Code Prettify Security & Risk Analysis

wordpress.org/plugins/code-prettify

100% automatic code highlighting using the Prettify library. No shortcodes, no classnames, fully automatic and pure awesome.

1K active installs v1.5.1 PHP + WP 3.0+ Updated Oct 12, 2022
codehighlighthighlighterhighlightingpre
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is Code Prettify Safe to Use in 2026?

Generally Safe

Score 85/100

Code Prettify has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The static analysis of "code-prettify" v1.5.1 reveals a strong security posture with no identified vulnerabilities in its code. The plugin demonstrates excellent security practices, exhibiting zero attack surface points, no dangerous functions, and a complete absence of SQL injection risks due to the exclusive use of prepared statements. Furthermore, all output is properly escaped, and there are no file operations or external HTTP requests, which significantly reduces the potential for various attack vectors. Taint analysis also shows no problematic data flows, reinforcing the impression of a well-secured codebase.

The vulnerability history is equally impressive, with no recorded CVEs, meaning no known security flaws have been publicly disclosed for this plugin version. This lack of historical vulnerabilities, combined with the robust static analysis results, suggests a high level of developer diligence in maintaining a secure product. The plugin appears to prioritize secure coding practices and has a track record that supports its reliability from a security perspective.

In conclusion, "code-prettify" v1.5.1 presents a very low security risk. Its code analysis and vulnerability history are exemplary, indicating a commitment to security by its developers. The absence of any identified vulnerabilities, combined with best practices in code development like prepared statements and output escaping, makes this plugin a secure choice.

Vulnerabilities
None known

Code Prettify Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Code Prettify Release Timeline

v1.3.4
v0.4
v0.3
v0.2
v0.1
Code Analysis
Analyzed Mar 17, 2026

Code Prettify Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
1 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped1 total outputs
Attack Surface

Code Prettify Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 2
actionwp_enqueue_scriptscode-prettify.php:14
actionwp_headcode-prettify.php:55
Maintenance & Trust

Code Prettify Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11
Last updatedOct 12, 2022
PHP min version
Downloads46K

Community Trust

Rating100/100
Number of ratings18
Active installs1K
Developer Profile

Code Prettify Developer Profile

volca

3 plugins · 1K total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Code Prettify

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/code-prettify/prettify/run_prettify.js/wp-content/plugins/code-prettify/prettify/prettify.css
Script Paths
/wp-content/plugins/code-prettify/prettify/run_prettify.js
Version Parameters
ver=1.4.0

HTML / DOM Fingerprints

JS Globals
codePrettifyLoaderBaseUrl
FAQ

Frequently Asked Questions about Code Prettify