[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f5TvX9IikvnjzVMDQH19_XcqAihsoKxzKtjnBTrhn6nU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":144,"fingerprints":216},"nextgenthemes-jsdelivr-this","NextGenThemes jsDelivr CDN","1.3.3","Nico","https:\u002F\u002Fprofiles.wordpress.org\u002Fnico23\u002F","\u003Cp>It replaces all assets with versions available on jsDelivr. No options, nothing to configure, just works.\u003C\u002Fp>\n\u003Cp>The code needs to be openly hosted on NPM, Github or wordpress.org.\u003C\u002Fp>\n\u003Cp>This plugin adds a little a invisible button on the admin bar on the top right, left of “Howdy, Name”. You can click that and see the assets loaded from jsDelivr.\u003C\u002Fp>\n\u003Ch4>Support me\u003C\u002Fh4>\n\u003Cp>It took me a lot of time to come up with this plugin and I had many iterations over various different approaches how to do this until I came up with this working solution that also does not need much code. I know the official plugin was abandoned years ago and I looked at complicated bloated code and did not even feel like learning what its doing and never looked at it again and started from scratch.\u003C\u002Fp>\n\u003Cp>Please check out my commercial plugin and level up your video embeds with \u003Ca href=\"https:\u002F\u002Fnextgenthemes.com\u002Fplugins\u002Farve-pro\u002F\" rel=\"nofollow ugc\">ARVE Pro\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fnextgenthemes.com\u002Fdonate\u002F\" rel=\"nofollow ugc\">Donate here\u003C\u002Fa>\u003C\u002Fp>\n","Free CDN for for all assets from wordpress.org Github and NPM.",400,17808,100,6,"2025-10-12T15:06:00.000Z","6.8.5","6.2.0","8.0",[20,21,22,23,24],"cdn","javascript","js","jsdelivr","nextgenthemes","https:\u002F\u002Fnextgenthemes.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnextgenthemes-jsdelivr-this.1.3.3.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"nico23",7,20600,91,30,88,"2026-04-05T15:15:09.210Z",[40,63,81,103,126],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":60,"download_link":61,"security_score":62,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"commonwp","commonWP","1.1.0","Milan Dinić","https:\u002F\u002Fprofiles.wordpress.org\u002Fdimadin\u002F","\u003Cp>commonWP is a plugin that enables usage of free, public CDN (\u003Ca href=\"https:\u002F\u002Fwww.jsdelivr.com\u002F\" rel=\"nofollow ugc\">jsDelivr\u003C\u002Fa>) for open source JavaScript and CSS files. Those files are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>All files from WordPress core, unless development version of WordPress is used.\u003C\u002Fli>\n\u003Cli>All files from plugins hosted by WordPress.org Plugins Repository, unless author of specific plugin doesn’t use \u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Fplugins\u002Fwordpress-org\u002Fhow-to-use-subversion\u002F#tagging-new-versions\" rel=\"nofollow ugc\">SVN tags for releasing\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>All files from themes hosted by WordPress.org Themes Repository.\u003C\u002Fli>\n\u003Cli>All files from plugins and themes hosted on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> that support \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fafragen\u002Fgithub-updater\" rel=\"nofollow ugc\">GitHub Updater\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>All files marked as available on \u003Ca href=\"https:\u002F\u002Fwww.npmjs.com\u002F\" rel=\"nofollow ugc\">npm\u003C\u002Fa> in any type of theme, plugin, or MU plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It aims to be both lightweight and very secure. The approach used in this plugin is safer then in any other plugin that enables usage of any CDN. First, commonWP will only rewrite file to point to one on jsDelivr if that remote file is identical to local one. Second, during comparison, it generates \u003Ca href=\"https:\u002F\u002Fdeveloper.mozilla.org\u002Fen-US\u002Fdocs\u002FWeb\u002FSecurity\u002FSubresource_Integrity\" rel=\"nofollow ugc\">subresource identity hash\u003C\u002Fa> of remote jsDelivr file and includes that hash in page’s source code so browser won’t load remote file if it doesn’t have exactly the same hash.