[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$feZAjGzOrThZmXbMFUD5XhzVWu5LOxBIh2nvlQK7PsxQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":139,"fingerprints":186},"nofollowr","NoFollowr","1.2.0","joel_birch","https:\u002F\u002Fprofiles.wordpress.org\u002Fjoel_birch\u002F","\u003Ch3>Summary\u003C\u002Fh3>\n\u003Cp>NoFollowr allows an administrator to easily see which external links are granting search-engine benefits upon another site. The administrator can toggle between allowing and disallowing this benefit with a single click. The change is instant and does not require a page reload, making the moderation of external links a breeze.\u003C\u002Fp>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Cp>When logged in as an administrator, green “tick” and red “stop” icons appear next to all external links in a post indicating whether \u003Ccode>rel=\"nofollow\"\u003C\u002Fcode> is currently applied to them. Simply click an icon to toggle between these two states and alter the link’s nofollow status. This change is applied to your database remotely, without requiring a page reload.\u003C\u002Fp>\n\u003Ch3>Why is this plugin useful?\u003C\u002Fh3>\n\u003Cp>The whole question of \u003Ca href=\"http:\u002F\u002Fwww.seowizz.net\u002F2009\u002F04\u002Frelnofollow-debate-lets-try-and-get-to.html\" title=\"The rel=nofollow debate: Let’s Try and Get To Grips With It\" rel=\"nofollow ugc\">whether to use \u003Ccode>rel=\"nofollow\"\u003C\u002Fcode>\u003C\u002Fa> is a hotly debated one, and applying it (or not) across the board is not a good solution. You want to give credit where it is due and reward useful websites but, at the same time, you do not want to reward suspect websites that promote unethical or unscrupulous behaviour. Read more about how \u003Ca href=\"http:\u002F\u002Fskeptools.wordpress.com\u002F2008\u002F09\u002F03\u002Fnot-just-for-spam-anymore-nofollow-for-skepticism\u002F\" title=\"Not just for spam anymore: NOFOLLOW for skepticism « Skeptical Software Tools\" rel=\"nofollow ugc\">\u003Ccode>nofollow\u003C\u002Fcode> is extremely important\u003C\u002Fa> when engaging in activism.\u003C\u002Fp>\n\u003Cp>If you are not the sole author of your website or blog it can be very difficult to stay on top of which links are being followed. NoFollowr allows you to easily spot and alter which links receive your love, without spending time going back and forth between your site and the admin area to edit the posts manually.\u003C\u002Fp>\n","Browsing a site as an admin, icons are added to external links indicating their nofollow status. Clicking the icons toggles nofollow status via Ajax.",200,19427,64,5,"2017-03-20T09:11:00.000Z","4.7.32","3.4","",[20,21,22,23,24],"external-links","externals","links","nofollow","rel","https:\u002F\u002Fnofollowr.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnofollowr.1.2.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},1,30,84,"2026-04-04T15:34:55.365Z",[38,60,78,94,119],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":18,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":57,"download_link":58,"security_score":46,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":59},"external-links-nofollow-open-in-new-tab-favicon","External & Affiliate Links Processor","1.5.5","reikiman","https:\u002F\u002Fprofiles.wordpress.org\u002Freikiman\u002F","\u003Cp>This plugin controls several useful attributes of external links.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add affiliate ID tags to links to sites where this makes sense\u003C\u002Fli>\n\u003Cli>Create buttons to add products directly to Amazon’s shopping cart\u003C\u002Fli>\n\u003Cli>Control, based on the domain of the outbound link, whether or not to add \u003Ccode>rel=nofollow\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Control whether to open outbound links in new windows (\u003Ccode>target=_blank\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>Control whether to add visual cues for outbound links, including the favicon for the target site, and\u002For a generic external link icon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Unlike other \u003Ccode>nofollow\u003C\u002Fcode> plugins which force every outbound link to be nofollow’d (or not), this plugin lets you select which domains get what treatment.  It includes two lists of domains, a white list and a black list.  Domains on the blacklist are always nofollow’d, while those on the whitelist never are.\u003C\u002Fp>\n\u003Cp>It’s useful to your visitors to let them know which links will take them off your site.  