortcode","0.6.2","Bainternet","https:\u002F\u002Fprofiles.wordpress.org\u002Fbainternet\u002F","\u003Cp>Displaying the most recent twitter status updates for a particular hash tag in your posts\u002Fpages using shortcode.\u003C\u002Fp>\n\u003Cp>Usage:\u003Cbr \u002F>\n    [hashtag_tweets hashtag=”YOUR_TAG” number=”NUMBER_OF_TWEETS_TO_GET” cache=”hours to cache”]\u003C\u002Fp>\n\u003Cp>Feuture relase will have a templating feature but for now i’ll live the design to you with CSS\u003C\u002Fp>\n","Displaying the most recent twitter status updates for a particular hash tag in your posts\u002Fpages using shortcode.",20,7035,1,"2016-12-11T12:47:00.000Z","4.7.0","2.9.2",[54,55,56],"tweets-hashtag","twitter-hashtag","twitter-shortcode","http:\u002F\u002Fen.bainternet.info","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwitter-hash-tag-shortcode.0.6.2.zip",85,{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":13,"num_ratings":13,"last_updated":70,"tested_up_to":52,"requires_at_least":71,"requires_php":23,"tags":72,"homepage":76,"download_link":77,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":78},"kaelme-url-shortener","Kael.me URL Shortener","1.0.1","kaelzhang","https:\u002F\u002Fprofiles.wordpress.org\u002Fkaelzhang\u002F","\u003Cp>kael.me URL shortener let you create your own short url, just like http:\u002F\u002Fyoursite\u002F-abc, instead of using other short url services\u003C\u002Fp>\n\u003Cp>You can easily manage them with a paginating list of your short urls, change details, delete, or track clicks of them.\u003C\u002Fp>\n\u003Cp>Your tiny urls may redirect as 301 permanently redirection or 307 temporary redirection as your set each of them to.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>If you don’t have rewrite_module on your server, you can change settings in plugin page. Tick the ‘Oops, my rewrite_module is disabled!’ checkbox on.\u003C\u002Fp>\n\u003Ch3>Author\u003C\u002Fh3>\n\u003Cp>2009, Kael Zhang\u003Cbr \u002F>\nhttp:\u002F\u002Fkael.me\u003Cbr \u002F>\nhttp:\u002F\u002Fyottaworks.net\u003C\u002Fp>\n","kael.me URL shortener let you create your own short url, just like http:\u002F\u002Fyoursite\u002F-abc, instead of using other short url services",10,2417,"2009-12-18T02:09:00.000Z","2.7",[73,74,21,22,75],"short-url","shorten","url","http:\u002F\u002Fkael.me\u002F-su","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkaelme-url-shortener.zip","2026-03-15T15:16:48.613Z",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":68,"downloaded":87,"rating":11,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":23,"tags":92,"homepage":96,"download_link":97,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"tweet-master","TechGasp Tweety Master","5.1.4","TechGasp","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechgasp\u002F","\u003Cp>By far the best Twitter Tweets integration for WordPress websites. With Tweet Master you can display your latest tweets and or your favourite Twitter lists inside any widget position of your wordpress template. Besides your tweets display we also included a nice tweet button with bubble count reinforced with Via, Recommend and Hashtag. Your users and visitors can easily share your page boosting your website visits and social engagement.\u003C\u002Fp>\n\u003Cp>Since we are obsessed with clean, error free code and page load times, we made sure the widget updates your tweets in a blink of an eye without stalling it if twitter is responding slowly. And now you ask, how did you achieve that? The plugin is based upon the twitter widget when it comes to sizes and colours but we packed the module with it’s own iframe and html5.\u003C\u002Fp>\n\u003Cp>With Tweets Master you can professionally display your twitter tweets and integrate it into your wordpress like a chameleon.\u003C\u002Fp>\n\u003Cp>Again and as usual with TechGasp extensions, the code is pristine, error free and with fast page loading times. Professional or business pages need to be fast and gain google seo rank.\u003C\u002Fp>\n\u003Cp>All widgets are fully mobile devices responsive, a must for any professional website\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Tweet Master boosts your social engagement\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>IMPORTANT: Errors and conflicts free. NO JAVASCRIPT or AJAX.