\u003C\u002Fp>\n\u003Cp>There are no any settings. After activation, it will fill up its cache in the background, and that may take some time depending on number of resources site uses.\u003C\u002Fp>\n\u003Cp>For much more details about commonWP, head over to its \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdimadin\u002FcommonWP\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n","Offload open source static assets to the free, public CDN.",500,11412,94,18,"2019-02-24T20:21:00.000Z","5.1.22","4.7","5.4",[20,57,23,58,59],"free-cdn","performance","public-cdn","https:\u002F\u002Fmilandinic.com\u002Fwordpress\u002Fplugins\u002Fcommonwp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcommonwp.1.1.0.zip",85,{"slug":64,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":13,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":79,"download_link":80,"security_score":62,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"xiaodu-jsdelivr","1.4.2","Xiaodu @ Du9L.com","https:\u002F\u002Fprofiles.wordpress.org\u002Fdujiulun2006\u002F","\u003Cp>Scan and serve static files from jsDelivr CDN (https:\u002F\u002Fjsdelivr.com).\u003C\u002Fp>\n\u003Ch4>How to use\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin\u003C\u002Fli>\n\u003Cli>Wait for the initial scan(s) to complete. Scan results are shown on the plugin’s options page\u003C\u002Fli>\n\u003Cli>The static file references on the frontend and admin area will be replaced\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>How it works\u003C\u002Fh4>\n\u003Cp>Explained in my \u003Ca href=\"https:\u002F\u002Fs.du9l.com\u002Fu7yiP\" rel=\"nofollow ugc\">blog entry\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Source code repository\u003C\u002Fh4>\n\u003Cp>Check out the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FDu9L\u002Fwordpress-plugin-xiaodu-jsdelivr\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n","Scan and serve static files from jsDelivr CDN (https:\u002F\u002Fjsdelivr.com).",60,3451,4,"2022-06-06T14:42:00.000Z","6.0.11","5.3","7.2",[20,23,78],"static","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fxiaodu-jsdelivr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fxiaodu-jsdelivr.1.4.2.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":101,"download_link":102,"security_score":62,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"oh-add-script-header-footer","SOGO Add Script to Individual Pages Header Footer","3.9","SOGO","https:\u002F\u002Fprofiles.wordpress.org\u002Forenhav\u002F","\u003Cp>Tested with Gutenberg\u003C\u002Fp>\n\u003Cp>Create a simple way to add javascript code to individual page post or custom post type header and footer,\u003Cbr \u002F>\nfor example: add conversion code to thank you pages\u003Cbr \u002F>\nadd google re-marketing code to individual pages\u003Cbr \u002F>\nand much more…\u003Cbr \u002F>\nadded in version 1.3 the option to add script  \\ style to all pages not only individual pages,\u003Cbr \u002F>\n this will allow you to add Google re-marketing code to the entire site or Google Analytics\u003Cbr \u002F>\n to use it goto “settings” – “Header Footer Settings”\u003C\u002Fp>\n\u003Cp>New Features (version 3.0):\u003Cbr \u002F>\nAdded option for terms  \u002F category pages\u003C\u002Fp>\n\u003Cp>New Features (version 2.3):\u003Cbr \u002F>\n Added support for WooCommerce shop page.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>we support now exclude individual pages form printing the header and footer scripts, this is supported by 2 checkboxes in each page\\post\u003Cbr \u002F>\nbuy check it the script will not be display on this page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>we added support to limit the script only for certain post type \\ page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>if you like it \\ use it – please rate us.\u003C\u002Fp>\n\u003Cp>usage:\u003Cbr \u002F>\nYou need to paste the code with the script tag, for example:\u003Cbr \u002F>\n   you js code \u003C\u002Fp>\n","Simple plugin to add script to header and footer for individual pages & posts",20000,382562,86,31,"2020-01-20T09:20:00.000Z","5.3.21","3.5","",[98,99,21,22,100],"footer","header","re-marketing-code","http:\u002F\u002Fsogo.co.il","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foh-add-script-header-footer.