[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f2NR-GE16hgXlRX2m644vG2u0qhsdQlRx5nMKZi1qmSY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":13,"download_link":19,"security_score":20,"vuln_count":11,"unpatched_count":11,"last_vuln_date":21,"fetched_at":22,"vulnerabilities":23,"developer":24,"crawl_stats":21,"alternatives":31,"analysis":51,"fingerprints":106},"easy-content-analysis","Easy Content Analysis","1.0","PRESSMAN","https:\u002F\u002Fprofiles.wordpress.org\u002Fpressmaninc\u002F","\u003Cp>Easy Content Analysis enable you to analyze your own content of posts and data by the easy way.\u003Cbr \u002F>\nFor example, if you want to know how much your text make people feel positive or negative, you choose “Sentiment Analysis”, click “analyze” once and then immediately Percentages of sentiment are shown.\u003C\u002Fp>\n\u003Cp>For Analysis, this plugin is using NLP API via Rakuten Rapid API. Therefore your own API key is required to activate the features.\u003Cbr \u002F>\nThe detail about how to activate the features is described below.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CAUTION\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Currently, this is beta version and “Sentiment Analysis” is only implemented as trial.\u003C\u002Fli>\n\u003Cli>The features are available only on Block Editor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>How to activate the features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Access to https:\u002F\u002Fapi.rakuten.net\u002F.\u003C\u002Fli>\n\u003Cli>Sign up and get your account.\u003C\u002Fli>\n\u003Cli>Activate “Easy Content Analysis” plugin and open the page “settings for Easy Content Analysis”. \u003C\u002Fli>\n\u003Cli>Copy your API key and paste on the text box.\u003C\u002Fli>\n\u003C\u002Fol>\n","This is the plugin that provides the easy way to analyze your own content of WordPress.",0,962,"","5.6.17","5.5","7.3",[18],"nlp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-content-analysis.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":25,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":20,"avg_security_score":27,"avg_patch_time_days":28,"trust_score":29,"computed_at":30},"pressmaninc",20,90,30,87,"2026-04-04T22:46:40.950Z",[32],{"slug":33,"name":34,"version":35,"author":36,"author_profile":37,"description":38,"short_description":39,"active_installs":11,"downloaded":40,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":41,"requires_at_least":42,"requires_php":43,"tags":44,"homepage":49,"download_link":50,"security_score":20,"vuln_count":11,"unpatched_count":11,"last_vuln_date":21,"fetched_at":22},"hey-trisha","Hey Trisha","2.1.7","Manikandan Chandran","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanikshi\u002F","\u003Cp>Hey Trisha is an intelligent AI-powered chatbot for WordPress and WooCommerce that uses OpenAI’s GPT models to understand natural language queries and provide intelligent responses. Perfect for managing your WordPress site through conversational commands.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>🤖 \u003Cstrong>Natural Language Processing\u003C\u002Fstrong> – Ask questions in plain English\u003C\u002Fli>\n\u003Cli>📊 \u003Cstrong>Database Queries\u003C\u002Fstrong> – Get data from your WordPress database using natural language\u003C\u002Fli>\n\u003Cli>🛍️ \u003Cstrong>WooCommerce Integration\u003C\u002Fstrong> – Manage products, orders, and customers\u003C\u002Fli>\n\u003Cli>✏️ \u003Cstrong>Content Management\u003C\u002Fstrong> – Create, update, and delete posts\u002Fproducts via chat\u003C\u002Fli>\n\u003Cli>🔒 \u003Cstrong>Secure\u003C\u002Fstrong> – Administrator-only access with proper authentication\u003C\u002Fli>\n\u003Cli>🌐 \u003Cstrong>Shared Hosting Compatible\u003C\u002Fstrong> – Works on any WordPress hosting environment\u003C\u002Fli>\n\u003Cli>⚡ \u003Cstrong>Fast\u003C\u002Fstrong> – Optimized for performance with smart caching\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin\u003C\u002Fli>\n\u003Cli>Configure your OpenAI API key and database credentials in settings\u003C\u002Fli>\n\u003Cli>The chatbot appears in your WordPress admin for administrators\u003C\u002Fli>\n\u003Cli>Ask questions or give commands in natural language\u003C\u002Fli>\n\u003Cli>The AI generates appropriate SQL queries or WordPress API requests\u003C\u002Fli>\n\u003Cli>Get instant, intelligent responses\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Example Queries\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>“Show me all orders from last week”\u003C\u002Fli>\n\u003Cli>“What are my top-selling products?”