[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fWdTzAdiHoa3LXfvWMEgzhoHESRH4r5zBlWINxw-EqKg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":127,"fingerprints":167},"heic-to-jpeg","HEIC to JPEG","1.0.1","crissyfieldgmbh","https:\u002F\u002Fprofiles.wordpress.org\u002Fcrissyfieldgmbh\u002F","\u003Cp>Convert HEIC images to JPEG format when upload to the Media Library.\u003C\u002Fp>\n\u003Cp>HEIC is the file format name Apple has chosen for the “High Efficiency Image Format” (HEIF) standard. HEIF offers better compression than JPEG, so it takes up less storage space, while maintaining the same visual quality. The format has been used by default since iOS 11, i.e. for images sent through the Messages app or when exporting.\u003C\u002Fp>\n\u003Cp>This plugin adds HEIC\u002FHEIF support to WordPress by transparently converting the uploaded image to JPEG.\u003C\u002Fp>\n\u003Cp>Note: ImageMagick 7.0.8-46 or above is required to be installed on the server.\u003C\u002Fp>\n\u003Cp>Check \u003Ca href=\"\u002Fplugins\u002Fheic-support\u002F\" rel=\"nofollow ugc\">HEIC Support\u003C\u002Fa> for an alternative solution.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.flaticon.com\u002Ffree-icons\u002Fiphone\" rel=\"nofollow ugc\">Iphone icon created by Smashicons\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.flaticon.com\u002Ffree-icons\u002Fphoto\" rel=\"nofollow ugc\">Photos icon created by Freepik\u003C\u002Fa>.\u003C\u002Fp>\n","Convert HEIC images to JPEG format when upload to the Media Library.",1000,7953,60,2,"2023-04-05T19:33:00.000Z","6.2.9","6.0","",[20,21,22,23],"heic","image","jpeg","media","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fheic-to-jpeg.1.0.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-04T15:36:16.710Z",[36,56,77,95,111],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":26,"num_ratings":26,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":53,"download_link":54,"security_score":55,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"image-quality","Image Quality","1.5.2","Gagan Deep Singh","https:\u002F\u002Fprofiles.wordpress.org\u002Fgagan0123\u002F","\u003Cp>Sometimes you may want the images on your blog\u002Fsite to be pixel perfect, while sometimes you may want them to be compressed to save space on the server.\u003C\u002Fp>\n\u003Cp>This plugin allows you to select the quality of the thumbnail images generated by WordPress, as easy as that. Just go to Media Settings page and modify the Image Quality setting.\u003C\u002Fp>\n\u003Cp>Plugin only works for new uploads, but in case you want to modify the thumbnails generated earlier, you can either use\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fregenerate-thumbnails\u002F\" rel=\"ugc\">Regenerate Thumbnails\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>or if you are familiar with WP-CLI, then you can use this command to regenerate\u003C\u002Fp>\n\u003Cpre>\u003Ccode>wp media regenerate\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>P.S. It does not change the quality of the original image that you upload,\u003Cbr \u002F>\nbut only changes the quality of the thumbnails WordPress generates from that image.\u003C\u002Fp>\n","Lets you adjust the quality of image thumbnails that WordPress generates.",400,24867,"2026-02-10T08:16:00.000Z","6.9.4","2.8","5.6",[51,21,22,23,52],"compression","thumbnails","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fimage-quality\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fimage-quality.1.5.2.zip",100,{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":75,"download_link":76,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"compress-png-for-wp","Compress PNG for WP","1.3.5","geckodesigns","https:\u002F\u002Fprofiles.wordpress.org\u002Fgeckodesigns\u002F","\u003Cp>Compress PNG for WP allows users to shrink JPEG\u002FPNG files using the TinyPNG API. Files can be automatically resized when uploaded as well as manually resized in the Media Library.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>v1.3 Added Support for JPEG Compression via TinyJPEG, Works the same way as PNG files.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How to use Compress PNG for WP\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Visit ‘Settings > Media’ from the admin dashboard.\u003C\u002Fli>\n\u003Cli>Insert your TinyPNG API key and save changes. If you do not yet have a key, get one from \u003Ca href=\"https:\u002F\u002Ftinypng.com\u002Fdevelopers\" rel=\"nofollow ugc\">TinyPNG\u003C\u002Fa>. You can also select to auto compress on upload as well as which additional image sizes will be compressed from this page.