[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwRV4XO8j6VxKXHJ4WVut9j0RsigCZwB6BtG0dccuByQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":126,"fingerprints":176},"post-status-indicator","Post Status Indicator","1.0.1","Sean Hayes","https:\u002F\u002Fprofiles.wordpress.org\u002Fseanchayes\u002F","\u003Cp>Adds and allows customization of a visual indicator in WordPress admin for the publish state of your content.\u003Cbr \u002F>\nTo help you visually organize your content viewing the All Posts screen choose colors for each post status and see your content displayed with those colors\u003C\u002Fp>\n\u003Cp>The plugin also allows you to choose the menu location for the plugin settings page (screen shot #2)\u003C\u002Fp>\n\u003Cp>Options included letting you choose from it’s own page or a child of either Settings or Tools menus.\u003C\u002Fp>\n","Allow color customization in WordPress admin for the publish state of your content.",0,904,"2021-01-07T17:41:00.000Z","5.6.17","3.8","7.0",[18,19,20,21,22],"admin","post-status","posts","status","workflow","https:\u002F\u002Fwww.seanhayes.biz\u002Fpost-status-indicator-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-status-indicator.1.0.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"seanchayes",3,20010,95,30,91,"2026-04-03T23:13:10.585Z",[38,59,72,86,106],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":56,"download_link":57,"security_score":58,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"lh-archived-post-status","LH Archived Post Status","3.11","shawfactor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshawfactor\u002F","\u003Cp>This plugin allows you to archive your WordPress content similar to the way you archive your e-mail. Unlike other archiving solutions though this actually does it all and does it properly\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Makes a new post status available in the drop down called Archived\u003C\u002Fli>\n\u003Cli>Hides or removes your content without having to trash the content\u003C\u002Fli>\n\u003Cli>Content can either be hidden entirely from public view  or simply from the main loop and feed and pages, with other solutions you can only hide it from public view.\u003C\u002Fli>\n\u003Cli>Allows you to add a label to the title of those posts\u002Fpages etc that are archived\u003C\u002Fli>\n\u003Cli>Allows you to add a message to the top of the post\u002Fpage etc that the content is no longer up too date\u003C\u002Fli>\n\u003Cli>Allows you to set an archiving date after which content is automatically changed to having an archived status\u003C\u002Fli>\n\u003Cli>Compatible with posts, pages and custom post types\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is ideal for sites where certain kinds of content is not meant to be evergreen\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-archived-post-status\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-archived-post-status\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n","Allows posts and pages to be archived so you can remove content from the main loop and feed without having to trash it.",4000,50462,82,18,"2024-10-16T05:00:00.000Z","6.6.5","5.0","",[18,55,20,21,22],"pages","https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-archived-post-status\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-archived-post-status.zip",92,{"slug":60,"name":61,"version":62,"author":42,"author_profile":43,"description":63,"short_description":64,"active_installs":11,"downloaded":65,"rating":11,"num_ratings":11,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":53,"tags":69,"homepage":70,"download_link":71,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"lh-inclusive-private-pages","LH Inclusive Private Pages","1.00","\u003Cp>Allow draft, private (and other post types by filter) pages to be selected as parents in page dropdowns. Private posts, pages, and CPTs may also be added to menus.\u003C\u002Fp>\n\u003Cp>In addition if a user cannot access the post, page, or CPT (due to its post status) it will not appera to that user in the menu.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-inclusive-private-pages\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-inclusive-private-pages\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n","Extends the CRM possibilities for wordpress by allowing private posts\u002Fpages, and other CPt´s to be included in menus and also as the parent of other p …",1005,"2022-08-05T03:27:00.000Z","6.0.11","4.7",[18,55,20,21,22],"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-inclusive-private-pages\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-inclusive-private-pages.zip",{"slug":73,"name":74,"version":75,"author":42,"author_profile":43,"description":76,"short_description":77,"active_installs":11,"downloaded":78,"rating":79,"num_ratings":80,"last_updated":81,"tested_up_to":67,"requires_at_least":82,"requires_php":53,"tags":83,"homepage":84,"download_link":85,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"lh-logged-in-post-status","LH