[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$foLl61smxbXIxmPUFk0Rd5XK5w_aMVRXnSFYc4b7YKII":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":116,"fingerprints":141},"json-rest-api-subscriptions","JSON REST API Subscriptions","1.0","Taylor Lovett","https:\u002F\u002Fprofiles.wordpress.org\u002Ftlovett1\u002F","\u003Cp>If you are publishing content and have users\u002Fwebsites digesting your content, you may have been faced with the problem: how do I get updates to users immediately? In the past users\u002Fwebsites have subscribed to feeds or used techniques like “polling” to constantly ping your site for new content. Both these techniques are cumbersome and old fashioned. JSON REST API Subscriptions creates new API endpoints to allow people to subscribe to new content, content updates, and content deletes across general post types as well as single pieces of content.\u003C\u002Fp>\n\u003Cp>Requires \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frest-api\u002F\" rel=\"ugc\">JSON REST API 2.0beta12+\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For details on the plugin and extended usage\u002Finstallation documentation, please visit \u003Ca href=\"http:\u002F\u002Fgithub.com\u002Ftlovett1\u002Fjson-rest-api-subscriptions\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Configuring and Using the Plugin\u003C\u002Fh3>\n\u003Cp>Please refer to \u003Ca href=\"http:\u002F\u002Fgithub.com\u002Ftlovett1\u002Fjson-rest-api-subscriptions\" rel=\"nofollow ugc\">Github\u003C\u002Fa> for detailed configuration instructions.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For full documentation, questions, feature requests, and support concerning JSON REST API Subscriptions, please refer to \u003Ca href=\"http:\u002F\u002Fgithub.com\u002Ftlovett1\u002Fjson-rest-api-subscriptions\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n","Enable subscriptions to posts, pages, and custom post types. Users can securely subscribe via simple API routes to created\u002Fupdated\u002Fdeleted content.",10,2671,0,"","4.8.28","4.4",[18,19,20,21,22],"api-webhooks","json-rest-api","rest-api","webhooks","wp-api","http:\u002F\u002Fwww.taylorlovett.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjson-rest-api-subscriptions.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"tlovett1",9,8320,88,3845,71,"2026-04-04T07:00:10.069Z",[38,60,76,90,102],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":25,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":14,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":59},"wp-api-menus","WP API Menus","1.3.2","Fulvio Notarstefano","https:\u002F\u002Fprofiles.wordpress.org\u002Fnekojira\u002F","\u003Cp>This plugin extends the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjson-rest-api\u002F\" rel=\"ugc\">WordPress JSON REST API\u003C\u002Fa> with new routes for WordPress registered menus\u003C\u002Fp>\n\u003Cp>The new routes available will be:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>\u002Fmenus\u003C\u002Fcode> list of every registered menu.\u003C\u002Fli>\n\u003Cli>\u003Ccode>\u002Fmenus\u002F\u003Cid>\u003C\u002Fcode> data for a specific menu.\u003C\u002Fli>\n\u003Cli>\u003Ccode>\u002Fmenu-locations\u003C\u002Fcode> list of all registered theme locations.\u003C\u002Fli>\n\u003Cli>\u003Ccode>\u002Fmenu-locations\u002F\u003Clocation>\u003C\u002Fcode> data for menu in specified menu in theme location.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Currently, the \u003Ccode>menu-locations\u002F\u003Clocation>\u003C\u002Fcode> route for individual menus will return a tree with full menu hierarchy, with correct menu item order and listing children for each menu item. The \u003Ccode>menus\u002F\u003Cid>\u003C\u002Fcode> route will output menu details and a flat array of menu items. Item order or if each item has a parent will be indicated in each item attributes, but this route won’t output items as a tree.