NewHeap Azure Logic apps Security & Risk Analysis

wordpress.org/plugins/newheap-azure-logic-apps

This plugin makes it possible to setup multiple "http request trigger" (When a HTTP-request is received) integrations to one or more Azure e …

0 active installs v1.0.0 PHP + WP 5.3.2+ Updated Feb 19, 2020
azureazure-logic-appslogic-appsms-appsms-logic
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is NewHeap Azure Logic apps Safe to Use in 2026?

Generally Safe

Score 85/100

NewHeap Azure Logic apps has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The "newheap-azure-logic-apps" v1.0.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of any known vulnerabilities, CVEs, or detected taint flows, coupled with the fact that all SQL queries utilize prepared statements, are significant strengths. Furthermore, the presence of nonce and capability checks, and the lack of file operations or bundled libraries, indicate good development practices.

However, a notable concern arises from the low percentage (20%) of properly escaped output. With 66 total outputs analyzed, this means a substantial number of them are likely unescaped, posing a risk for potential cross-site scripting (XSS) vulnerabilities, especially if user-supplied data is directly rendered in the output. While the attack surface is currently zero, this low output escaping rate is the primary area of concern in an otherwise well-secured plugin.

Overall, the plugin demonstrates a commitment to secure coding by avoiding common pitfalls like raw SQL and unauthorized entry points. The vulnerability history being entirely clean is a positive indicator of past security diligence. The main recommendation would be to address the unescaped output issue to further harden the plugin against potential client-side attacks.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

NewHeap Azure Logic apps Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

NewHeap Azure Logic apps Release Timeline

No version history available.
Code Analysis
Analyzed Mar 17, 2026

NewHeap Azure Logic apps Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
53
13 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
2
Bundled Libraries
0

Output Escaping

20% escaped66 total outputs
Attack Surface

NewHeap Azure Logic apps Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 28
actiondelete_attachmentApplication\Event\CoreEvent\Attachment\AttachmentDeletedEvent.php:57
actionedit_attachmentApplication\Event\CoreEvent\Attachment\AttachmentModifiedEvent.php:56
actionadd_attachmentApplication\Event\CoreEvent\Attachment\AttachmentNewEvent.php:56
actionwp_insert_commentApplication\Event\CoreEvent\Post\CommentNewEvent.php:56
actiontransition_comment_statusApplication\Event\CoreEvent\Post\CommentStatusChangedEvent.php:56
actionwp_insert_postApplication\Event\CoreEvent\Post\PostCreatedEvent.php:55
actiondeleted_postApplication\Event\CoreEvent\Post\PostDeletedEvent.php:55
actiontrash_postApplication\Event\CoreEvent\Post\PostThrashedEvent.php:55
actionpost_updatedApplication\Event\CoreEvent\Post\PostUpdatedEvent.php:56
actionactivated_pluginApplication\Event\CoreEvent\System\PluginActivatedEvent.php:62
actiondeactivated_pluginApplication\Event\CoreEvent\System\PluginDeactivatedEvent.php:62
actiondeleted_pluginApplication\Event\CoreEvent\System\PluginDeletedEvent.php:57
filterpre_set_site_transient_update_pluginsApplication\Event\CoreEvent\System\PluginUpdateAvailableEvent.php:56
actiondelete_userApplication\Event\CoreEvent\User\UserDeletedEvent.php:57
actionwp_login_failedApplication\Event\CoreEvent\User\UserLoginFailedEvent.php:64
actionwp_loginApplication\Event\CoreEvent\User\UserLoginSuccessfulEvent.php:64
actionuser_registerApplication\Event\CoreEvent\User\UserNewEvent.php:57
actionset_user_roleApplication\Event\CoreEvent\User\UserRoleChangedEvent.php:57
actionprofile_updateApplication\Event\CoreEvent\User\UserUpdatedEvent.php:57
actionadmin_enqueue_scriptsApplication\NHAzureLogicAppsModule.php:235
actionwp_enqueue_scriptsApplication\NHAzureLogicAppsModule.php:240
actionadmin_print_stylesApplication\NHAzureLogicAppsModule.php:247
actioninitApplication\PostType\LogicAppIntegrationPostType.php:27
actionadmin_menuApplication\PostType\LogicAppIntegrationPostType.php:28
filterpost_row_actionsApplication\PostType\LogicAppIntegrationPostType.php:31
actionbefore_delete_postApplication\PostType\LogicAppIntegrationPostType.php:34
actionsave_postApplication\PostType\LogicAppIntegrationPostType.php:106
actionadd_meta_boxesApplication\PostType\LogicAppIntegrationPostType.php:108
Maintenance & Trust

NewHeap Azure Logic apps Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21
Last updatedFeb 19, 2020
PHP min version
Downloads918

Community Trust

Rating0/100
Number of ratings0
Active installs0
Developer Profile

NewHeap Azure Logic apps Developer Profile

NewHeap

2 plugins · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect NewHeap Azure Logic apps

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/newheap-azure-logic-apps/Application/assets/js/nhala-settings-page.js/wp-content/plugins/newheap-azure-logic-apps/Application/assets/css/nhala-settings-page.css/wp-content/plugins/newheap-azure-logic-apps/Application/assets/js/nhala-common.js
Version Parameters
newheap-azure-logic-apps/Application/assets/js/nhala-settings-page.js?ver=newheap-azure-logic-apps/Application/assets/css/nhala-settings-page.css?ver=newheap-azure-logic-apps/Application/assets/js/nhala-common.js?ver=

HTML / DOM Fingerprints

CSS Classes
nhala-settings-page
Data Attributes
data-nhala-action
JS Globals
nhala_ajax_object
FAQ

Frequently Asked Questions about NewHeap Azure Logic apps