[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$frrCMntZAPnH7qKuPxUe9QOp9Tge-xPTBu6OPwH6TvME":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":138,"fingerprints":199},"simply-change-author-url","Simply Change Author URL","1.1.2","Devi","https:\u002F\u002Fprofiles.wordpress.org\u002Fdev_vahid\u002F","\u003Cp>The plugin Changes wordpress user slug for security reasons, it prevents access to the usernames of registered users on your site.\u003C\u002Fp>\n\u003Cp>By using “Simply Change Author URL” The WordPress default users(authors) Slug and URL addresses will be changed automatically.\u003C\u002Fp>\n\u003Cp>By Default Author URL is: \u003Ccode>example.com\u002Fauthor\u002F[username]\u002F\u003C\u002Fcode>\u003Cbr \u002F>\nafter install this plugin URLs will be changed to: \u003Ccode>example.com\u002Fuser\u002F[user_id]\u002F\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>This will protects the usernames from being easily accessible by cyber attackers.\u003C\u002Fp>\n\u003Cp>This plugin also:\u003Cbr \u002F>\n1. Removes wordpress api user endpoints. (they contain information about users)\u003Cbr \u002F>\n1. Changes canonical links generated by yoast.\u003C\u002Fp>\n","Changes wordpress user slug for security, it prevents access to the usernames of registered users on your site.",40,1740,100,1,"2022-07-25T09:41:00.000Z","6.0.11","4.0.1","5.6.20",[20,21,22,23,24],"author","author-base","author-slug","permalink","security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimply-change-author-url\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimply-change-author-url.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"dev_vahid",30,84,"2026-04-04T05:32:17.532Z",[38,58,81,100,121],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":35,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"edit-author-slug","Edit Author Slug","1.9.2","Brandon Allen","https:\u002F\u002Fprofiles.wordpress.org\u002Fcnorris23\u002F","\u003Cp>This plugin allows full control of your user permalinks, allowing you to change both the author base (the ‘\u002Fauthor\u002F’ portion of the author URLs), and the author slug (defaults to the username of the author). You can set the author base globally, or you can set it to be user-specific based on a user’s role. You now have the power to craft the perfect URL structure for you Author pages.\u003C\u002Fp>\n\u003Cp>WordPress default structure \u003Cem>http:\u002F\u002Fexample.com\u002Fauthor\u002Fusername\u002F\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>Edit Author Slug allows for \u003Cem>http:\u002F\u002Fexample.com\u002Fninja\u002Fmaster-ninja\u002F\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>Using a role-based author base would allow for \u003Cem>http:\u002F\u002Fexample.com\u002Fida\u002Fmaster-splinter\u002F\u003C\u002Fem> (for an Administrator Role), or \u003Cem>http:\u002F\u002Fexample.com\u002Fkoga\u002Fleonardo\u002F\u003C\u002Fem> (for a Subscriber Role).\u003C\u002Fp>\n\u003Cp>Development of this plugin takes place on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthebrandonallen\u002Fedit-author-slug\u002F\" title=\"Edit Author Slug on Github\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. Pull requests are always welcome!\u003C\u002Fp>\n\u003Cp>Translations should be submitted to \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fedit-author-slug\" rel=\"nofollow ugc\">Translate WordPress\u003C\u002Fa>.\u003C\u002Fp>\n","Allows an admin (or capable user) to edit the author slug of a user, and change the author base.",100000,1525613,96,"2025-05-27T04:15:00.000Z","6.8.5","5.8","7.4",[20,21,22,54,55],"nicename","user-nicename","https:\u002F\u002Fgithub.com\u002Fthebrandonallen\u002Fedit-author-slug\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fedit-author-slug.1.9.2.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":78,"download_link":79,"security_score":13,"vuln_count":14,"unpatched_count":28,"last_vuln_date":80,"fetched_at":30},"restrict-usernames-emails-characters","Restrict Usernames Emails Characters","4.1.2","Benaceur","https:\u002F\u002Fprofiles.wordpress.org\u002Fbenaceur\u002F","\u003Cp>This plugin allows you to Restrict a particular or certain username, email addresses or symbols,\u003Cbr \u002F>\nor email from specific domain names in the form registration when registering for your site\u003Cbr \u002F>\nand you can allow to use a certain language (arabic cyrillic latin …)\u003Cbr \u002F>\nor all languages and characters and symbols, you can also control and modify all errors messages\u003Cbr \u002F>\nand allow certain characters (Symbols and characters accented as é û),\u003Cbr \u002F>\nand allowing you to change the author slug (defaults to the username of the author),\u003Cbr \u002F>\nand you can control and adjust all settings from the plugin settings page in admin Panel.