\u003C\u002Fli>\n\u003Cli>“Create a new post about AI technology”\u003C\u002Fli>\n\u003Cli>“Update the price of Product XYZ to $99”\u003C\u002Fli>\n\u003Cli>“How many users registered this month?”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 5.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.4.3 or higher (PHP 8.0+ recommended)\u003C\u002Fli>\n\u003Cli>MySQL 5.7 or higher\u003C\u002Fli>\n\u003Cli>OpenAI API key (\u003Ca href=\"https:\u002F\u002Fplatform.openai.com\u002F\" rel=\"nofollow ugc\">Get one here\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>For Development:\u003C\u002Fstrong> Composer (automatically handled on shared hosting)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shared Hosting Support\u003C\u002Fh4>\n\u003Cp>This plugin works seamlessly on shared hosting environments! All Laravel dependencies are pre-installed in the package. Simply:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Upload the plugin\u003C\u002Fli>\n\u003Cli>Activate it\u003C\u002Fli>\n\u003Cli>Configure your settings\u003C\u002Fli>\n\u003Cli>Start chatting!\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>No command-line access or Composer installation required on your server.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin requires an external AI service to function. All natural language query processing is handled by the HeyTrisha AI Engine.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service Provider:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Service Name: HeyTrisha AI Engine\u003Cbr \u002F>\n– Default API URL: https:\u002F\u002Fapi.heytrisha.com\u003Cbr \u002F>\n– Provider: HeyTrisha Technologies\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Purpose & Functionality:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe external service processes natural language questions and generates safe SQL queries for your WordPress database. It uses OpenAI’s GPT models to understand your questions and translate them into database queries.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What Data is Transmitted:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin sends the following information to the API service:\u003Cbr \u002F>\n– Your natural language questions (e.g., “Show me today’s orders”)\u003Cbr \u002F>\n– WordPress database schema (table structure and column names only – NO actual data)\u003Cbr \u002F>\n– WordPress site URL (for site identification and response routing)\u003Cbr \u002F>\n– API authentication key (for secure authorization)\u003Cbr \u002F>\n– OpenAI API credentials (stored securely on the API server during initial setup)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What Data is NOT Transmitted:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Customer payment information or credit card data\u003Cbr \u002F>\n– User passwords or authentication tokens\u003Cbr \u002F>\n– Actual database records or content\u003Cbr \u002F>\n– Personal identifying information (unless you specifically include it in your question)\u003Cbr \u002F>\n– WordPress admin credentials\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When Data is Transmitted:\u003C\u002Fstrong>\u003Cbr \u002F>\n– During initial plugin setup (one-time credential registration)\u003Cbr \u002F>\n– Each time you submit a question via the chatbot interface\u003Cbr \u002F>\n– When updating plugin settings\u003Cbr \u002F>\n– NO automatic or background transmissions occur\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service Terms & Privacy:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Terms of Service: https:\u002F\u002Fheytrisha.com\u002Fterms-of-service\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fheytrisha.com\u002Fprivacy-policy\u003Cbr \u002F>\n– Data Processing Agreement: Available upon request\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Self-Hosting Option:\u003C\u002Fstrong>\u003Cbr \u002F>\nAdvanced users can configure a custom API endpoint in the plugin settings to host their own instance of the HeyTrisha AI Engine. The engine source code and deployment instructions are available separately.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Required for Functionality:\u003C\u002Fstrong>\u003Cbr \u002F>\nThis external service is mandatory for the plugin to work. The plugin acts as a lightweight client that delegates all AI processing to the external service, ensuring compatibility with WordPress.org hosting requirements.