\u003C\u002Fli>\n\u003Cli>Start uploading JPEG\u002FPNG files and they will be automatically resized (if you have chosen to allow auto shrinking on upload in the ‘Settings > Media’ page).\u003C\u002Fli>\n\u003Cli>Visit ‘Media > Library’ to see information on your resized files or to manually resize existing JPEG\u002FPNG files.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>For more information view our \u003Ca href=\"https:\u002F\u002Fwww.geckodesigns.com\u002Fservices\u002Fwebsite-design\u002Fwebsite-plugins\u002Fcompress-png-plugin-wordpress\u002F\" rel=\"nofollow ugc\">Compress PNG for WP page\u003C\u002Fa>.\u003C\u002Fp>\n","Compress PNG files using the TinyPNG API.",200,18648,90,13,"2015-01-21T19:58:00.000Z","4.1.42","3.0.1",[21,72,23,73,74],"images","tinyjpeg","tinypng","http:\u002F\u002Fwww.geckodesigns.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcompress-png-for-wp.1.3.5.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":64,"downloaded":85,"rating":55,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":18,"download_link":93,"security_score":94,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"disable-webp-by-default","Disable WebP By Default","0.7.0","David Baumwald","https:\u002F\u002Fprofiles.wordpress.org\u002Fdavidbaumwald\u002F","\u003Cp>*** 2022-09-12 UPDATE ***\u003Cbr \u002F>\n@matt published a post and codified a final decision that \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2022\u002F09\u002F11\u002Fwebp-in-core-for-6-1\u002F\" rel=\"nofollow ugc\">WebP by default would not be coming to WordPress Core in version 6.1\u003C\u002Fa>.  That being the case, this plugin will not be necessary for users to prevent WebP generation by default as part of the Core upload process.\u003C\u002Fp>\n\u003Cp>Proposed to be included in WordPress 6.0 is a new feature to generate and use webp images by default.  Specifically, when an image is uploaded, a WebP version of every image subsize is created.  According to \u003Ca href=\"https:\u002F\u002Fmake.wordpress.org\u002Fcore\u002F2022\u002F03\u002F28\u002Fenabling-webp-by-default\u002F\" rel=\"nofollow ugc\">the proposal\u003C\u002Fa>, one downside is that generating WebP versions along with the original JPEGs will “use an additional ~70% of the storage space to store both file types.”  Although this is hugely beneficial to most websites and, more importantly, their visitors, some site owners may not be immediately able to increase the size of their storage to accommodate the additional files.  For more information, see the proposal or \u003Ca href=\"https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F55443\" rel=\"nofollow ugc\">the Trac ticket\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>To help site owners manage the transition, this plugin adds a setting under Settings -> Media to either enable or disable WebP creation on the initial upload of JPEGs.  For Multisite installations, the plugin can be activated network-wide or on individual sites.\u003C\u002Fp>\n\u003Cp>*** 2022-07-22 UPDATE ***\u003Cbr \u002F>\nAlthough the original implementation was not merged in 6.0 due to community feedback, changeset 53751(https:\u002F\u002Fcore.trac.wordpress.org\u002Fchangeset\u002F53751) merged an updated implementation that addresses some(but not all) concerns from the community. This merge will be part of the 6.1 release, unless further changes are needed.  Some site owners may not be able to immediately cope with doubling their required storage allotment with their host, so the original goal of this plugin remains.  The code has been updated to disable WebP creation on upload globally.  There is a new ticket discussing the possibility of making this feature into a setting(see https:\u002F\u002Fcore.trac.wordpress.org\u002Fticket\u002F56263).  However, given WordPress’s core philosphy of “Decisions, Not Options”, it’s unlikely to proceed.\u003C\u002Fp>\n","A small plugin to control WebP image creation when JPEG images are uploaded.",3622,5,"2025-02-06T14:30:00.000Z","6.4.8","5.8","7.0",[21,22,23,92],"webp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-webp-by-default.zip",92,{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":32,"downloaded":103,"rating":26,"num_ratings":26,"last_updated":104,"tested_up_to":105,"requires_at_least":89,"requires_php":106,"tags":107,"homepage":109,"download_link":110,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"disable-webp","Disable WebP","1.0.3","URBAN BASE","https:\u002F\u002Fprofiles.wordpress.org\u002Furbanbase\u002F","\u003Cp>In WordPress 6.1, a WebP version is generated by default when an image is uploaded and displayed in the frontend.