\u003C\u002Fp>\n\u003Ch4>and here is all plugin settings in admin Panel:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>enable\u002Fdisable the plugin\u003C\u002Fli>\n\u003Cli>disallow to use the spaces in username\u003C\u002Fli>\n\u003Cli>disallow to use only numbers in username\u003C\u002Fli>\n\u003Cli>disallow all characters (Symbols) in username\u003C\u002Fli>\n\u003Cli>disallow characters (Symbols) permitted by wordpress in username: @ – . _\u003C\u002Fli>\n\u003Cli>allow certain characters (Symbols and characters accented as é û)\u003C\u002Fli>\n\u003Cli>restrict certain email addresses\u003C\u002Fli>\n\u003Cli>restrict certain username\u003C\u002Fli>\n\u003Cli>restrict certain domain names for example: yournamesite@com\u003C\u002Fli>\n\u003Cli>No\u002Fyes uppercase in username\u003C\u002Fli>\n\u003Cli>Compatible with single site, network (multi-site), buddypress and buddyboss.\u003C\u002Fli>\n\u003Cli>The possibility to:\u003C\u002Fli>\n\u003Cli>choose language (characters) in username (arabic cyrillic latin …) or all languages\u003C\u002Fli>\n\u003Cli>remove all settings and data of the plugin from database when the plugin is disabled\u003C\u002Fli>\n\u003Cli>reset default settings\u003C\u002Fli>\n\u003Cli>control and modify all errors messages\u003C\u002Fli>\n\u003Cli>restrict any name contains a part of word (partial matching)\u003C\u002Fli>\n\u003Cli>prevent the use of email in the username\u003C\u002Fli>\n\u003Cli>prevent the use of numbers more than letters and symbols in the user name.\u003C\u002Fli>\n\u003Cli>allowing you to change the author slug\u003C\u002Fli>\n\u003Cli>Author Slug Structure\u003C\u002Fli>\n\u003Cli>Update of the author’s slug for all users\u003C\u002Fli>\n\u003Cli>Limit the number of users to update (in batches) with every click, if your database is big\u003C\u002Fli>\n\u003Cli>Update or convert only names (author slug) not latin\u003C\u002Fli>\n\u003Cli>remove name field in buddypress.\u003C\u002Fli>\n\u003Cli>hide or change message (Must be at least 4 characters, letters and numbers only.) of multisite.\u003C\u002Fli>\n\u003Cli>add an notice or text in registration form.\u003C\u002Fli>\n\u003Cli>etc…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>TRANSLATED IN FOLLOWING LANGUAGES:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Arabic\u003C\u002Fli>\n\u003Cli>English\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Direct support page:\u003C\u002Fh4>\n\u003Cp>https:\u002F\u002Fbenaceur-php.com\u002F?p=2268\u003C\u002Fp>\n","Restrict the usernames, email addresses, characters and symbols or email from specific domain names or language in registration ...",1000,38817,90,25,"2025-12-01T20:58:00.000Z","6.9.4","3.0","5.3.19",[75,22,76,77,24],"anti-spam","registration","restrict-user","https:\u002F\u002Fbenaceur-php.com\u002F?p=2268","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-usernames-emails-characters.4.1.2.zip","2024-01-31 00:00:00",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":48,"num_ratings":91,"last_updated":92,"tested_up_to":50,"requires_at_least":72,"requires_php":93,"tags":94,"homepage":98,"download_link":99,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-author-slug","WP Author Slug","5","Konstantin Obenland","https:\u002F\u002Fprofiles.wordpress.org\u002Fobenland\u002F","\u003Cp>This plugin replaces the author slug with a sanitized version of the user’s display name.\u003C\u002Fp>\n\u003Cp>This plugin will not prevent hackers from finding out your login name but the login name won’t be visible\u003Cbr \u002F>\nin the author archive’s URL, which works towards your friendly URLs with using your display name.\u003C\u002Fp>\n\u003Cp>DO NOT use this on a site with more than 1000 registered users, as updating all of their nicenames at once might break your site.\u003C\u002Fp>\n","Add a layer of security and prevent your login name from being shown in the author archive's URL.",2000,35171,19,"2025-09-09T01:07:00.000Z","",[20,95,24,96,97],"author-archive","slug","url","http:\u002F\u002Fen.wp.obenland.it\u002Fwp-author-slug\u002F?utm_source=wordpress&utm_medium=plugin&utm_campaign=wp-author-slug","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-author-slug.5.zip",{"slug":101,"name":102,"version":72,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":66,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":93,"tags":113,"homepage":118,"download_link":119,"security_score":27,"vuln_count":14,"unpatched_count":28,"last_vuln_date":120,"fetched_at":30},"keyring","Keyring","Beau Lebens","https:\u002F\u002Fprofiles.wordpress.org\u002Fbeaulebens\u002F","\u003Cp>\u003Cstrong>See the \u003Ca href=\"http:\u002F\u002Fdentedreality.com.au\u002Fprojects\u002Fwp-keyring\u002F\" rel=\"nofollow ugc\">Keyring Developer’s Guide\u003C\u002Fa> for more details.