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":13,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":96,"tags":117,"homepage":96,"download_link":122,"security_score":123,"vuln_count":124,"unpatched_count":27,"last_vuln_date":125,"fetched_at":29},"tc-custom-javascript","TC Custom JavaScript","1.2.3","Tiny Code","https:\u002F\u002Fprofiles.wordpress.org\u002Ftinycode\u002F","\u003Cp>Add custom JavaScript to your site from a professional editor in the WordPress admin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>TC Custom JavaScript\u003C\u002Fstrong>‘s still in early stage. If you have any troubles when using it, or any ideas to improve its features to fit with your work, please do not hesitate to contact us.\u003C\u002Fp>\n","Add custom JavaScript to your site from a professional editor in the WordPress admin.",10000,115752,8,"2023-02-24T03:13:00.000Z","6.1.10","3.0.0",[118,119,120,121],"custom-javascript","custom-js","edit-js-theme","javascript-editor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftc-custom-javascript.1.2.3.zip",84,1,"2020-07-21 00:00:00",{"slug":127,"name":128,"version":129,"author":130,"author_profile":131,"description":132,"short_description":133,"active_installs":111,"downloaded":134,"rating":37,"num_ratings":135,"last_updated":136,"tested_up_to":137,"requires_at_least":138,"requires_php":96,"tags":139,"homepage":142,"download_link":143,"security_score":62,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"use-google-libraries","Use Google Libraries","1.6.2.3","Jason Penney","https:\u002F\u002Fprofiles.wordpress.org\u002Fjczorkmid\u002F","\u003Cp>A number of the javascript libraries distributed with WordPress are also\u003Cbr \u002F>\nhosted on Google’s \u003Ca href=\"http:\u002F\u002Fcode.google.com\u002Fapis\u002Fajaxlibs\u002F\" rel=\"nofollow ugc\">AJAX Libraries API\u003C\u002Fa>.\u003Cbr \u002F>\nThis plugin allows your WordPress site to use the content distribution\u003Cbr \u002F>\nnetwork side of Google’s AJAX Library API, rather than serving these files from your WordPress install directly.\u003C\u002Fp>\n\u003Cp>This provides numerous potential performance benefits:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>increases the chance that a user already has these files cached\u003C\u002Fli>\n\u003Cli>takes load off your server\u003C\u002Fli>\n\u003Cli>uses compressed versions of the libraries (where available)\u003C\u002Fli>\n\u003Cli>Google’s servers are set up to negotiate HTTP compression with the requesting browser\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For a more detailed look see Dave Ward’s \u003Ca href=\"https:\u002F\u002Fweb-beta.archive.org\u002Fweb\u002F20101216143500\u002Fencosia.com\u002F2008\u002F12\u002F10\u002F3-reasons-why-you-should-let-google-host-jquery-for-you\u002F\" rel=\"nofollow ugc\">3 reasons why you should let\u003Cbr \u002F>\nGoogle host jQuery for\u003Cbr \u002F>\nyou\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Supported Libraries and Components\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fdojotoolkit.org\u002F\" rel=\"nofollow ugc\">Dojo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fjquery.com\u002F\" rel=\"nofollow ugc\">jQuery\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fui.jquery.com\u002F\" rel=\"nofollow ugc\">jQuery UI\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fmootools.net\u002F\" rel=\"nofollow ugc\">MooTools\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.prototypejs.org\u002F\" rel=\"nofollow ugc\">Prototype\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fscript.aculo.us\u002F\" rel=\"nofollow ugc\">script.aculo.us\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fcode.google.com\u002Fp\u002Fswfobject\u002F\" rel=\"nofollow ugc\">swfobject\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fjasonpenney.net\u002Fwordpress-plugins\u002Fuse-google-libraries\u002F\" rel=\"nofollow ugc\">Use Google Libraries Home\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fgithub.com\u002Fjpenney\u002Fuse-google-libraries\u002Fissues\" rel=\"nofollow ugc\">Issue Tracker\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fgithub.com\u002Fjpenney\u002Fuse-google-libraries\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fuse-google-libraries\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Incompatible Plugins\u003C\u002Fh3>\n\u003Ch4>Better WordPress Minify\u003C\u002Fh4>\n\u003Cp>Better WordPress Minify version 1.2.2 does not yet support\u003Cbr \u002F>\nprotocol-relative URLs, but \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fconflict-with-use-google-libraries-152\" rel=\"ugc\">the next release is supposed to correct\u003Cbr \u002F>\nthis\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Gravity Forms\u003C\u002Fh4>\n\u003Cp>I’ve had reports of Gravity Forms breaking UGL, but I don’t have\u003Cbr \u002F>\naccess to Gravity Forms, so I’m not sure what’s going on.  