[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fblJttXv_I5vHI3efyR3O7a6MhxH2rHOMzLCneqBXVQ4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":21,"download_link":22,"security_score":23,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":37,"fingerprints":115},"easy-symlinks","Easy Symlinks","1.0.3","Carl Alberto","https:\u002F\u002Fprofiles.wordpress.org\u002Fcarl-alberto\u002F","\u003Cp>Easy symlinking tool in WP. Best used for non-command line users.\u003C\u002Fp>\n\u003Cp>Add symlinks by going to your WP admin dashboard > Settings > Easy Symlinks\u003C\u002Fp>\n\u003Cp>You can refer here for the common symlink configurations: https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Flist-of-common-symlinks-in-pantheon\u003C\u002Fp>\n\u003Cp>This plugin can only track symlinks created within the application and excludes symlinks created from the filesystem and command line. Best used in Pantheon dev or multidev environments in SFTP mode.\u003C\u002Fp>\n","Easy symlinking tool in WP. Best used for non-command line users. This can only track symlinks created within the application and excludes symlinks cr …",70,4184,100,3,"2022-10-24T13:19:00.000Z","6.0.11","4.9","",[20],"symlink","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-symlinks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-symlinks.1.0.3.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"carl-alberto",6,400,88,30,86,"2026-04-05T03:56:50.412Z",[],{"attackSurface":38,"codeSignals":74,"taintFlows":83,"riskAssessment":111,"analyzedAt":114},{"hooks":39,"ajaxHandlers":70,"restRoutes":71,"shortcodes":72,"cronEvents":73,"entryPointCount":24,"unprotectedCount":24},[40,47,51,55,60,63,67],{"type":41,"name":42,"callback":43,"priority":44,"file":45,"line":46},"action","init","init_settings",11,"includes\\class-easy-symlinks-settings.php",74,{"type":41,"name":48,"callback":49,"file":45,"line":50},"admin_init","register_settings",77,{"type":41,"name":52,"callback":53,"file":45,"line":54},"admin_menu","add_menu_item",80,{"type":41,"name":56,"callback":56,"priority":57,"file":58,"line":59},"admin_enqueue_scripts",10,"includes\\class-easy-symlinks.php",254,{"type":41,"name":42,"callback":61,"priority":24,"file":58,"line":62},"load_localisation",286,{"type":41,"name":48,"callback":64,"priority":65,"file":58,"line":66},"savenew",99999999,288,{"type":41,"name":48,"callback":68,"priority":65,"file":58,"line":69},"deletelink",289,[],[],[],[],{"dangerousFunctions":75,"sqlUsage":76,"outputEscaping":78,"fileOperations":24,"externalRequests":24,"nonceChecks":81,"capabilityChecks":24,"bundledLibraries":82},[],{"prepared":24,"raw":24,"locations":77},[],{"escaped":79,"rawEcho":24,"locations":80},42,[],4,[],[84,103],{"entryPoint":85,"graph":86,"unsanitizedCount":24,"severity":102},"settings_page (includes\\class-easy-symlinks-settings.php:318)",{"nodes":87,"edges":99},[88,93],{"id":89,"type":90,"label":91,"file":45,"line":92},"n0","source","$_GET",359,{"id":94,"type":95,"label":96,"file":45,"line":97,"wp_function":98},"n1","sink","echo() [XSS]",414,"echo",[100],{"from":89,"to":94,"sanitized":101},true,"low",{"entryPoint":104,"graph":105,"unsanitizedCount":24,"severity":102},"\u003Cclass-easy-symlinks-settings> (includes\\class-easy-symlinks-settings.php:0)",{"nodes":106,"edges":109},[107,108],{"id":89,"type":90,"label":91,"file":45,"line":92},{"id":94,"type":95,"label":96,"file":45,"line":97,"wp_function":98},[110],{"from":89,"to":94,"sanitized":101},{"summary":112,"deductions":113},"The 'easy-symlinks' v1.0.3 plugin exhibits an exceptionally strong security posture based on the provided static analysis and vulnerability history. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. Furthermore, the code analysis reveals a complete absence of dangerous functions, file operations, and external HTTP requests. The 100% proper output escaping and the use of prepared statements for any potential SQL queries (though none were found) are excellent security practices. The presence of four nonce checks indicates a proactive approach to preventing CSRF attacks, though the lack of capability checks is a minor point for consideration in a broader context. The taint analysis found no unsanitized paths, further bolstering confidence in the plugin's security. The complete lack of recorded CVEs, both historically and currently, suggests a mature and well-maintained codebase. The plugin's strengths lie in its minimal attack surface and robust adherence to secure coding principles. The primary weakness, if one can call it that, is the complete lack of documented functionality that would require capability checks, suggesting it might be a very niche or utility-focused plugin. Overall, this plugin appears to be highly secure and poses a minimal risk.",[],"2026-03-16T21:31:56.990Z",{"wat":116,"direct":123},{"assetPaths":117,"generatorPatterns":119,"scriptPaths":120,"versionParams":121},[118],"\u002Fwp-content\u002Fplugins\u002Feasy-symlinks\u002Fassets\u002Fjs\u002Fadmin.js",[],[118],[122],"easy-symlinks\u002Fassets\u002Fjs\u002Fadmin.js?ver=",{"cssClasses":124,"htmlComments":125,"htmlAttributes":126,"restEndpoints":127,"jsGlobals":128,"shortcodeOutput":129},[],[],[],[],[],[]]