This plugin will show icons either before or after the link.  One icon is the favicon for the target site, and the other is a generic external link icon.\u003C\u002Fp>\n\u003Cp>Sometimes you want to quickly and easily make an affiliate link, requiring a correctly formatted link according to affiliate network specifications.  Services like VigLink or Skimlinks can simplify the hassle of remembering the correct formatting of each affiliate network, by using JavaScript to convert natural links into affiliated links.  While convenient, these networks take a percentage of your affiliate commissions.\u003C\u002Fp>\n\u003Cp>This plugin lets you make a simple natural link to the destination, and the plugin rewrites it with the correct affiliate ID codes.  For certain affiliate networks.  You don’t have to remember the correct formatting for the affiliate network, you simply make the link and the plugin automatically rewrites it for you (using the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Frobogeek\u002Faffiliate-link-processor\" rel=\"nofollow ugc\">AffiliateLinkProcessor\u003C\u002Fa> library).  It also interacts well if you’re using VigLink or Skimlinks, because those services can continue handling whatever links this plugin does not touch.  Supported networks are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Amazon.com (and all known international Amazon sites)\u003C\u002Fli>\n\u003Cli>Sites on the Linkshare\u002FRakuten network\u003C\u002Fli>\n\u003Cli>Zazzle.com\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In addition to rewriting links to Amazon websites, a shortcode is provided which generates a button which adds a given product directly to an Amazon shopping cart.  Many claim doing so has a beneficial effect on the cookie Amazon places into the browser.\u003C\u002Fp>\n","Process outbound (external) links to make useful changes, including adding affiliate ID tags, rel=nofollow or target=_blank attributes, and adding ico &hellip;",100,5287,80,4,"4.8.28","4.0.1",[23,53,54,55,56],"nofollow-external-link","nofollow-external-links","nofollow-links","rel-nofollow","https:\u002F\u002Fdavidherron.com\u002Fcontent\u002Fexternal-links-nofollow-favicon-open-external-window-etc-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexternal-links-nofollow-open-in-new-tab-favicon.1.5.5.zip","2026-03-15T10:48:56.248Z",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":46,"num_ratings":33,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":18,"download_link":77,"security_score":46,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"auto-external-link-nofollow","Auto External Link Nofollow","1.0.0","Viktor Androshuck","https:\u002F\u002Fprofiles.wordpress.org\u002Fmycoolheart\u002F","\u003Cp>This lightweight plugin automatically scans the content of your posts and pages and adds \u003Ccode>rel=\"nofollow noopener noreferrer\"\u003C\u002Fcode> to all external links.\u003Cbr \u002F>\nInternal links are untouched. Improves SEO and security with zero configuration.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>No admin panel needed\u003C\u002Fli>\n\u003Cli>Safe and fast\u003C\u002Fli>\n\u003Cli>Does not affect internal links\u003C\u002Fli>\n\u003Cli>Helps comply with SEO best practices\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically adds rel=\"nofollow noopener noreferrer\" to all external links in post and page content.",10,270,"2025-08-17T18:06:00.000Z","6.8.5","5.0","7.0",[75,20,23,24,76],"content-filter","seo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-external-link-nofollow.1.0.0.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":28,"downloaded":86,"rating":28,"num_ratings":28,"last_updated":87,"tested_up_to":16,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":18,"download_link":93,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"nofollow-adder","Nofollow Adder WordPress Plugin","1.0","Srikant Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fpixelstreamcreations\u002F","\u003Cp>One of the prime reason behind low traffic is lack of restrictions to crawlers while crawling external links. As a result, search engines crawlers crawl away through the external links. The easiest way to restrict crawlers from crawling external links is to add nofollow attribute to the external links. But wordpress websites with lots of posts and pages, it is not easy to add nofollow attribute to all external links. To ease the process, \u003Cem>nofollow adder wordpress plugin\u003C\u002Fem> is developed.\u003C\u002Fp>\n\u003Cp>Once this plugin is activated, it would add nofollow attribute to all the external links.