If you need\u003Cbr \u002F>\nGravity Forms you might need to disable UGL, or it might be fine, I’m\u003Cbr \u002F>\nnot really sure.\u003C\u002Fp>\n\u003Ch4>WP-Minify\u003C\u002Fh4>\n\u003Cp>WP-Minify doesn’t yet support protocol-relative URLs.  Add\u003Cbr \u002F>\n‘\u002F\u002Fajax.googleapis.com\u002F’ as a JS and CSS exclusion.\u003C\u002Fp>\n\u003Ch3>Incompatible Themes\u003C\u002Fh3>\n\u003Ch4>K2\u003C\u002Fh4>\n\u003Cp>I’ve had scattered reports that UGL is stepping out of the way when\u003Cbr \u002F>\nusing K2.\u003C\u002Fp>\n\u003Ch3>A Request\u003C\u002Fh3>\n\u003Cp>If you’re going to flag the plugin as “broken” in the WordPress Plugin\u003Cbr \u002F>\nDirectory, please try and \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Ftags\u002Fuse-google-libraries?forum_id=10\" rel=\"ugc\">let me know \u003Cem>what\u003C\u002Fem> is\u003Cbr \u002F>\nbroken\u003C\u002Fa>.\u003Cbr \u002F>\nI’m not a mind reader.\u003C\u002Fp>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Use Google Libraries\u003C\u002Fstrong> uses the following hooks (each with a priority of 1000).\u003C\u002Fp>\n\u003Ch4>wp_default_scripts\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Use Google Libraries\u003C\u002Fstrong> compares it’s list of supported scripts to those\u003Cbr \u002F>\nregistered, and replaces the standard registrations \u003Ccode>src\u003C\u002Fcode> with ones that\u003Cbr \u002F>\npoint to Google’s servers.  Other attributes (like dependencies) are left\u003Cbr \u002F>\nintact.\u003C\u002Fp>\n\u003Ch4>script_loader_src\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Use Google Libraries\u003C\u002Fstrong> removes the \u003Ccode>ver=x.y.z\u003C\u002Fcode> query string from the URL\u003Cbr \u002F>\nused to load the requested library \u003Cem>if\u003C\u002Fem> it is going to load the library from\u003Cbr \u002F>\n    ajax.googleapis.com.  Otherwise the URL is left unaltered.  This both\u003Cbr \u002F>\nimproves the chances of the given URL already being cached, and prevents\u003Cbr \u002F>\n\u003Cstrong>script.aculo.us\u003C\u002Fstrong> from including scripts multiple times.\u003C\u002Fp>\n\u003Cp>If jQuery is enqued \u003Cstrong>Use Google Libraries\u003C\u002Fstrong> will inject a bit of\u003Cbr \u002F>\njavascript before the next enqueued script enabling jQuery’s \u003Ca href=\"http:\u002F\u002Fdocs.jquery.com\u002FCore\u002FjQuery.noConflict\" rel=\"nofollow ugc\">noConflict mode\u003C\u002Fa> as it would\u003Cbr \u002F>\nwith the standard WordPress version.\u003C\u002Fp>\n\u003Ch3>References\u003C\u002Fh3>\n\u003Cp>Parts of this plugin (specificly, the dropping of the micro number,\u003Cbr \u002F>\nwhich has since been removed for better caching performance) were\u003Cbr \u002F>\ninspired by John Blackbourn’s\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"http:\u002F\u002Flud.icro.us\u002Fwordpress-plugin-google-ajax-libraries\u002F\" rel=\"nofollow ugc\">Google AJAX Libraries\u003C\u002Fa>\u003C\u002Fstrong>,\u003Cbr \u002F>\nwhich has very similar goals to this plugin.