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Keyring provides a very hookable, completely customizable framework for connecting your WordPress to an external service. It takes care of all the heavy lifting when making authenticated requests, so all you need to do is implement cool features and not worry about these tricky bits.\u003C\u002Fp>\n\u003Cp>Out of the box, Keyring currently comes with base Service definitions for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>HTTP Basic,\u003C\u002Fli>\n\u003Cli>OAuth1, and\u003C\u002Fli>\n\u003Cli>OAuth2.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And includes ready-to-use definitions for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002F500px.com\u002F\" rel=\"nofollow ugc\">500px\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdelicious.com\u002F\" rel=\"nofollow ugc\">Delicious\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Feventbrite.com\u002F\" rel=\"nofollow ugc\">Eventbrite\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffacebook.com\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffitbit.com\u002F\" rel=\"nofollow ugc\">Fitbit\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fflickr.com\u002F\" rel=\"nofollow ugc\">Flickr\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffoursquare.com\u002F\" rel=\"nofollow ugc\">Foursquare\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Fanalytics\u002F\" rel=\"nofollow ugc\">Google Analytics\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Fcontacts\u002F\" rel=\"nofollow ugc\">Google Contacts\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Fmail\u002F\" rel=\"nofollow ugc\">Google Mail\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Finstagram.com\u002F\" rel=\"nofollow ugc\">Instagram\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Finstapaper.com\u002F\" rel=\"nofollow ugc\">Instapaper\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fjetpack.com\u002F\" rel=\"nofollow ugc\">Jetpack\u003C\u002Fa>\u002F\u003Ca href=\"https:\u002F\u002Fwordpress.com\u002F\" rel=\"nofollow ugc\">WordPress.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Flinkedin.com\u002F\" rel=\"nofollow ugc\">LinkedIn\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmoves-app.com\u002F\" rel=\"nofollow ugc\">Moves\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fnest.com\u002F\" rel=\"nofollow ugc\">Nest\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpinterest.com\u002F\" rel=\"nofollow ugc\">Pinterest\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frunkeeper.com\u002F\" rel=\"nofollow ugc\">RunKeeper\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrava.com\u002F\" rel=\"nofollow ugc\">Strava\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftripit.com\u002F\" rel=\"nofollow ugc\">TripIt\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftumblr.com\u002F\" rel=\"nofollow ugc\">Tumblr\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002F\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fyahoo.com\u002F\" rel=\"nofollow ugc\">Yahoo! Updates\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fyoutube.com\u002F\" rel=\"nofollow ugc\">YouTube\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can very easily write your own Service definitions and then use all the power of Keyring to hook into that authentication flow. See the \u003Ca href=\"http:\u002F\u002Fdentedreality.com.au\u002Fprojects\u002Fwp-keyring\u002F\" rel=\"nofollow ugc\">Keyring Developer’s Guide\u003C\u002Fa> for more details.\u003C\u002Fp>\n\u003Cp>Contributions are welcome via \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbeaulebens\u002Fkeyring\" rel=\"nofollow ugc\">Github pull request\u003C\u002Fa>.\u003C\u002Fp>\n","An authentication framework that handles authorization\u002Fcommunication with most popular web services.",95201,86,6,"2023-04-25T21:21:00.000Z","6.2.9","4.0",[114,115,116,117,24],"authentication","authorization","http-basic","oauth","http:\u002F\u002Fdentedreality.com.au\u002Fprojects\u002Fwp-keyring\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkeyring.3.0.zip","2014-07-07 00:00:00",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":66,"downloaded":129,"rating":13,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":72,"requires_php":93,"tags":133,"homepage":136,"download_link":137,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"sf-author-url-control","SF Author Url Control","1.2","Grégory Viguier","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreglone\u002F","\u003Cp>With this plugin, administrators can change the default author base in the registered users profile url, and the author slug of each user.\u003Cbr \u002F>\nChanging an author slug is a good thing for security (if your login is “This Is Me”, your slug will be “this-is-me”, a bit easy to guess).\u003Cbr \u002F>\nThe plugin adds 2 fields for this purpose, one in permalinks settings, the other in a user profile.