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>LITE Version Contains\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Display, Hide or Change any Widget Title\u003C\u002Fli>\n\u003Cli>Tweet Master Buttons Widget:\u003C\u002Fli>\n\u003Cli>All the Twitter buttons that you will need. Improved load speed and google seo\u003C\u002Fli>\n\u003Cli>Follow Button\u003C\u002Fli>\n\u003Cli>Tweet Button\u003C\u002Fli>\n\u003Cli>Hashtag Button\u003C\u002Fli>\n\u003Cli>Mention Button\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>ADVANCED Version Contains\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Fully Mobile Responsive\u003C\u002Fli>\n\u003Cli>WordPress Network or Multi-Sites Ready\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display, Hide or Change any Widget Title\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweet Master Buttons Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>All the Twitter buttons that you will need. Improved load speed and google seo\u003C\u002Fli>\n\u003Cli>Follow Button\u003C\u002Fli>\n\u003Cli>Tweet Button\u003C\u002Fli>\n\u003Cli>Hashtag Button\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Mention Button\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweet Master Tweets Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display your latest Tweets\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweet Master Twitter Lists Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display your favourite Twitter Lists\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweet Master Search Content Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display your favourite Twitter Searches\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweet Master Tweet Content Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display your favourite Tweets\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweet Master Video Content Widget\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display your favourite Twitter Videos\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>TechGasp Shortcode Framework v5\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>Universal Shortcode for all pages and posts, same Shortcode applies to all pages and posts. Option to Automatically add the shortcode to all pages and posts or manually add the pre-built shortcode individually per page or post. Option to automatically only show the shortcode in Posts and not Pages. Option to Automatically show the shortcode After the Title or After the Content.\u003C\u002Fli>\n\u003Cli>Individual Shortcode for each page or post, individual customized shortcode per page or post\u003C\u002Fli>\n\u003Cli>Shortcodes allow you to professionally display your plugin inside pages and posts maintaining fast page load times and excellent Google SEO\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.techgasp.com\u002Ftweet-master\u002F\" rel=\"nofollow ugc\">Advanced Version Link\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>ONLINE DEMO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Right of the page, sidebar widgets\u003C\u002Fli>\n\u003Cli>Inside the post, with shortcode framework v5\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.techgasp.com\u002Ftweet-master\u002F\" rel=\"nofollow ugc\">Demo Link\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>More High Quality Plugins?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>For professional wordpress websites\u003C\u002Fli>\n\u003Cli>Tested for fast page load times and SEO\u003C\u002Fli>\n\u003Cli>Errors and conflicts free. NO JAVASCRIPT or AJAX\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.techgasp.com\u002Fbuy-all-techgasp-wordpress-plugins\u002F\" rel=\"nofollow ugc\">Click Here\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","With TechGasp Tweety Master plugin you can display your latest tweets, favourite twitter lists and twitter buttons.",18181,2,"2021-03-11T11:08:00.000Z","5.7.15","3.5",[93,94,21,22,95],"shortcode","techgasp","widget","https:\u002F\u002Fwordpress.techgasp.com\u002Ftweet-master\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftweet-master.5.1.4.