\u003C\u002Fp>\n","A simple plugin to add 'nofollow' relation attribute to all external links.",1001,"2018-05-31T02:16:00.000Z","4.6","5.2.4",[91,23,79,92,56],"external-links-nofollow","nofollow-adder-wordpress-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnofollow-adder.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":104,"num_ratings":105,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":114,"download_link":115,"security_score":116,"vuln_count":117,"unpatched_count":28,"last_vuln_date":118,"fetched_at":30},"wp-external-links","External Links – nofollow, noopener & new window","2.63","WebFactory","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebfactory\u002F","\u003Cp>\u003Cstrong>Manage all external & internal links on your site\u003C\u002Fstrong>. Control icons, nofollow, noopener, ugc (User Generated Content), sponsored and if links open in new window or new tab.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgetwplinks.com\u002F\" rel=\"nofollow ugc\">WP Links\u003C\u002Fa> plugin was completely rebuilt in v2 and has lots of new features, like noopener, ugc and sponsored values for rel; font icons, internal links options and full WPMU support.\u003C\u002Fp>\n\u003Ch4>Link Scanner – PRO feature\u003C\u002Fh4>\n\u003Cp>Check every single link on your site! See if it’s broken or not, if it’s redirected, what’s the target and rel attribute and what page exactly it’s linking to. This feature is a part of the \u003Ca href=\"https:\u002F\u002Fgetwplinks.com\u002F\" rel=\"nofollow ugc\">WP Links PRO\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Manage external and internal links\u003C\u002Fli>\n\u003Cli>Open links in new window or tab\u003C\u002Fli>\n\u003Cli>Add follow or nofollow (for SEO)\u003C\u002Fli>\n\u003Cli>Add noopener and noreferrer (for security)\u003C\u002Fli>\n\u003Cli>Add ugc (User Generated Content) and sponsored values to rel (\u003Ca href=\"https:\u002F\u002Fwebmasters.googleblog.com\u002F2019\u002F09\u002Fevolving-nofollow-new-ways-to-identify.html\" rel=\"nofollow ugc\">Google announcement\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Add link icons (FontAwesome and Dashicons)\u003C\u002Fli>\n\u003Cli>Set other attributes like title and CSS classes\u003C\u002Fli>\n\u003Cli>Scan complete page (or just posts, comments, widgets)\u003C\u002Fli>\n\u003Cli>SEO friendly\u003C\u002Fli>\n\u003Cli>Link Scanner – check all links on your site – PRO feature\u003C\u002Fli>\n\u003Cli>Exit Confirmation – protect visitors and traffic when external links are clicked – PRO feature\u003C\u002Fli>\n\u003Cli>Link Rules – create advanced link rules for chosen link groups – PRO feature\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>And more…\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Network Settings (WPMU support)\u003C\u002Fli>\n\u003Cli>Use template tag to apply plugin settings on specific contents\u003C\u002Fli>\n\u003Cli>Set data-attribute to change how individual links will be treated\u003C\u002Fli>\n\u003Cli>Use built-in actions and filters to implement your specific needs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Easy to use\u003C\u002Fh4>\n\u003Cp>After activating you can set all options for external and internal links on the plugins admin page.\u003C\u002Fp>\n\u003Ch4>On the fly\u003C\u002Fh4>\n\u003Cp>The plugin filters the output and changes the links on the fly. The real contents (posts, pages, widget etcetera) will not be changed in the database.\u003Cbr \u002F>\nWhen deactivating the plugin, all contents will be the same as it was before.\u003C\u002Fp>\n\u003Ch4>GDPR compatibility\u003C\u002Fh4>\n\u003Cp>We are not lawyers. Please do not take any of the following as legal advice.\u003Cbr \u002F>\nWP External Links does not track, collect or process any user data. Nothing is logged or pushed to any 3rd parties. We also don’t use any 3rd party services or CDNs. Based on that, we feel it’s GDPR compatible, but again, please, don’t take this as legal advice.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like the plugin?\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fwp-external-links\" rel=\"ugc\">Rate it\u003C\u002Fa> to support the development.\u003C\u002Fp>\n\u003Cp>If you’re having \u003Cstrong>problems with SSL or HTTPS\u003C\u002Fstrong> try our free \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-force-ssl\u002F\" rel=\"ugc\">WP Force SSL\u003C\u002Fa> plugin. It’s a great way to enable SSL and fix SSL problems.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>After activating you can set all options for external and internal links.