[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjrDRR31Ywe_NrXmGxHuF1lCCmEddH3g_Kuh80O9exFU":3,"$frTsHTBM4bzZ71ESz85RFtREEZ70i8at7sSj6nQfetyY":200,"$fIeV_uGdbwfyVRR0D-BBLsUiuJi48_6eQ2pteaRILKdU":205},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":20,"download_link":21,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24,"discovery_status":25,"vulnerabilities":26,"developer":27,"crawl_stats":23,"alternatives":34,"analysis":127,"fingerprints":169},"sbird-latest-feed-card-block","sBird Latest Feed Card Block","1.0.1","sysbird","https:\u002F\u002Fprofiles.wordpress.org\u002Fsysbird\u002F","\u003Cp>This block fetches only the most recent item from another site’s RSS feed and displays it as a card-style layout.\u003C\u002Fp>\n\u003Ch4>How to use\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Add the sBird Latest Feed Card Block in the editor.\u003C\u002Fli>\n\u003Cli>Enter the RSS feed URL you want to fetch in the panel setting [Feed URL].\u003C\u002Fli>\n\u003Cli>Using the site’s URL instead of the RSS feed URL is also OK\u003C\u002Fli>\n\u003Cli>You can choose to show or hide the border.\u003C\u002Fli>\n\u003Cli>You can choose a vertical or horizontal layout.\u003C\u002Fli>\n\u003C\u002Fol>\n","Display the latest entry from an external RSS feed.",0,157,"2026-01-20T07:29:00.000Z","6.9.4","6.7","7.4",[18,19],"block","rss","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsbird-latest-feed-card-block.1.0.1.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},5,190,88,30,86,"2026-05-20T07:43:44.692Z",[35,56,76,94,110],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":11,"num_ratings":11,"last_updated":45,"tested_up_to":14,"requires_at_least":46,"requires_php":47,"tags":48,"homepage":20,"download_link":52,"security_score":53,"vuln_count":54,"unpatched_count":11,"last_vuln_date":55,"fetched_at":24},"display-remote-posts-block","Display Remote Posts Block","1.1.4","Oliver Campion","https:\u002F\u002Fprofiles.wordpress.org\u002Fdomainsupport\u002F","\u003Ch4>Display Remote Posts Block\u003C\u002Fh4>\n\u003Cp>This plugin adds a block in the Gutenberg editor to allow you to display posts from a third party blog.\u003C\u002Fp>\n\u003Cp>Currently this plugin supports the following blog types …\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WordPress.org\u003C\u002Fli>\n\u003Cli>WordPress (self hosted with Jetpack installed)\u003C\u002Fli>\n\u003Cli>WordPress (self hosted)\u003C\u002Fli>\n\u003Cli>Blogger – An issue with feeds.feedburner.com is currently breaking Blogger compatibility\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Contact us in the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fdisplay-remote-posts-block\u002F\" title=\"Support Forum\" rel=\"ugc\">Support Forum\u003C\u002Fa> if you’d like us to add support for another type of blog.\u003C\u002Fp>\n","Block to display recent posts from a WordPress or Blogger blog.",800,15129,"2026-01-12T12:29:00.000Z","5.0","5.6.3",[18,49,50,51,19],"blog","blogger","jetpack","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisplay-remote-posts-block.1.1.4.zip",99,1,"2025-05-07 00:00:00",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":22,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":74,"download_link":75,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"media-feed","Media Feed","2.15","Katsushi Kawamori","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatsushi-kawamori\u002F","\u003Ch4>Creates media feeds.\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Create 5 types of feeds.(Media, Image, Audio, Video, Misc)\u003C\u002Fli>\n\u003Cli>Exclusion by ID is possible.\u003C\u002Fli>\n\u003Cli>Filtering by terms is possible.\u003C\u002Fli>\n\u003Cli>Have link and icon widgets.\u003C\u002Fli>\n\u003Cli>Playlist and icon can be set with shortcode.\u003C\u002Fli>\n\u003C\u002Ful>\n","Creates media feeds.",20,9722,2,"2026-03-29T21:38:00.000Z","7.0","6.6","8.0",[18,72,73,19],"feed","media","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmedia-feed\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmedia-feed.2.15.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":11,"num_ratings":11,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":20,"tags":89,"homepage":91,"download_link":92,"security_score":93,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"block-rss-reading","Block RSS Reading","1.0","Madalin Adrian","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmbdstopme\u002F","\u003Cp>The main reason i’ve made this plugin is to block those who want to copy the contents of WordPress’s default RSS Feed.