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":68,"downloaded":106,"rating":13,"num_ratings":13,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":23,"tags":110,"homepage":113,"download_link":114,"security_score":115,"vuln_count":88,"unpatched_count":88,"last_vuln_date":116,"fetched_at":27},"twittee-text-tweet","Twittee Text Tweet","1.0.8","Johnnie","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnnie2u\u002F","\u003Cp>Twittee Text Tweet is now available in Spanish; our many thanks to the dedicated translator that made a Spanish l10n possible.\u003C\u002Fp>\n\u003Cp>Twittee Text Tweet moves beyond the standard Twitter share button. It gives you complete control over the tweet content distributed throughout the Twitter communities. Your personal branding and keyword rich content can be distributed by your visitors in copy format. The plugin enables you to write compelling tweets that include hashtags (#), at sign (@) and Twitter abbreviation like HT (hat tip). Your visitors will love the ease of posting your tweets to their timeline. Visitors can add their own personal touch by editing your tweets personalizing your content to taste.\u003C\u002Fp>\n\u003Cp>Here’s how it works. Twittee generates short code to insert into your post. The first textbox is your tweet. This is the message your visitors will be tweeting to their Twitter communities. Make this tweet about family, your vacation, humorous, about food, your business or product. Whatever the tweet, make it keyword rich and use the most appropriate attention grabbers available in the Twitter Glossary.\u003C\u002Fp>\n\u003Cp>The second textbox is your keyword that will be hyperlinked to your Tweet Action window. This is the window that will contain your tweet and link to your post for visitor review. A press of the button and your tweet is on its way.\u003C\u002Fp>\n\u003Cp>The third textbox is the compelling description of your tweet. Write a great description. Action-oriented language is best. Use a call to action; this is exactly what a good description is. Verbs like “Laugh”, “Share”, or “Discover” will motivate visitors to post your tweet to their timeline.  Be sure to follow up with exactly how the community will benefit by tweeting your content. Write a short preview of the tweet telling the reader why they should share your content with their Twitter community. This is your chance to tell your visitors what you have to offer and why your content is informative and valuable.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong> Tweets are only 140 characters long. The tweet textbox is limited to 140 characters. However, you must account for the URL of your post page. It will count towards the 140 character limit. I am working on a URL shortened option for Twittee Text Tweet. I just don’t know how it will be received by visitors. I know they like to use their own URL shortener for tracking their tweets. Your suggestions are welcome; please contact me with your thoughts.\u003C\u002Fp>\n\u003Cp>Each Twittee shortcode should have an ID. For best practice it is best to have a Shortcode ID for each generation. It is not necessary for individual shortcode in a post, however, if you go back later to insert another shortcode, it will have to have an ID.\u003C\u002Fp>\n\u003Cp>Lastly, choose the position and theme of the word balloon. This is the word balloon that will contain your compelling description. Generate your shortcode – cut and paste into your post. Enjoy and Thank You!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>NOTE: All feedback and suggestions are welcome. I am constantly looking for ways to improve and upgrade Twittee Text Tweet. Please contact me with your ideas for a better plugin.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>NOTE: Twittee Text Tweet is I18n ready. I am proud to make Twittee Text Tweet available to users throughout the world in their native language. If you are interested in translating Twittee Text Tweet in your language, please send me an email. Thank you.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Twittee enables visitors to tweet your keyword rich content on Twitter. Add Twittee shortcode to post and let your visitors do the rest. Easy!",2268,"2021-01-25T04:13:00.000Z","5.6.17","3.0.1",[93,111,21,112,22],"timeline","twittee","http:\u002F\u002Fjohnniejodelljr.com\u002Ftwittee-text-tweet\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwittee-text-tweet.zip",41,"2026-04-21 19:07:17",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":13,"downloaded":125,"rating":25,"num_ratings":49,"last_updated":126,"tested_up_to":17,"requires_at_least":127,"requires_php":128,"tags":129,"homepage":23,"download_link":133,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"reve-click2tweet","Reve Click2Tweet","1.3.0","Fernando García","https:\u002F\u002Fprofiles.wordpress.org\u002Fpromostudio\u002F","\u003Ch4>Add totally custom, responsive and fast Click to tweet boxes to your WordPress site.