\u003C\u002Fp>\n\u003Ch4>Data attribute “data-wpel-link”\u003C\u002Fh4>\n\u003Cp>Links being processed by this plugin will also contain the data-attribute \u003Ccode>data-wpel-link\u003C\u002Fcode>.\u003Cbr \u002F>\nThe plugin could set the value to \u003Ccode>external\u003C\u002Fcode>, \u003Ccode>internal\u003C\u002Fcode> or \u003Ccode>exclude\u003C\u002Fcode>, meaning how the\u003Cbr \u002F>\nlink was processed.\u003C\u002Fp>\n\u003Cp>You can also set the data-attribute yourself. This way you can force how the plugin will process\u003Cbr \u002F>\ncertain links.\u003C\u002Fp>\n\u003Cp>When you add the value \u003Ccode>ignore\u003C\u002Fcode>, the link will be completely ignored by the plugin:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Ca href=\"http:\u002F\u002Fsomedomain.com\" data-wpel-link=\"ignore\">Go to somedomain\u003C\u002Fa>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Action “wpel_link”\u003C\u002Fh4>\n\u003Cp>Use this action to change the link object after all plugin settings have been applied.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_action( 'wpel_link', ( $link_object ) {\n    if ( $link_object->is_external() ) {\n        \u002F\u002F get current url\n        $url = $link_object->getAttribute( 'href' );\n\n        \u002F\u002F set redirect url\n        $redirect_url = '\u002F\u002Fsomedom.com?url='. urlencode( $url );\n        $link_object->setAttribute( 'href', $redirect_url );\n    }\n}, 10, 1 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The link object is an instance of \u003Ccode>WPEL_Link\u003C\u002Fcode> class.\u003C\u002Fp>\n\u003Ch4>Action hook “wpel_before_apply_link”\u003C\u002Fh4>\n\u003Cp>Use this action to change the link object before the plugin settings will be applied on the link.\u003Cbr \u002F>\nYou can use this filter f.e. to ignore individual links from being processed. Or change dynamically how\u003Cbr \u002F>\nthey will be treated by this plugin.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_action( 'wpel_before_apply_link', function ( $link ) {\n    \u002F\u002F ignore links with class \"some-cls\"\n    if ( $link->has_attr_value( 'class', 'some-cls' ) ) {\n        $link->set_ignore();\n    }\n\n    \u002F\u002F mark and treat links with class \"ext-cls\" as external link\n    if ( $link->has_attr_value( 'class', 'ext-cls' ) ) {\n        $link->set_external();\n    }\n}, 10 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Filter hook “wpel_apply_settings”\u003C\u002Fh4>\n\u003Cp>When filter returns false the plugin settings will not be applied. Can be used when f.e. certain posts or pages should be ignored by this plugin.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'wpel_apply_settings', '__return_false' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>See \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-external-links\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa> for more info.\u003C\u002Fp>\n","Internal links & external links manager: open in new window or tab, control nofollow, ugc, sponsored & noopener. SEO friendly.",90000,1641157,86,247,"2025-12-03T19:28:00.000Z","6.9.4","4.2","7.2",[20,111,112,23,113],"new-tab","new-window","noopener","https:\u002F\u002Fgetwplinks.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-external-links.2.63.zip",99,3,"2023-03-08 00:00:00",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":16,"requires_at_least":132,"requires_php":18,"tags":133,"homepage":137,"download_link":138,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"sem-external-links","External Links","6.8.1","Denis de Bernardy","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenis-de-bernardy\u002F","\u003Cp>The external links plugin for WordPress lets you process outgoing links differently from internal links.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Under Settings \u002F External Links, you can configure the plugin to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Process all outgoing links, rather than only those within your entries’ content and text widgets.\u003C\u002Fli>\n\u003Cli>Add an external link icon to outgoing links. You can use a class=”no_icon” attribute on links to override this.\u003C\u002Fli>\n\u003Cli>Add rel=nofollow to the links. (Note: You can use a rel=”follow” attribute on links to override this.)\u003C\u002Fli>\n\u003Cli>Open outgoing links in new windows. Note that this can damage your visitor’s trust towards your site in that they can think your site used a pop-under.\u003C\u002Fli>\n\u003Cli>Turn on “autolinks” functionality.