[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCUxMlw2KaB6lZJlzSE1N170UoLpgy5jI0XesxFlz_IY":3,"$f59xKBNGI4U6pPMJRxzWFLtQxASf1c1nIurBF0oP25qw":160,"$fL-UC2WocXStzQaOJ7iMxthYsNmaU5X3pEyUJuUG_nkY":164},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":36,"analysis":37,"fingerprints":124},"smarttag-optimizer","SmartTag Optimizer","1.1","kodeala","https:\u002F\u002Fprofiles.wordpress.org\u002Fkodeala\u002F","\u003Cp>SmartTag Optimizer is a powerful WordPress plugin designed to streamline image metadata management. Easily view all images on your site, bulk edit ALT tags, titles, descriptions, and captions for better SEO and accessibility. The plugin also connects to Google’s Vision AI to automatically generate ALT tag descriptions, making image optimization faster and more efficient.\u003C\u002Fp>\n\u003Cp>Additionally, SmartTag Optimizer lets you track where each image appears across your website, helping you identify unused images and optimize your media library. With its intuitive interface, the plugin streamlines image management, saving you time while enhancing your site’s SEO performance.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the Google Cloud Vision API to automatically generate ALT tags for images. It is required to analyze images and provide relevant descriptions for better SEO and accessibility.\u003C\u002Fp>\n\u003Ch3>Google Cloud Vision API\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>What the service is and what it is used for:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe Google Cloud Vision API is a third-party service provided by Google that allows the plugin to analyze images and generate ALT tags based on image content. This helps optimize images for SEO and accessibility.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>What data is sent and when:\u003C\u002Fstrong>\u003Cbr \u002F>\nWhen an image is processed for generating ALT tags, the image data is sent to the Google Cloud Vision API for analysis. This data is sent at the time of ALT tag generation.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Terms of Service and Privacy Policy:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe data sent to Google Cloud Vision is governed by Google’s Terms of Service and Privacy Policy. You can review them at the following links:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcloud.google.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Google Cloud Vision API Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">Google Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Ca href=\"https:\u002F\u002Fwww.kodeala.com\" rel=\"nofollow ugc\">Kodeala\u003C\u002Fa>.\u003C\u002Fp>\n","Bulk edit image metadata in one place. Use Google's Vision API to generate ALT tags and track image usage to find unused images easily.",0,313,"2025-04-13T19:37:00.000Z","6.7.5","5.8","7.4",[18,19,20,21],"ai-alt-tags","auto-generate-alt-tags","bulk-edit-image-tags","optimize-image-alt-tags","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmarttag-optimizer.1.1.zip",92,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},4,60,98,30,93,"2026-05-19T15:16:12.294Z",[],{"attackSurface":38,"codeSignals":81,"taintFlows":91,"riskAssessment":117,"analyzedAt":123},{"hooks":39,"ajaxHandlers":58,"restRoutes":78,"shortcodes":79,"cronEvents":80,"entryPointCount":30,"unprotectedCount":11},[40,46,53],{"type":41,"name":42,"callback":43,"file":44,"line":45},"action","admin_enqueue_scripts","kodeala_smarttag_style_script_loader","inc\u002Fenqueue-scripts.php",29,{"type":47,"name":48,"callback":49,"priority":50,"file":51,"line":52},"filter","wp_insert_post_data","kodeala_smarttag_allow_empty_title",10,"inc\u002Ffind-images.php",111,{"type":41,"name":54,"callback":55,"file":56,"line":57},"admin_menu","kodeala_smarttag_add_admin_menu","inc\u002Fsmarttag-menu.php",14,[59,66,71,75],{"action":60,"nopriv":61,"callback":62,"hasNonce":63,"hasCapCheck":61,"file":64,"line":65},"kodeala_fetch_images",false,"kodeala_smarttag_fetch_images_callback",true,"inc\u002Fadmin-page.php",141,{"action":67,"nopriv":61,"callback":68,"hasNonce":63,"hasCapCheck":61,"file":69,"line":70},"generate_alt_text","kodeala_smarttag_generate_alt_text","inc\u002Fgenerator.php",182,{"action":72,"nopriv":61,"callback":72,"hasNonce":63,"hasCapCheck":63,"file":73,"line":74},"kodeala_smarttag_save_api_key","inc\u002Fsave-data.php",18,{"action":76,"nopriv":61,"callback":76,"hasNonce":63,"hasCapCheck":63,"file":73,"line":77},"kodeala_smarttag_save_image_meta",73,[],[],[],{"dangerousFunctions":82,"sqlUsage":83,"outputEscaping":85,"fileOperations":11,"externalRequests":88,"nonceChecks":30,"capabilityChecks":89,"bundledLibraries":90},[],{"prepared":11,"raw":11,"locations":84},[],{"escaped":86,"rawEcho":11,"locations":87},48,[],1,2,[],[92,109],{"entryPoint":93,"graph":94,"unsanitizedCount":11,"severity":108},"kodeala_smarttag_save_api_key (inc\u002Fsave-data.php:5)",{"nodes":95,"edges":106},[96,101],{"id":97,"type":98,"label":99,"file":73,"line":100},"n0","source","$_POST['kodeala_smarttag_api_key']",13,{"id":102,"type":103,"label":104,"file":73,"line":100,"wp_function":105},"n1","sink","update_option() [Settings Manipulation]","update_option",[107],{"from":97,"to":102,"sanitized":63},"low",{"entryPoint":110,"graph":111,"unsanitizedCount":11,"severity":108},"\u003Csave-data> (inc\u002Fsave-data.php:0)",{"nodes":112,"edges":115},[113,114],{"id":97,"type":98,"label":99,"file":73,"line":100},{"id":102,"type":103,"label":104,"file":73,"line":100,"wp_function":105},[116],{"from":97,"to":102,"sanitized":63},{"summary":118,"deductions":119},"The \"smarttag-optimizer\" v1.1 plugin exhibits a strong security posture based on the provided static analysis. All identified entry points, including AJAX handlers, lack direct authentication bypass vulnerabilities, suggesting proper nonce and capability checks are in place for these functions. The complete absence of raw SQL queries, with 100% adherence to prepared statements, significantly mitigates the risk of SQL injection. Furthermore, all output is properly escaped, and no file operations or suspicious code signals were detected. The plugin also correctly performs nonce checks and capability checks where applicable.\n\nWhile the static analysis reveals no critical or high-severity issues within the code itself, and the vulnerability history is clean with no recorded CVEs, there is one external HTTP request. This type of functionality can introduce risks if the external service is compromised or if the data being sent is sensitive and not properly handled. However, without further information on the nature of this external request, it's difficult to assign a definitive risk level. Overall, the plugin demonstrates good security practices, but the single external HTTP request warrants a minor caution.",[120],{"reason":121,"points":122},"External HTTP request detected",5,"2026-04-16T13:12:39.862Z",{"wat":125,"direct":135},{"assetPaths":126,"generatorPatterns":129,"scriptPaths":130,"versionParams":132},[127,128],"\u002Fwp-content\u002Fplugins\u002Fsmarttag-optimizer\u002Fassets\u002Fcss\u002Fstyles.css","\u002Fwp-content\u002Fplugins\u002Fsmarttag-optimizer\u002Fassets\u002Fjs\u002Ffunctions.js",[],[131],"..\u002Fassets\u002Fjs\u002Ffunctions.js",[133,134],"smarttag-optimizer\u002Fassets\u002Fcss\u002Fstyles.css?ver=","smarttag-optimizer\u002Fassets\u002Fjs\u002Ffunctions.js?ver=",{"cssClasses":136,"htmlComments":150,"htmlAttributes":151,"restEndpoints":156,"jsGlobals":157,"shortcodeOutput":159},[137,138,139,140,141,142,143,144,145,146,147,148,149],"kodeala-smarttag-buttons","kodeala-smarttag-tabcontent","kodeala-smarttag-medialist","kodeala-smarttag-settings","smarttag-body","smarttag-img-column","smarttag-body-count","smarttag-notfound","smarttag-bttn","smarttag-details-column","smarttag-details-filename","smarttag-body-textarea","generate-bttn",[],[152,153,154,155],"data-target","data-field","data-imageid","data-image",[],[158],"smarttagAjax",[],{"error":63,"url":161,"statusCode":162,"statusMessage":163,"message":163},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fsmarttag-optimizer\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":89,"versions":165},[166,171],{"version":6,"download_url":23,"svn_tag_url":167,"released_at":25,"has_diff":61,"diff_files_changed":168,"diff_lines":25,"trac_diff_url":169,"vulnerabilities":170,"is_current":63},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsmarttag-optimizer\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fsmarttag-optimizer%2Ftags%2F1.0&new_path=%2Fsmarttag-optimizer%2Ftags%2F1.1",[],{"version":172,"download_url":173,"svn_tag_url":174,"released_at":25,"has_diff":61,"diff_files_changed":175,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":176,"is_current":61},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmarttag-optimizer.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsmarttag-optimizer\u002Ftags\u002F1.0\u002F",[],[]]