\u003C\u002Fh4>\n\u003Ch4>Reve Click2Tweet is totally free, superfast and very light-weight (only 58Kb!).\u003C\u002Fh4>\n\u003Ch3>How to use\u003C\u002Fh3>\n\u003Cp>Simply insert the shortcode \u003Ccode>[revec2t]\u003C\u002Fcode> in any post, page or HTML\u002Ftext widget. To add it you can use the Reve Click2Tweet classic editor button, if option is enabled (by default).\u003C\u002Fp>\n\u003Cp>The shortcode will be replaced by the linkable box that allows your visitors to share any content on Twitter.\u003C\u002Fp>\n\u003Cp>You can use the following attributes into the shortcode: text, url, hashtags, via, label, icon and short.\u003C\u002Fp>\n\u003Cp>All attributes are optional. If you don’t set the text, the shortcode will display the URL to share. Also, you can set manually the URL, or the shortcode will generate the current page URL.\u003C\u002Fp>\n\u003Cp>The attributes hashtags, via, label, icon and short allows you to custom each shortcode. If set, they will overwrite the saved options. Also, if you use the special value 0 to any attribute, the saved option will be deactivated.\u003C\u002Fp>\n\u003Cp>Usually you only need to use the text attribute to set the text of the tweet, and allow the shortcode to do the rest.\u003C\u002Fp>\n\u003Ch3>Some examples\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>[revec2t] : The simplest example. As you don’t set the text, the current page URL will be shown in its place.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>[revec2t text=”Text of the tweet”] : The recommended use. Displays the box with the text, the current URL and the saved options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>[revec2t text=”Text of the tweet” url=”http:\u002F\u002F…”] : To use a custom URL. Note that URLs must be valid.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>[revec2t text=”Text of the tweet” label=”Click here”] : Changes the default call to action label.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>[revec2t text=”Text of the tweet” hashtags=”hashtag1,hashtag2″] : Sets the hashtags of the tweet, or changes the default hashtags parameter, if set.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>[revec2t text=”Text of the tweet” via=”twitter_user”] : Sets or changes the default via parameter.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>[revec2t text=”Text of the tweet” via=”0″ hashtags=”0″] : Disables the default via and hashtags parameters, if set in options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>About the Twitter API\u003C\u002Fh3>\n\u003Cp>Note that the Twitter API will receive and validate all the submitted params. So, is a best practice to test each shortcode when it is published, especially if the text or the URL are too long.\u003C\u002Fp>\n\u003Cp>Currently the maximum length of a tweet is 280 characters, including the text, the URL, the via parameter, the hashtags and the blanks.\u003C\u002Fp>\n\u003Ch3>Need help?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>For help use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Freve-click2tweet\u002F\" rel=\"ugc\">WordPress Support\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Also you can \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Freve-click2tweet\u002Freviews\u002F#new-post\" rel=\"ugc\">write a review\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute development\u003C\u002Fh3>\n\u003Cp>You can contribute as follow:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Freve-click2tweet\u002Freviews\u002F\" rel=\"ugc\">If you like this plugin, give us a five stars rating clicking here.\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.promostudio.es\u002Fsupport-revec2t\" rel=\"nofollow ugc\">If you make this plugin profitable, give us any Paypal donation clicking here.