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>This plugin transmits data to the HeyTrisha external service. Please review the “External Services” section above for complete details on what data is sent, when, and how it is used. Your data privacy is protected in accordance with our Privacy Policy (https:\u002F\u002Fheytrisha.com\u002Fprivacy-policy).\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, please visit:\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmahakris123\u002FHeyTrisha\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmahakris123\u002FHeyTrisha\u002Fissues\" rel=\"nofollow ugc\">Report Issues\u003C\u002Fa>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmahakris123\u002FHeyTrisha#readme\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by mahakris123\u003Cbr \u002F>\nBuilt with Laravel, React, and OpenAI\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the MIT License. See LICENSE file for details.\u003C\u002Fp>\n","AI-powered chatbot using OpenAI GPT for WordPress and WooCommerce. Natural language queries, product management, and intelligent responses.",441,"6.9.4","5.0","7.4.3",[45,46,18,47,48],"ai","chatbot","openai","woocommerce","https:\u002F\u002Fheytrisha.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhey-trisha.2.1.7.zip",{"attackSurface":52,"codeSignals":88,"taintFlows":96,"riskAssessment":97,"analyzedAt":105},{"hooks":53,"ajaxHandlers":75,"restRoutes":76,"shortcodes":85,"cronEvents":86,"entryPointCount":87,"unprotectedCount":11},[54,60,63,67,71],{"type":55,"name":56,"callback":57,"file":58,"line":59},"action","init","sidebar_plugin_register","index.php",19,{"type":55,"name":61,"callback":62,"file":58,"line":26},"enqueue_block_editor_assets","sidebar_plugin_enqueue",{"type":55,"name":64,"callback":65,"file":58,"line":66},"admin_menu","add_settings",63,{"type":55,"name":68,"callback":69,"file":58,"line":70},"admin_init","register_settings",83,{"type":55,"name":72,"callback":73,"file":58,"line":74},"rest_api_init","register_endpoint",143,[],[77],{"namespace":78,"route":79,"methods":80,"callback":82,"permissionCallback":83,"file":58,"line":84},"text-analysis\u002Fv0","\u002Fapi-key",[81],"GET","get_api_key","closure",155,[],[],1,{"dangerousFunctions":89,"sqlUsage":90,"outputEscaping":92,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":95},[],{"prepared":11,"raw":11,"locations":91},[],{"escaped":93,"rawEcho":11,"locations":94},2,[],[],[],{"summary":98,"deductions":99},"The 'easy-content-analysis' plugin version 1.0 demonstrates a strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, unescaped output, file operations, external HTTP requests, and any identified taint flows is highly commendable.  Furthermore, the plugin's known vulnerability history is clean, with no recorded CVEs, indicating a mature and secure development process up to this point.\n\nHowever, a significant concern arises from the lack of any nonce or capability checks. While the current entry points (REST API) have permission callbacks, the absence of nonces for AJAX handlers (even though there are none currently) and capability checks for REST API routes leaves potential for future vulnerabilities if the plugin evolves and new entry points are added without proper security controls. This reliance solely on REST API's built-in permission callbacks is a risk, as it assumes these callbacks will always be sufficient and correctly implemented, and leaves no room for traditional WordPress security mechanisms.\n\nIn conclusion, 'easy-content-analysis' v1.0 is currently very secure due to its clean code and lack of historical vulnerabilities. Its strengths lie in its adherence to secure coding practices regarding data handling and output. The primary weakness, and the sole area for improvement, is the complete absence of nonce and capability checks, which is a critical security best practice that should be implemented for all entry points to ensure robust protection against various attack vectors.",[100,103],{"reason":101,"points":102},"No nonce checks found",10,{"reason":104,"points":102},"No capability checks found","2026-03-17T06:06:32.284Z",{"wat":107,"direct":116},{"assetPaths":108,"generatorPatterns":110,"scriptPaths":111,"versionParams":113},[109],"\u002Fwp-content\u002Fplugins\u002Feasy-content-analysis\u002Fbuild\u002Findex.css",[],[112],"\u002Fwp-content\u002Fplugins\u002Feasy-content-analysis\u002Fbuild\u002Findex.js",[114,115],"easy-content-analysis\u002Fbuild\u002Findex.js?ver=","easy-content-analysis-style?ver=",{"cssClasses":117,"htmlComments":118,"htmlAttributes":119,"restEndpoints":121,"jsGlobals":123,"shortcodeOutput":124},[],[],[120],"name=\"eca_api_key\"",[122],"\u002Fwp-json\u002Ftext-analysis\u002Fv0\u002Fapi-key",[],[]]