\u003C\u002Fp>\n\u003Cp>You can alter the data arrangement of each individual menu items and children using the filter hook \u003Ccode>json_menus_format_menu_item\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>An important note on WP API V2:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In V1 the routes are located by default at \u003Ccode>wp-json\u002Fmenus\u002F\u003C\u002Fcode> etc.\u003C\u002Fp>\n\u003Cp>In V2 the routes by default are at \u003Ccode>wp-json\u002Fwp-api-menus\u002Fv2\u002F\u003C\u002Fcode> (e.g. \u003Ccode>wp-json\u002Fwp-api-menus\u002Fv2\u002Fmenus\u002F\u003C\u002Fcode>, etc.) since V2 encourages prefixing and version namespacing.\u003C\u002Fp>\n","Extends WordPress WP REST API with new routes pointing to WordPress menus.",2000,107511,8,"2020-08-18T07:21:00.000Z","5.5.0","3.6.0",[53,19,54,22,55],"json","menus","wp-rest-api","https:\u002F\u002Fgithub.com\u002Fnekojira\u002Fwp-api-menus","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-api-menus.1.3.2.zip",85,"2026-03-15T15:16:48.613Z",{"slug":61,"name":62,"version":6,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":13,"num_ratings":13,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":74,"download_link":75,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":59},"wp-rest-api-menus","WP-REST-API Menus","jcdev518","https:\u002F\u002Fprofiles.wordpress.org\u002Fjcdev518\u002F","\u003Cp>This plugin adds “routes” or “endpoints” to WP REST API that allows for retrieval of\u003Cbr \u002F>\nmenu data as JSON.\u003C\u002Fp>\n\u003Cp>Updated port of “WP-REST-API V2 Menus” by Claudio La Barbera (http:\u002F\u002Fwww.claudiolabarbera.com)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Get all registered menus:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>GET \u002Fwp-menus\u002Fv1\u002Fmenus\nhttps:\u002F\u002Fyourwpsite.com\u002Fwp-json\u002Fwp-menus\u002Fv1\u002Fmenus\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Get menu data as JSON from menu slug:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>GET \u002Fwp-menus\u002Fv1\u002Fmenus\u002F{slug}\nhttps:\u002F\u002Fyourwpsite.com\u002Fwp-json\u002Fwp-menus\u002Fv1\u002Fmenus\u002F{slug}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Gets the contents of a registered menu by its “slug”.\u003C\u002Fp>\n\u003Cp>When assigning a menu a location in \u002Fwp-admin\u002Fnav-menus.php?action=locations\u003Cbr \u002F>\nthe slug is the name of the menu in lowercase and without any spaces like a post slug.\u003C\u002Fp>\n\u003Cp>If your menu name is Main Menu:\u003Cbr \u002F>\nhttps:\u002F\u002Fyourwpsite.com\u002Fwp-json\u002Fmenus\u002Fv1\u002Fwp-menus\u002Fmain-menu\u003C\u002Fp>\n","Adds menu endpoints to core WP REST API.",70,2395,"2018-03-26T22:33:00.000Z","4.9.29","4.7.0","5.6",[53,19,54,22,55],"https:\u002F\u002Fwww.amorphouswebsolutions.com\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rest-api-menus.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":13,"num_ratings":13,"last_updated":85,"tested_up_to":86,"requires_at_least":51,"requires_php":14,"tags":87,"homepage":14,"download_link":89,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":59},"wp-api-v2-woocommerce-endpoints","WP API (V2) WooCommerce endpoints","1.0.2","Oleg Kostin","https:\u002F\u002Fprofiles.wordpress.org\u002Foleg2tor\u002F","\u003Cp>This plugin extends the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frest-api\u002F\" rel=\"ugc\">WordPress JSON REST API\u003C\u002Fa> with new endpoints for WooCommerce (is_shop, is_cart, is_checkout, is_account_page) page functions\u003C\u002Fp>\n","Extends WordPress WP REST API (V2) with new endpoints pointing to WooCommerce page functions (is_shop, is_cart, is_checkout, is_account_page).",1916,"2016-04-26T00:10:00.000Z","4.5.33",[53,19,88,22,55],"woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-api-v2-woocommerce-endpoints.zip",{"slug":91,"name":92,"version":93,"author":80,"author_profile":81,"description":94,"short_description":95,"active_installs":11,"downloaded":96,"rating":25,"num_ratings":97,"last_updated":98,"tested_up_to":86,"requires_at_least":51,"requires_php":14,"tags":99,"homepage":14,"download_link":101,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":59},"wp-rest-api-options","WP API Options","1.0.1","\u003Cp>This plugin extends the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frest-api\u002F\" rel=\"ugc\">WordPress JSON REST API\u003C\u002Fa> with new routes for WordPress options\u003C\u002Fp>\n","Extends WordPress WP REST API with new routes pointing to WordPress options.",2610,1,"2016-05-09T14:08:00.000Z",[53,19,100,22,55],"options","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rest-api-options.zip",{"slug":103,"name":104,"version":93,"author":80,"author_profile":81,"description":105,"short_description":106,"active_installs":11,"downloaded":107,"rating":13,"num_ratings":13,"last_updated":108,"tested_up_to":109,"requires_at_least":51,"requires_php":14,"tags":110,"homepage":14,"download_link":115,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":59},"wp-rest-api-v2-isfront","WP API (V2) isFront","\u003Cp>This plugin extends the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frest-api\u002F\" rel=\"ugc\">WordPress JSON REST API\u003C\u002Fa> with new endpoints for WordPress isFront pages attribute\u003C\u002Fp>\n","Extends WordPress WP REST API (V2) with new endpoints pointing to WordPress isFront function.",1293,"2016-03-24T22:43:00.000Z","4.4.34",[111,112,113,53,19,114,22,55],"api","is-front","isfront","rest","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rest-api-v2-isfront.zip",{"attackSurface":117,"codeSignals":129,"taintFlows":136,"riskAssessment":137,"analyzedAt":140},{"hooks":118,"ajaxHandlers":125,"restRoutes":126,"shortcodes":127,"cronEvents":128,"entryPointCount":13,"unprotectedCount":13},[119],{"type":120,"name":121,"callback":122,"file":123,"line":124},"action","rest_api_init","jras_register_routes","plugin.php",33,[],[],[],[],{"dangerousFunctions":130,"sqlUsage":131,"outputEscaping":133,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":135},[],{"prepared":13,"raw":13,"locations":132},[],{"escaped":13,"rawEcho":13,"locations":134},[],[],[],{"summary":138,"deductions":139},"The 'json-rest-api-subscriptions' plugin v1.0 exhibits a strong security posture based on the provided static analysis.  The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly minimizes the attack surface.  Furthermore, the code demonstrates good practices with 100% of SQL queries utilizing prepared statements and 100% of outputs being properly escaped.  The lack of identified dangerous functions, file operations, external HTTP requests, and taint analysis flows all contribute to a low-risk profile from a code perspective.  The plugin's vulnerability history is also clean, with no recorded CVEs, further bolstering confidence in its security.  While the lack of nonce and capability checks might seem like a concern, it's mitigated by the fact that there are no entry points that would require such checks. The plugin's strength lies in its minimal functionality and lack of exposed endpoints, which inherently reduces potential vulnerabilities.  However, the lack of any detected entry points (0 total, 0 unprotected) and associated checks means it's difficult to definitively assess how it would handle authenticated and unauthenticated access if it were to be expanded in the future.  The current version appears secure due to its limited scope and robust internal coding standards.",[],"2026-03-16T23:20:49.265Z",{"wat":142,"direct":147},{"assetPaths":143,"generatorPatterns":144,"scriptPaths":145,"versionParams":146},[],[],[],[],{"cssClasses":148,"htmlComments":149,"htmlAttributes":150,"restEndpoints":151,"jsGlobals":154,"shortcodeOutput":155},[],[],[],[152,153],"\u002Fwp\u002Fv2\u002Fposts","\u002Fwp\u002Fv2\u002Fpages",[],[]]