\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Add totally custom, responsive and fast Click to tweet boxes to your WordPress site.",1464,"2021-02-02T23:11:00.000Z","4.0","5.6",[130,131,93,22,132],"click-to-tweet","share-buttons","twitter-share","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freve-click2tweet.1.3.0.zip",{"attackSurface":135,"codeSignals":187,"taintFlows":248,"riskAssessment":249,"analyzedAt":257},{"hooks":136,"ajaxHandlers":173,"restRoutes":183,"shortcodes":184,"cronEvents":185,"entryPointCount":186,"unprotectedCount":13},[137,143,149,153,157,161,166,170],{"type":138,"name":139,"callback":140,"file":141,"line":142},"action","plugins_loaded","brief_message_file_load","brief-message.php",59,{"type":144,"name":145,"callback":146,"file":147,"line":148},"filter","manage_brief_msg_posts_columns","brief_message_add_columns","inc\\admin.php",21,{"type":138,"name":150,"callback":151,"priority":68,"file":147,"line":152},"manage_posts_custom_column","brief_message_add_custom_column",36,{"type":138,"name":154,"callback":155,"priority":68,"file":147,"line":156},"restrict_manage_posts","brief_message_add_term_dropdown",52,{"type":138,"name":158,"callback":159,"file":160,"line":35},"init","brief_message_create_post_type","inc\\register_post_type.php",{"type":138,"name":162,"callback":163,"file":164,"line":165},"widgets_init","brief_message_register_widgets","inc\\widget.php",272,{"type":138,"name":167,"callback":168,"file":164,"line":169},"wp_enqueue_scripts","brief_message_front_enqueue",411,{"type":138,"name":167,"callback":171,"file":164,"line":172},"closure",439,[174,179,180],{"action":175,"nopriv":176,"callback":175,"hasNonce":177,"hasCapCheck":176,"file":178,"line":35},"brief_message_ajax_load_more",false,true,"inc\\ajax_load_more.php",{"action":175,"nopriv":177,"callback":175,"hasNonce":177,"hasCapCheck":176,"file":178,"line":32},{"action":181,"nopriv":176,"callback":181,"hasNonce":177,"hasCapCheck":176,"file":182,"line":35},"brief_message_ajax_add_content","inc\\ajax_post.php",[],[],[],3,{"dangerousFunctions":188,"sqlUsage":189,"outputEscaping":191,"fileOperations":13,"externalRequests":13,"nonceChecks":35,"capabilityChecks":13,"bundledLibraries":247},[],{"prepared":13,"raw":13,"locations":190},[],{"escaped":192,"rawEcho":193,"locations":194},70,30,[195,198,200,202,203,205,206,208,210,212,214,215,217,219,220,222,224,225,227,229,231,232,234,236,238,239,241,243,244,246],{"file":178,"line":196,"context":197},71,"raw output",{"file":182,"line":199,"context":197},47,{"file":182,"line":201,"context":197},87,{"file":164,"line":192,"context":197},{"file":164,"line":204,"context":197},72,{"file":164,"line":59,"context":197},{"file":164,"line":207,"context":197},137,{"file":164,"line":209,"context":197},156,{"file":164,"line":211,"context":197},179,{"file":164,"line":213,"context":197},180,{"file":164,"line":213,"context":197},{"file":164,"line":216,"context":197},183,{"file":164,"line":218,"context":197},184,{"file":164,"line":218,"context":197},{"file":164,"line":221,"context":197},192,{"file":164,"line":223,"context":197},201,{"file":164,"line":223,"context":197},{"file":164,"line":226,"context":197},202,{"file":164,"line":228,"context":197},213,{"file":164,"line":230,"context":197},220,{"file":164,"line":230,"context":197},{"file":164,"line":233,"context":197},221,{"file":164,"line":235,"context":197},235,{"file":164,"line":237,"context":197},236,{"file":164,"line":237,"context":197},{"file":164,"line":240,"context":197},240,{"file":164,"line":242,"context":197},241,{"file":164,"line":242,"context":197},{"file":164,"line":245,"context":197},242,{"file":164,"line":245,"context":197},[],[],{"summary":250,"deductions":251},"The 'brief-message' plugin v0.0.5 exhibits a generally good security posture based on the provided static analysis.  The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests are strong indicators of secure coding practices. Furthermore, the plugin implements nonce checks and a promising percentage of properly escaped output, which helps mitigate common cross-site scripting (XSS) vulnerabilities.\n\nHowever, a significant concern arises from the lack of capability checks for its AJAX handlers. While the plugin has a small attack surface with only three AJAX entry points, the absence of authorization checks means that any authenticated user could potentially trigger these handlers, leading to unauthorized actions if the functionality within these handlers is sensitive.  