WP-Safety

MD Governance Security & Risk Analysis

wordpress.org/plugins/md-governance

Easily manage block visibility and configuration in the Gutenberg editor based on user roles with MD Governance.

0 active installs v1.0 PHP + WP + Updated Unknown
block-accessblock-settingsblock-editorgutenberguser-roles
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is MD Governance Safe to Use in 2026?

Generally Safe

Score 100/100

MD Governance has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The 'md-governance' plugin version 1.0 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. Crucially, all SQL queries utilize prepared statements, and all output is properly escaped, mitigating common injection and cross-site scripting (XSS) vulnerabilities. The presence of nonce and capability checks on the single AJAX handler further strengthens its security by ensuring proper authorization and request integrity.

No critical or high-severity taint flows were identified, and the plugin has no recorded vulnerability history, suggesting a history of secure development practices. The attack surface is minimal and appears to be adequately protected. While the current analysis presents a very positive security outlook, the absence of any detected issues could also mean the analysis depth was limited or that the plugin is very simple. However, based solely on the data provided, this plugin appears to be very secure for its current version.

Vulnerabilities
None known

MD Governance Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

MD Governance Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
37 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped37 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
save_block_governance_ajax_callback (includes\classes\class-governance-block-manager.php:244)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

MD Governance Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_save_block_governanceincludes\classes\class-governance-block-manager.php:70
WordPress Hooks 16
actionadmin_menuincludes\classes\class-admin.php:65
actionadmin_enqueue_scriptsincludes\classes\class-admin.php:66
actionadmin_enqueue_scriptsincludes\classes\class-admin.php:67
actioninitincludes\classes\class-blocks.php:40
filterblock_categories_allincludes\classes\class-blocks.php:41
actionadmin_enqueue_scriptsincludes\classes\class-blocks.php:42
actionwp_enqueue_scriptsincludes\classes\class-front.php:65
actionwp_enqueue_scriptsincludes\classes\class-front.php:66
actionenqueue_block_assetsincludes\classes\class-front.php:68
filtershould_load_separate_core_block_assetsincludes\classes\class-front.php:69
actionadmin_menuincludes\classes\class-governance-block-manager.php:66
actionadmin_post_save_md_governance_blocksincludes\classes\class-governance-block-manager.php:67
actionadmin_enqueue_scriptsincludes\classes\class-governance-block-manager.php:68
filterblock_editor_settings_allincludes\classes\class-governance-block-manager.php:69
actionadmin_menuincludes\classes\class-governance-block-settings-manager.php:69
actionplugins_loadedincludes\classes\class-i18.php:56
Maintenance & Trust

MD Governance Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedUnknown
PHP min version
Downloads357

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

MD Governance Alternatives

Classic Editor

Classic Editor

classic-editor

A
100

Enables the previous "classic" editor and the old-style Edit Post screen with TinyMCE, Meta Boxes, etc. Supports all plugins that extend this screen.

9.0M No CVEs
Starter Templates – AI-Powered Templates for Elementor & Gutenberg

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

A
89

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs
Advanced Editor Tools

Advanced Editor Tools

tinymce-advanced

A
100

Extends and enhances the block editor (Gutenberg) and the classic editor (TinyMCE).

2.0M 1 CVE
Disable Gutenberg

Disable Gutenberg

disable-gutenberg

A
100

Disable Gutenberg Block Editor and restore the Classic Editor and original Edit Post screen (TinyMCE, meta boxes, etc.).

600K No CVEs
Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns

Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns

essential-blocks

B
83

Gutenberg block editor with AI. 70+ Gutenberg blocks, patterns, WooCommerce blocks, post grid, gallery, menu with Gutenberg block library.

200K 28 CVEs
Developer Profile

MD Governance Developer Profile

MULTIDOTS Inc

7 plugins · 210 total installs

93
trust score
Avg Security Score
99/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect MD Governance

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/md-governance/assets/build/admin.css/wp-content/plugins/md-governance/assets/build/admin.js
Script Paths
/wp-content/plugins/md-governance/assets/build/admin.js
Version Parameters
md-governance/assets/build/admin.css?ver=md-governance/assets/build/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
mdgv_main_wrappermdgv-feature-box-wrappermdgv-feature-boxmdgv-feature-descriptionmdgv-feature-settingmdgv-page-linkcoming_soon
Data Attributes
mdGositeConfig
JS Globals
mdGositeConfig
FAQ

Frequently Asked Questions about MD Governance