Logged In Post Status","1.09","\u003Cp>Sometimes you need to restrict access to content but give all logged in users access, whilst not allowing regular visitors. This plugin facilitates that\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Flh-logged-in-post-status\u002F\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Love this plugin or want to help the LocalHero Project? Please consider \u003Ca href=\"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-logged-in-post-status\u002F\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n","Allows you to restrict access to posts, pges etc to logged in users only.",1432,100,1,"2022-08-03T03:56:00.000Z","4.0",[18,55,20,21,22],"https:\u002F\u002Flhero.org\u002Fportfolio\u002Flh-logged-in-post-status\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flh-logged-in-post-status.zip",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":79,"num_ratings":96,"last_updated":97,"tested_up_to":98,"requires_at_least":15,"requires_php":53,"tags":99,"homepage":104,"download_link":105,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"post-status-menu-items","Post Status Menu Items","1.5.0","mrwweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fmrwweb\u002F","\u003Cp>This plugin is useful for people who regularly use all or most of the post statuses with Posts, Pages, or Custom Post Types. Post Status Menu Items does the following:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Show each post status and number of posts with that status (e.g. “Drafts (7)”) in each post type’s admin menu.\u003C\u002Fli>\n\u003Cli>Show the number of Posts with each post status in the “Right Now” \u002F “At a Glance” admin Dashboard Widget.\u003C\u002Fli>\n\u003Cli>Show post status icons with each status at the top of admin post list pages.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Options give control over which post statuses are displayed and in which menus those statuses are displayed. Post statuses in the “Right Now” \u002F “At a Glance” admin Dashboard widget can also be turned off.\u003C\u002Fp>\n\u003Cp>Screenshots of all features and settings are available on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-status-menu-items\u002Fscreenshots\u002F\" rel=\"ugc\">the Screenshots page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Plugin settings available on \u003Cstrong>Settings > Writing\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Statuses with 0 posts are never displayed.\u003C\u002Fli>\n\u003Cli>Posts are the only post type for which the post status menu items are enabled by default.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin works with custom statuses created by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fedit-flow\u002F\" rel=\"ugc\">Edit Flow\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Farchived-post-status\u002F\" rel=\"ugc\">Archived Post Status\u003C\u002Fa>, \u003Ca href=\"http:\u002F\u002Fwww.advancedcustomfields.com\u002Fresources\u002Fsynchronized-json\u002F\" rel=\"nofollow ugc\">Advanced Custom Field PRO “Sync Available” status\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-page-ordering\u002F\" rel=\"ugc\">Simple Page Ordering\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002Fregister_post_status\" rel=\"nofollow ugc\">\u003Ccode>register_post_status()\u003C\u002Fcode>\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Other Plugins by MRWweb\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffeature-a-page-widget\u002F\" rel=\"ugc\">Feature a Page Widget\u003C\u002Fa> – Shows a summary of any Page in any sidebar.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmrw-web-design-simple-tinymce\u002F\" rel=\"ugc\">MRW Web Design Simple TinyMCE\u003C\u002Fa> – A compact page editor to encourage good formatting.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-type-archive-descriptions\u002F\" rel=\"ugc\">Post Type Archive Description\u003C\u002Fa> – Enables an editable description for a post type to display at the top of the post type archive page.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhawaiian-characters\u002F\" rel=\"ugc\">Hawaiian Characters\u003C\u002Fa> – Adds the correct characters with diacriticals to the WordPress editor Character Map for Hawaiian\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds post status links–e.g. \"Draft\" (7)–to post type admin menus and a few other nice goodies.",200,10990,6,"2018-12-05T16:47:00.000Z","5.0.25",[100,101,19,102,103],"admin-menu","drafts","post-statuses","wp-admin","https:\u002F\u002FMRWweb.com\u002Fwordpress-post-status-menu-item-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpost-status-menu-items.1.5.0.