[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQ4pEtwA4P7bPJAXgxpUUmR8kVQEFBoiT0TQQwMEtbVw":3,"$fvWsnkm2os9xM0DhaIxK_lW2uNWL-dA8GVvy3QO-qR6U":98,"$fK9lxArNUhbwo3PjRXUtXjrANeAwIavtLOeRjxtCawc8":103},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":16,"download_link":18,"security_score":19,"vuln_count":11,"unpatched_count":11,"last_vuln_date":20,"fetched_at":21,"discovery_status":22,"vulnerabilities":23,"developer":24,"crawl_stats":20,"alternatives":31,"analysis":32,"fingerprints":81},"notifications-hider","Notifications Hider","1.0.0","Kantari Samy","https:\u002F\u002Fprofiles.wordpress.org\u002Fleprincenoir\u002F","\u003Cp>=A PLUGIN TO HIDE WORDPRESS NOTIFICATIONS FROM UNAUTHORIZED USERS.=\u003C\u002Fp>\n\u003Cp>Notifications Hider is a WordPress plugin designed to improve the security and management of notifications on your site. It allows you to hide administrative notifications from unauthorized users, ensuring that only the relevant people receive critical information.\u003C\u002Fp>\n\u003Cp>With Notifications Hider, you can :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Control who can see WordPress notifications.\u003C\u002Fli>\n\u003Cli>Ensure a cleaner, less cluttered administration experience.\u003C\u002Fli>\n\u003Cli>Improve security by limiting access to sensitive information.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Languages \u002F Localization\u003C\u002Fh3>\n\u003Cp>Notifications Hider is translated into English and French.\u003C\u002Fp>\n\u003Cp>If you’d like to translate the plugin into your language, \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fnotifications-hider\u002F\" rel=\"nofollow ugc\">please click here\u003C\u002Fa>..\u003C\u002Fp>\n","=A PLUGIN TO HIDE WORDPRESS NOTIFICATIONS FROM UNAUTHORIZED USERS.=",0,824,"2024-03-08T07:12:00.000Z","6.4.8","6.0","",[],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnotifications-hider.1.0.0.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":25,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":27,"avg_security_score":19,"avg_patch_time_days":28,"trust_score":29,"computed_at":30},"leprincenoir",5,460,30,84,"2026-05-20T03:58:18.632Z",[],{"attackSurface":33,"codeSignals":60,"taintFlows":72,"riskAssessment":73,"analyzedAt":80},{"hooks":34,"ajaxHandlers":56,"restRoutes":57,"shortcodes":58,"cronEvents":59,"entryPointCount":11,"unprotectedCount":11},[35,41,45,48,52],{"type":36,"name":37,"callback":38,"file":39,"line":40},"action","admin_init","hide_notifications","notifications-hider.php",42,{"type":36,"name":42,"callback":43,"file":39,"line":44},"admin_menu","add_admin_menu",43,{"type":36,"name":37,"callback":46,"file":39,"line":47},"register_settings",44,{"type":36,"name":49,"callback":50,"file":39,"line":51},"admin_head","load_custom_admin_style",45,{"type":36,"name":53,"callback":54,"file":39,"line":55},"admin_enqueue_scripts","enqueue_codemirror_assets",46,[],[],[],[],{"dangerousFunctions":61,"sqlUsage":62,"outputEscaping":64,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":71},[],{"prepared":11,"raw":11,"locations":63},[],{"escaped":65,"rawEcho":66,"locations":67},15,1,[68],{"file":39,"line":69,"context":70},263,"raw output",[],[],{"summary":74,"deductions":75},"The 'notifications-hider' plugin v1.0.0 exhibits a generally strong security posture based on the provided static analysis.  The absence of any detected AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface.  Furthermore, the code demonstrates good practices with 100% of SQL queries utilizing prepared statements and a high percentage (94%) of output being properly escaped, mitigating common risks like SQL injection and cross-site scripting.  The lack of any recorded vulnerabilities in its history is also a positive indicator.  However, the complete absence of nonce checks and capability checks across all identified entry points (though there are none detected) represents a potential blind spot. If new entry points were to be introduced in future versions without proper authorization checks, they would be immediately unprotected, posing a significant risk.\n\nWhile the current version is clean, the lack of any checks at all is a concern for future maintainability and extensibility. The plugin currently offers no protection against unauthorized actions if new functionalities are added.  The overall risk is currently very low due to the minimal attack surface, but this could change rapidly with any future development if security best practices for authorization and nonces are not implemented.",[76,78],{"reason":77,"points":26},"Missing nonce checks on potential entry points",{"reason":79,"points":26},"Missing capability checks on potential entry points","2026-04-16T14:59:17.599Z",{"wat":82,"direct":90},{"assetPaths":83,"generatorPatterns":85,"scriptPaths":86,"versionParams":88},[84],"\u002Fwp-content\u002Fplugins\u002Fnotifications-hider\u002Fjs\u002Fnotifications-hider.js",[],[87],"js\u002Fnotifications-hider.js",[89],"notifications-hider\u002Fjs\u002Fnotifications-hider.js?ver=",{"cssClasses":91,"htmlComments":92,"htmlAttributes":93,"restEndpoints":95,"jsGlobals":96,"shortcodeOutput":97},[],[],[94],"id='NHider-custom-css'",[],[],[],{"error":99,"url":100,"statusCode":101,"statusMessage":102,"message":102},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fnotifications-hider\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":66,"versions":104},[105],{"version":6,"download_url":18,"svn_tag_url":106,"released_at":20,"has_diff":107,"diff_files_changed":108,"diff_lines":20,"trac_diff_url":20,"vulnerabilities":109,"is_current":99},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fnotifications-hider\u002Ftags\u002F1.0.0\u002F",false,[],[]]