\u003C\u002Fp>\n\u003Cp>The WebP format generally compresses the images well.\u003C\u002Fp>\n\u003Cp>But in certain cases the WebP version can be larger than the original image.\u003C\u002Fp>\n\u003Cp>If WebP causes problems on your website, you can disable this function here.\u003C\u002Fp>\n","A small plugin to disable the new WebP standard in the settings.",1499,"2022-11-04T09:27:00.000Z","6.1.10","7.2",[108,21,22,23,92],"disable","https:\u002F\u002Fgithub.com\u002Fmariojacob\u002Fdisable-webp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-webp.1.0.3.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":32,"downloaded":119,"rating":55,"num_ratings":31,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":125,"download_link":126,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"exif-viewer","EXIF Viewer","0.1","veleno","https:\u002F\u002Fprofiles.wordpress.org\u002Fveleno\u002F","\u003Cp>EXIF Viewer displays EXIF data in Edit Media Screen, appends EXIF data to JPEG media page content, enables media archives.\u003Cbr \u002F>\nIn order to show image archives, add the following query string to your website URLs:\u003Cbr \u002F>\n?post_type=attachment\u003C\u002Fp>\n","EXIF Viewer displays EXIF data in Edit Media Screen, appends EXIF data to JPEG media page content, enables media archives",1953,"2017-07-03T19:27:00.000Z","4.8.28","4.8",[124,72,22,23],"exif","https:\u002F\u002Fkinsta.com\u002Fblog\u002Fwordpress-media-library-hacks\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexif-viewer.zip",{"attackSurface":128,"codeSignals":149,"taintFlows":156,"riskAssessment":157,"analyzedAt":166},{"hooks":129,"ajaxHandlers":145,"restRoutes":146,"shortcodes":147,"cronEvents":148,"entryPointCount":26,"unprotectedCount":26},[130,137,141],{"type":131,"name":132,"callback":133,"priority":134,"file":135,"line":136},"filter","upload_mimes","add_heic_upload_mime",10,"main.php",19,{"type":131,"name":138,"callback":139,"priority":134,"file":135,"line":140},"plupload_default_settings","allow_heic_plupload_init",27,{"type":131,"name":142,"callback":143,"priority":134,"file":135,"line":144},"wp_handle_upload_prefilter","resize_heic_upload_prefilter",62,[],[],[],[],{"dangerousFunctions":150,"sqlUsage":151,"outputEscaping":153,"fileOperations":31,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":155},[],{"prepared":26,"raw":26,"locations":152},[],{"escaped":26,"rawEcho":26,"locations":154},[],[],[],{"summary":158,"deductions":159},"Based on the provided static analysis and vulnerability history, the 'heic-to-jpeg' plugin version 1.0.1 presents a generally strong security posture.  The code analysis shows an absence of common risky patterns such as dangerous functions, raw SQL queries, unescaped output, and external HTTP requests.  Furthermore, the taint analysis indicates no identified flows with unsanitized paths, which is a significant positive indicator.  The plugin also lacks a substantial attack surface, with no registered AJAX handlers, REST API routes, shortcodes, or cron events, and importantly, all entry points appear to be protected by default.\n\nThe vulnerability history is also completely clean, with no known CVEs recorded, indicating a lack of past security incidents.  This, combined with the positive static analysis findings, suggests the developers are following good security practices.  However, the complete absence of nonce checks and capability checks is a notable weakness. While the attack surface is currently zero, if any new entry points are introduced in future versions without proper authorization checks, it could become a significant risk.  The presence of file operations, while not flagged as an issue here, warrants attention as it can be a vector for vulnerabilities if not handled meticulously.",[160,162,164],{"reason":161,"points":86},"Missing nonce checks",{"reason":163,"points":86},"Missing capability checks",{"reason":165,"points":14},"File operations present","2026-03-16T19:05:02.085Z",{"wat":168,"direct":173},{"assetPaths":169,"generatorPatterns":170,"scriptPaths":171,"versionParams":172},[],[],[],[],{"cssClasses":174,"htmlComments":175,"htmlAttributes":176,"restEndpoints":177,"jsGlobals":178,"shortcodeOutput":179},[],[],[],[],[],[]]