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Default: \u003Cem>example.com\u002Fauthor_base\u002Fauthor_nicename\u002F\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Customized: \u003Cem>example.com\u002Fjedi\u002Fobiwan\u002F\u003C\u002Fem>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How to edit the slugs\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Go to \u003Cem>Settings\u003C\u002Fem> > \u003Cem>Permalinks\u003C\u002Fem> to edit the author base: “author” => “jedi”\u003C\u002Fli>\n\u003Cli>Go to \u003Cem>Users\u003C\u002Fem> > \u003Cem>“Any user profile”\u003C\u002Fem> to edit the user slug: “agent-smith” => “obiwan”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>German by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Fcarny88\" rel=\"ugc\">Carny88\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Spanish by \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fprofile\u002Foliverbar\" rel=\"ugc\">Oliver\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Multisite\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>The plugin is ready for Multisite.\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows administrators or capable users to change the users profile url.",21067,11,"2016-04-03T20:36:00.000Z","4.5.33",[20,134,135,23,96],"custom","customize","https:\u002F\u002Fwww.screenfeed.fr\u002Fauturl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsf-author-url-control.zip",{"attackSurface":139,"codeSignals":182,"taintFlows":189,"riskAssessment":190,"analyzedAt":198},{"hooks":140,"ajaxHandlers":178,"restRoutes":179,"shortcodes":180,"cronEvents":181,"entryPointCount":28,"unprotectedCount":28},[141,146,148,151,155,160,164,168,172,175],{"type":142,"name":143,"callback":144,"priority":14,"file":145,"line":27},"action","init","set_author_base","includes\\class-simply-change-author-url.php",{"type":142,"name":143,"callback":147,"file":145,"line":108},"change_author_base",{"type":142,"name":143,"callback":149,"file":145,"line":150},"author_rewrite_rule",87,{"type":142,"name":143,"callback":152,"priority":153,"file":145,"line":154},"flush_if_changed",99,88,{"type":156,"name":157,"callback":158,"priority":153,"file":145,"line":159},"filter","body_class","filter_body_class",89,{"type":156,"name":161,"callback":162,"priority":163,"file":145,"line":68},"author_link","customize_author_link",10,{"type":156,"name":165,"callback":166,"file":145,"line":167},"rest_endpoints","remove_default_user_endpoints",91,{"type":156,"name":169,"callback":170,"file":145,"line":171},"wpseo_canonical","yoast_canonical",92,{"type":156,"name":173,"callback":170,"file":145,"line":174},"wpseo_next_rel_link",93,{"type":156,"name":176,"callback":170,"file":145,"line":177},"wpseo_prev_rel_link",94,[],[],[],[],{"dangerousFunctions":183,"sqlUsage":184,"outputEscaping":186,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":188},[],{"prepared":28,"raw":28,"locations":185},[],{"escaped":14,"rawEcho":28,"locations":187},[],[],[],{"summary":191,"deductions":192},"The \"simply-change-author-url\" v1.1.2 plugin exhibits a strong security posture based on the provided static analysis. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, significantly reducing the plugin's attack surface. The code also demonstrates good practices by not utilizing dangerous functions, employing prepared statements for all SQL queries, and properly escaping all output. Furthermore, the absence of file operations, external HTTP requests, and the lack of specific code signals for nonce or capability checks (while not ideal, their absence is mitigated by the minimal attack surface) suggest a focus on secure coding. The plugin also has no recorded vulnerability history, which is a positive indicator of its stability and security over time. \n\nWhile the static analysis indicates a very secure implementation, the complete absence of capability checks and nonce checks, even with a minimal attack surface, represents a potential area for improvement. If the plugin's functionality were to expand or interact with user-specific data in the future, these checks would become critical. The taint analysis showing zero flows with unsanitized paths is excellent, confirming no direct vulnerabilities were detected in how data moves through the code. Overall, the plugin is well-secured against common vulnerabilities based on this data, with only minor areas for theoretical enhancement in more complex scenarios.",[193,196],{"reason":194,"points":195},"Missing capability checks",5,{"reason":197,"points":195},"Missing nonce checks","2026-03-16T22:06:20.410Z",{"wat":200,"direct":205},{"assetPaths":201,"generatorPatterns":202,"scriptPaths":203,"versionParams":204},[],[],[],[],{"cssClasses":206,"htmlComments":207,"htmlAttributes":209,"restEndpoints":210,"jsGlobals":214,"shortcodeOutput":215},[],[208],"\u003C!-- change author base via this filter -->",[],[211,212,213],"\u002Fwp\u002Fv2\u002Fusers","\u002Fwp\u002Fv2\u002Fusers\u002F(?P[\\d]+)","\u002Fwp\u002Fv2\u002Fusers\u002Fme",[],[]]