\u003C\u002Fli>\n\u003Cli>Domains\u002Fsubdomains you wish to Exclude from processing.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Auto Links\u003C\u002Fh4>\n\u003Cp>The Autolink functionality automatically converts urls to hyperlinked urls in post\u002Fpage content, excerpts and text widgets.\u003C\u002Fp>\n\u003Cp>Before:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>www.semiologic.com\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>After:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.semiologic.com\" rel=\"nofollow ugc\">www.semiologic.com\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Help Me!\u003C\u002Fh4>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsem-external-links\" rel=\"ugc\">Plugin’s Forum\u003C\u002Fa> is the best place to report issues.\u003C\u002Fp>\n","The external links plugin for WordPress lets you process outgoing links differently from internal links.",9000,357821,96,36,"2017-11-28T08:44:00.000Z","2.8",[20,134,135,23,136],"link-target","link-icon","semiologic","http:\u002F\u002Fwww.semiologic.com\u002Fsoftware\u002Fexternal-links\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsem-external-links.zip",{"attackSurface":140,"codeSignals":167,"taintFlows":177,"riskAssessment":178,"analyzedAt":185},{"hooks":141,"ajaxHandlers":163,"restRoutes":164,"shortcodes":165,"cronEvents":166,"entryPointCount":28,"unprotectedCount":28},[142,148,153,156,160],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","wp_enqueue_scripts","add_assets","nofollowr.php",61,{"type":149,"name":150,"callback":151,"file":146,"line":152},"filter","the_content","wrap_content",62,{"type":149,"name":154,"callback":155,"file":146,"line":13},"query_vars","add_trigger",{"type":143,"name":157,"callback":158,"file":146,"line":159},"template_redirect","trigger_check",65,{"type":143,"name":161,"callback":161,"file":146,"line":162},"init",196,[],[],[],[],{"dangerousFunctions":168,"sqlUsage":169,"outputEscaping":171,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":117,"bundledLibraries":176},[],{"prepared":28,"raw":28,"locations":170},[],{"escaped":49,"rawEcho":33,"locations":172},[173],{"file":146,"line":174,"context":175},188,"raw output",[],[],{"summary":179,"deductions":180},"The nofollowr plugin v1.2.0 exhibits a generally strong security posture based on the static analysis. The absence of any identified dangerous functions, raw SQL queries, file operations, external HTTP requests, and the complete reliance on prepared statements for SQL indicate good development practices.  Furthermore, the lack of critical or high severity taint flows suggests that the plugin is not introducing obvious vulnerabilities related to data handling.\n\nHowever, there are a few areas that warrant attention. The complete lack of nonce checks, coupled with the presence of capability checks without clear indication of their scope, raises a minor concern. While the attack surface appears to be zero, the absence of nonce checks could become a vulnerability if any entry points were to be introduced in future updates or if the existing capability checks are not robust enough to prevent privilege escalation. The imperfect output escaping, with 20% of outputs not being properly escaped, also presents a potential risk for cross-site scripting (XSS) vulnerabilities, albeit likely of lower severity given the limited scope of outputs.\n\nNotably, the plugin has no recorded vulnerability history, which is a positive sign. This suggests a history of secure development or diligent patching of any past issues. Overall, nofollowr appears to be a secure plugin with a good track record, but the minor concerns around output escaping and the complete absence of nonce checks should be monitored, especially if the plugin's functionality or attack surface expands in the future.",[181,183],{"reason":182,"points":49},"20% of outputs not properly escaped",{"reason":184,"points":117},"0 nonce checks present","2026-03-17T05:37:24.400Z",{"wat":187,"direct":196},{"assetPaths":188,"generatorPatterns":191,"scriptPaths":192,"versionParams":193},[189,190],"\u002Fwp-content\u002Fplugins\u002Fnofollowr\u002Fcss\u002FNoFollowr-min.css","\u002Fwp-content\u002Fplugins\u002Fnofollowr\u002Fjs\u002FNoFollowr-min.js",[],[190],[194,195],"nofollowr\u002Fcss\u002FNoFollowr-min.css?ver=","nofollowr\u002Fjs\u002FNoFollowr-min.js?ver=",{"cssClasses":197,"htmlComments":199,"htmlAttributes":200,"restEndpoints":203,"jsGlobals":204,"shortcodeOutput":206},[198],"jbPost",[],[201,202],"id=\"jbID-","class=\"jbPost\"",[],[205],"jbirchPlugin",[]]