The taint analysis showing zero flows is positive, suggesting no obvious critical or high-severity vulnerabilities related to data flow were detected.  The plugin's vulnerability history is also clear, with no recorded CVEs, which is a positive sign of its current security status.  However, this clean history doesn't entirely negate the identified risk of missing capability checks.\n\nIn conclusion, the plugin demonstrates several strengths in its secure development, particularly in its handling of data and its avoidance of common plugin pitfalls. The primary weakness lies in the insufficient authorization for its AJAX endpoints. While the overall risk is currently assessed as moderate due to the lack of critical code signals and vulnerability history, this oversight could become a significant vulnerability if the AJAX actions are not inherently non-sensitive.",[252,255],{"reason":253,"points":254},"AJAX handlers without capability checks",8,{"reason":256,"points":35},"Output escaping is not 100%","2026-03-16T21:43:58.153Z",{"wat":259,"direct":266},{"assetPaths":260,"generatorPatterns":262,"scriptPaths":263,"versionParams":264},[261],"\u002Fwp-content\u002Fplugins\u002Fbrief-message\u002Fjs\u002Fedit.min.js",[],[],[265],"brief-message\u002Fjs\u002Fedit.min.js?ver=",{"cssClasses":267,"htmlComments":283,"htmlAttributes":284,"restEndpoints":290,"jsGlobals":291,"shortcodeOutput":294},[268,269,270,271,272,273,274,275,276,277,278,279,280,281,282],"bfm_wrapper","bfm_inner","bfm_no_content","bfm_load_more","bfm_load_more_button_wrap","bfm_load_more_button","bfm_spin","bfm_form","bfm_textarea_wrap","bfm_textarea","bfm_post_wrapper","bfm_post_content","bfm_post_author","bfm_post_date","bfm_post_edit",[],[285,286,287,288,289],"data-max_content","data-now_content","data-author_name","data-category","data-load_more_per_page",[],[292,293],"brief_message_load_more","brief_message_spin_icon",[],{"error":177,"url":296,"statusCode":297,"statusMessage":298,"message":298},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fbrief-message\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":32,"versions":300},[301,306,313,320,327],{"version":6,"download_url":24,"svn_tag_url":302,"released_at":26,"has_diff":176,"diff_files_changed":303,"diff_lines":26,"trac_diff_url":304,"vulnerabilities":305,"is_current":177},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbrief-message\u002Ftags\u002F0.0.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbrief-message%2Ftags%2F0.0.4&new_path=%2Fbrief-message%2Ftags%2F0.0.5",[],{"version":307,"download_url":308,"svn_tag_url":309,"released_at":26,"has_diff":176,"diff_files_changed":310,"diff_lines":26,"trac_diff_url":311,"vulnerabilities":312,"is_current":176},"0.0.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrief-message.0.0.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbrief-message\u002Ftags\u002F0.0.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbrief-message%2Ftags%2F0.0.3&new_path=%2Fbrief-message%2Ftags%2F0.0.4",[],{"version":314,"download_url":315,"svn_tag_url":316,"released_at":26,"has_diff":176,"diff_files_changed":317,"diff_lines":26,"trac_diff_url":318,"vulnerabilities":319,"is_current":176},"0.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrief-message.0.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbrief-message\u002Ftags\u002F0.0.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbrief-message%2Ftags%2F0.0.2&new_path=%2Fbrief-message%2Ftags%2F0.0.3",[],{"version":321,"download_url":322,"svn_tag_url":323,"released_at":26,"has_diff":176,"diff_files_changed":324,"diff_lines":26,"trac_diff_url":325,"vulnerabilities":326,"is_current":176},"0.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrief-message.0.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbrief-message\u002Ftags\u002F0.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fbrief-message%2Ftags%2F0.0.1&new_path=%2Fbrief-message%2Ftags%2F0.0.2",[],{"version":328,"download_url":329,"svn_tag_url":330,"released_at":26,"has_diff":176,"diff_files_changed":331,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":332,"is_current":176},"0.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrief-message.0.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fbrief-message\u002Ftags\u002F0.0.1\u002F",[],[]]