\u003C\u002Fp>\n","This a simple to use WordPress plugin that let you to set another RSS Feed Url to be displayed for one or a list of many IP's.",10,1820,"2013-06-07T22:33:00.000Z","3.5.2","3.0",[72,90,19],"ip-block","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblock-rss-reading\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblock-rss-reading.zip",85,{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":84,"downloaded":102,"rating":11,"num_ratings":11,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":20,"download_link":109,"security_score":93,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"rss-feed-block","RSS Feed Block (Gutenberg)","0.3","aatanasov","https:\u002F\u002Fprofiles.wordpress.org\u002Faatanasov\u002F","\u003Cp>This is a Gutenberg block that pulls posts from an RSS feed.\u003C\u002Fp>\n\u003Cp>The plugin uses the \u003Ccode>fetch_feed\u003C\u002Fcode> WordPress function to display the entries from a feed on your website (https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Ffetch_feed).\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cp>Gutenberg has to be installed on your WordPress instance in order to use this plugin.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>Once the plugin is installed, you’ll first need to enter the URL of your feed URL. There is a helpful button for validating the feed URL. If there is something wrong, an error will appear.\u003C\u002Fp>\n\u003Cp>Here are the available feed options:\u003Cbr \u002F>\n 1. Number of posts to be shown on the front-end. The default number is 10.\u003Cbr \u002F>\n 2. Whether to show the descriptions of the posts on the front-end.\u003Cbr \u002F>\n 3. Whether to show the dates of the posts on the front-end.\u003Cbr \u002F>\n 4. Whether to show the content of the posts on the front-end.\u003C\u002Fp>\n\u003Ch3>WordPress Hooks\u003C\u002Fh3>\n\u003Cp>There are a few WordPress hooks that allows you to modify the output. All of them are related to the front-end.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Actions\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>grf_before_items -- called before displaying the feed on your site.\n\ngrf_before_item -- called before each feed entry.\n\ngrf_after_item -- called after each feed entry.\n\ngrf_after_items -- called after all listed entries.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Filters\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>grf_frontend_output -- allows you to modify the HTML markup that will be displayed on the site.\u003Ch3>Front-end error messages\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In case, a feed isn’t configured or it isn’t a valid one, the following messages might appear on the page that uses the custom block:\u003Cbr \u002F>\n – Missing feed URL: \u003Ccode>Please set the URL of the RSS feed through the WordPress dashboard.\u003C\u002Fcode>\u003Cbr \u002F>\n – Incorrect feed: \u003Ccode>Please make sure the provided URL is a valid feed.\u003C\u002Fcode>\u003Cbr \u002F>\n – No posts: \u003Ccode>No feed items found.\u003C\u002Fcode>\u003C\u002Fp>\n","This is a WordPress plugin that registers a Gutenberg block. The block displays posts from an RSS feed.",1896,"2022-06-10T20:43:00.000Z","6.0.11","5.0.0","5.6",[18,72,108,19],"gutenberg","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frss-feed-block.0.3.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":11,"downloaded":118,"rating":11,"num_ratings":11,"last_updated":119,"tested_up_to":120,"requires_at_least":46,"requires_php":68,"tags":121,"homepage":125,"download_link":126,"security_score":93,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"content-visibility-rss-feed","Content Visibility RSS Feed","0.1.3","Rich Tape","https:\u002F\u002Fprofiles.wordpress.org\u002Fiamfriendly\u002F","\u003Cp>Show or Hide certain pieces of content on your RSS Feeds. WordPress by default has RSS Feeds for a whole bunch of your content; posts, categories, tags, date, authors, and more besides. Content Visibility RSS Feeds allows you to choose precisely what is shown (And not shown) to RSS Feed Readers.\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>Development is mostly done on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Frichardtape\u002Fcontent-visibility-rss-feed\u002Fissues\u002Fnew\" rel=\"nofollow ugc\">github\u003C\u002Fa> and releases are made there and here to the WordPress plugins directory.