\u003C\u002Fp>\n\u003Ch3>Future Plans\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>add ability to disable protocol relative URLs\u003C\u002Fli>\n\u003Cli>add ability to disable on frontend and\u002For admin\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows your site to use common javascript libraries from Google's AJAX Libraries CDN, rather than from WordPress's own copies.",747905,47,"2017-11-28T05:16:00.000Z","4.7.32","3.4",[20,140,21,141,58],"google","jquery","http:\u002F\u002Fjasonpenney.net\u002Fwordpress-plugins\u002Fuse-google-libraries\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuse-google-libraries.zip",{"attackSurface":145,"codeSignals":191,"taintFlows":203,"riskAssessment":204,"analyzedAt":215},{"hooks":146,"ajaxHandlers":187,"restRoutes":188,"shortcodes":189,"cronEvents":190,"entryPointCount":27,"unprotectedCount":27},[147,154,158,163,166,170,172,175,177,180,183],{"type":148,"name":149,"callback":150,"priority":151,"file":152,"line":153},"action","after_setup_theme","anonymous",11,"nextgenthemes-jsdelivr-this.php",23,{"type":148,"name":155,"callback":150,"priority":156,"file":152,"line":157},"init",9,34,{"type":159,"name":160,"callback":150,"priority":161,"file":152,"line":162},"filter","wp_script_attributes",10,40,{"type":159,"name":164,"callback":150,"priority":161,"file":152,"line":165},"style_loader_tag",41,{"type":148,"name":167,"callback":150,"priority":168,"file":152,"line":169},"admin_bar_menu",33,43,{"type":159,"name":155,"callback":150,"file":152,"line":171},45,{"type":148,"name":173,"callback":150,"file":152,"line":174},"wp_enqueue_scripts",46,{"type":148,"name":176,"callback":150,"file":152,"line":135},"admin_enqueue_scripts",{"type":148,"name":178,"callback":150,"file":152,"line":179},"admin_footer",49,{"type":148,"name":181,"callback":150,"file":152,"line":182},"wp_footer",50,{"type":159,"name":184,"callback":185,"priority":161,"file":152,"line":186},"plugin_row_meta","closure",52,[],[],[],[],{"dangerousFunctions":192,"sqlUsage":193,"outputEscaping":195,"fileOperations":201,"externalRequests":201,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":202},[],{"prepared":27,"raw":27,"locations":194},[],{"escaped":196,"rawEcho":124,"locations":197},16,[198],{"file":152,"line":199,"context":200},87,"raw output",2,[],[],{"summary":205,"deductions":206},"Based on the provided analysis, the \"nextgenthemes-jsdelivr-this\" plugin version 1.3.3 presents a strong security posture with no identified vulnerabilities in its history or critical issues flagged by static analysis.  The absence of known CVEs and a clean vulnerability history indicate a well-maintained and secure plugin.  Furthermore, the code analysis reveals a minimal attack surface with zero entry points, zero AJAX handlers, zero REST API routes, and zero shortcodes.  The code also demonstrates good practices by using prepared statements for all SQL queries and a high percentage of properly escaped output, reducing the risk of injection and cross-site scripting vulnerabilities. The lack of dangerous functions and critical taint flows is also a positive sign. \n\nHowever, there are a few areas that, while not currently indicating vulnerabilities, warrant attention for future development or auditing. The plugin has zero nonce checks and zero capability checks, meaning that any potential future entry points, if introduced, would be unprotected by standard WordPress security mechanisms. While the current attack surface is zero, the absence of these checks could become a significant risk if functionality is added without proper authorization. Additionally, the presence of file operations and external HTTP requests, while not flagged as problematic in this analysis, are always potential vectors for vulnerabilities if not handled with extreme care and proper sanitization.",[207,209,211,213],{"reason":208,"points":161},"No Nonce Checks Present",{"reason":210,"points":161},"No Capability Checks Present",{"reason":212,"points":201},"File Operations Present",{"reason":214,"points":201},"External HTTP Requests Present","2026-03-16T19:43:36.256Z",{"wat":217,"direct":226},{"assetPaths":218,"generatorPatterns":221,"scriptPaths":222,"versionParams":223},[219,220],"\u002Fwp-content\u002Fplugins\u002Fnextgenthemes-jsdelivr-this\u002Fdialog.css","\u002Fwp-content\u002Fplugins\u002Fnextgenthemes-jsdelivr-this\u002Fdialog.js",[],[220],[224,225],"\u002Fwp-content\u002Fplugins\u002Fnextgenthemes-jsdelivr-this\u002Fdialog.css?ver=","\u002Fwp-content\u002Fplugins\u002Fnextgenthemes-jsdelivr-this\u002Fdialog.js?ver=",{"cssClasses":227,"htmlComments":233,"htmlAttributes":234,"restEndpoints":237,"jsGlobals":238,"shortcodeOutput":240},[228,229,230,231,232],"ngt-jsdelivr-dialog","ngt-jsdelivr-dialog__header","media-modal-close","media-modal-icon","screen-reader-text",[],[235,236],"data-wp-el=\"editor\"","data-wp-element=\"editor\"",[],[239],"window.wpApiSettings",[]]