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":79,"downloaded":114,"rating":79,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":119,"tags":120,"homepage":124,"download_link":125,"security_score":79,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"pending-status","Pending Status","1.0.4","Room 34 Creative Services, LLC","https:\u002F\u002Fprofiles.wordpress.org\u002Froom34\u002F","\u003Cp>\u003Cstrong>Pending Status\u003C\u002Fstrong> is a super-simple solution for WordPress sites that need very basic workflow functionality. It’s easy to set up and doesn’t overload your site with unnecessary features.\u003C\u002Fp>\n\u003Cp>If you have Contributors who can create, but not publish, their own content on your site, Pending Status notifies you of any pending posts that are ready to review. By default, all users with the Administrator or Editor role will see a \u003Cstrong>Pending Status\u003C\u002Fstrong> box on the Dashboard, showing the counts of pending posts, with a convenient link to the list of pending posts for that post type.\u003C\u002Fp>\n\u003Cp>Optionally, you can also identify one or more Administrators\u002FEditors to receive email notifications whenever a post is saved with “pending” status. The subject and message of the email are fully editable, and a direct edit link for the post is included in the body of the email.\u003C\u002Fp>\n\u003Cp>Pending Status works with \u003Cem>all\u003C\u002Fem> publicly queryable post types: Posts, Pages, and even Custom Post Types created by third party plugins (e.g. WooCommerce, The Events Calendar, etc.), or your own custom code.\u003C\u002Fp>\n","Get notified when your site has posts pending review.",3677,2,"2025-04-24T17:36:00.000Z","6.8.5","4.9","7.0.0",[121,122,123,19,22],"notifications","pending","pending-review","https:\u002F\u002Froom34.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpending-status.1.0.4.zip",{"attackSurface":127,"codeSignals":161,"taintFlows":168,"riskAssessment":169,"analyzedAt":175},{"hooks":128,"ajaxHandlers":145,"restRoutes":146,"shortcodes":159,"cronEvents":160,"entryPointCount":115,"unprotectedCount":11},[129,135,138,142],{"type":130,"name":131,"callback":132,"file":133,"line":134},"action","admin_enqueue_scripts","post_status_indicator","post-status-indicator.php",57,{"type":130,"name":131,"callback":136,"file":133,"line":137},"post_status_dashboard",58,{"type":130,"name":139,"callback":140,"file":133,"line":141},"admin_menu","psi_options_page",59,{"type":130,"name":143,"callback":143,"file":133,"line":144},"rest_api_init",60,[],[147,155],{"namespace":148,"route":149,"methods":150,"callback":152,"permissionCallback":153,"file":133,"line":154},"psi\u002Fv1","\u002Fsettings",[151],"GET","get_psi_options","closure",149,{"namespace":148,"route":149,"methods":156,"callback":157,"permissionCallback":153,"file":133,"line":158},[151],"save_psi_options",157,[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":31,"bundledLibraries":167},[],{"prepared":11,"raw":11,"locations":164},[],{"escaped":11,"rawEcho":11,"locations":166},[],[],[],{"summary":170,"deductions":171},"The post-status-indicator plugin v1.0.1 exhibits a strong security posture based on the provided static analysis. A significant strength is the complete absence of dangerous functions, raw SQL queries, unescaped output, file operations, external HTTP requests, and unsanitized taint flows. The plugin also demonstrates good practice by securing all identified entry points (REST API routes) with permission callbacks and implementing capability checks, indicating a focus on restricting access to sensitive functionalities.  Furthermore, the lack of any recorded vulnerabilities, including CVEs, suggests a history of secure development or minimal exposure to common attack vectors.\n\nHowever, a minor point of concern is the absence of nonce checks on any entry points. While the REST API routes are protected by permission callbacks, nonces are an additional layer of defense against Cross-Site Request Forgery (CSRF) attacks, especially if these routes are intended to be accessible to authenticated users without administrative privileges. The plugin's overall small attack surface (2 entry points) and the fact that these are properly protected mitigate this concern significantly. In conclusion, the plugin is generally secure with a robust foundation, but incorporating nonce checks on its REST API endpoints would further enhance its resilience against CSRF.",[172],{"reason":173,"points":174},"Missing nonce checks on entry points",5,"2026-03-17T06:31:43.459Z",{"wat":177,"direct":186},{"assetPaths":178,"generatorPatterns":181,"scriptPaths":182,"versionParams":183},[179,180],"\u002Fwp-content\u002Fplugins\u002Fpost-status-indicator\u002Fcss\u002Fpost-status-indicator.css","\u002Fwp-content\u002Fplugins\u002Fpost-status-indicator\u002Fpsi-dashboard\u002Fdist\u002Fjs\u002Fpost-status-indicator.js",[],[180],[184,185],"post-status-indicator\u002Fcss\u002Fpost-status-indicator.css?ver=","post-status-indicator\u002Fpsi-dashboard\u002Fdist\u002Fjs\u002Fpost-status-indicator.js?ver=",{"cssClasses":187,"htmlComments":190,"htmlAttributes":191,"restEndpoints":192,"jsGlobals":194,"shortcodeOutput":196},[188,189],"status-","subsubsub",[],[],[193],"\u002Fwp-json\u002Fpsi\u002Fv1\u002Fsettings",[195],"psi_config",[]]