\u003C\u002Fp>\n","As RSS Feed add-on for Content Visibility.",3182,"2022-12-14T22:32:00.000Z","6.1.10",[18,122,123,19,124],"content","contentvisibility","visibility","https:\u002F\u002Frichardtape.com\u002Fcontent-visibility\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-visibility-rss-feed.0.1.3.zip",{"attackSurface":128,"codeSignals":153,"taintFlows":160,"riskAssessment":161,"analyzedAt":168},{"hooks":129,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":11,"unprotectedCount":11},[130,136,141,145],{"type":131,"name":132,"callback":133,"file":134,"line":135},"action","init","sbird_latest_feed_card_block_init","sbird-latest-feed-card-block.php",70,{"type":137,"name":138,"callback":139,"priority":84,"file":134,"line":140},"filter","block_type_metadata_settings","sbird_latest_feed_card_block_filter_metadata_settings",87,{"type":131,"name":142,"callback":143,"file":134,"line":144},"enqueue_block_assets","sbird_latest_feed_card_block_enqueue_block_style",128,{"type":131,"name":146,"callback":147,"file":134,"line":148},"enqueue_block_editor_assets","sbird_latest_feed_card_block_enqueue_editor_style",173,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":11,"externalRequests":54,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":159},[],{"prepared":11,"raw":11,"locations":156},[],{"escaped":64,"rawEcho":11,"locations":158},[],[],[],{"summary":162,"deductions":163},"The sbird-latest-feed-card-block plugin version 1.0.1 presents a relatively strong security posture based on the provided static analysis.  The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface.  Furthermore, the code demonstrates good security practices by employing prepared statements for all SQL queries and properly escaping all output, which mitigates common vulnerabilities like SQL injection and cross-site scripting. The lack of file operations and the presence of only one external HTTP request are also positive indicators.\n\nHowever, there are areas that warrant attention. The complete absence of nonce checks and capability checks across all potential entry points (though currently zero) is a notable weakness. While there are no identified entry points with these checks missing currently, if any were to be introduced in future versions without these security mechanisms, it could lead to significant vulnerabilities such as Cross-Site Request Forgery (CSRF). The plugin's vulnerability history is clean, indicating a potentially well-maintained codebase to date. In conclusion, while the current version is commendable for its secure coding practices and limited attack surface, the lack of built-in protection mechanisms like nonces and capability checks represents a potential future risk should the plugin evolve to include user-interactive features.",[164,166],{"reason":165,"points":84},"No nonce checks implemented",{"reason":167,"points":84},"No capability checks implemented","2026-04-16T14:32:35.539Z",{"wat":170,"direct":186},{"assetPaths":171,"generatorPatterns":183,"scriptPaths":184,"versionParams":185},[172,173,174,175,176,177,178,179,180,181,182],"\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Fsbird-latest-feed-card-block\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002FeditorStyle.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Fsbird-latest-feed-card-block\u002FeditorStyle.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Feditor.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Findex.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Feditor.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Fsbird-latest-feed-card-block\u002Feditor.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Findex.css","\u002Fwp-content\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbuild\u002Fsbird-latest-feed-card-block\u002Findex.css",[],[],[],{"cssClasses":187,"htmlComments":189,"htmlAttributes":190,"restEndpoints":197,"jsGlobals":198,"shortcodeOutput":199},[4,188],"wp-block-sysbird-sbird-latest-feed-card-block",[],[191,192,193,194,195,196],"data-feed-url","data-number-of-posts","data-show-excerpt","data-excerpt-length","data-show-date","data-date-format",[],[],[],{"error":201,"url":202,"statusCode":203,"statusMessage":204,"message":204},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fsbird-latest-feed-card-block\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":66,"versions":206},[207,213],{"version":6,"download_url":21,"svn_tag_url":208,"released_at":23,"has_diff":209,"diff_files_changed":210,"diff_lines":23,"trac_diff_url":211,"vulnerabilities":212,"is_current":201},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsbird-latest-feed-card-block\u002Ftags\u002F1.0.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fsbird-latest-feed-card-block%2Ftags%2F1.0.0&new_path=%2Fsbird-latest-feed-card-block%2Ftags%2F1.0.1",[],{"version":214,"download_url":215,"svn_tag_url":216,"released_at":23,"has_diff":209,"diff_files_changed":217,"diff_lines":23,"trac_diff_url":23,"vulnerabilities":218,"is_current":209},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsbird-latest-feed-card-block.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsbird-latest-feed-card-block\u002Ftags\u002F1.0.0\u002F",[],[]]