[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fV9P0uTMGm0O3_wwNqwSkFVLB5R3aRfstxLxMYaTVZGY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":147,"fingerprints":185},"spoiler-alert-js","Spoiler alert JS","1.0","Luc D","https:\u002F\u002Fprofiles.wordpress.org\u002Flucdlb\u002F","\u003Cp>Blur any spoiler alert with the Spoiler alert JS shortcode. Anything between [spoiler] and [\u002Fspoiler] will be blurred. Blur focuses a bit on hover, and disappears on click. Click again to make it blurred again…\u003C\u002Fp>\n","Blur any spoiler alert with the Spoiler alert JS shortcode. Anything between [spoiler] and [\u002Fspoiler] will be blurred. Blur focuses a bit on hover, an &hellip;",50,2138,0,"2015-10-23T11:15:00.000Z","4.3.34","4.3.1","",[19,20,21,22],"alert","blur","javascript","spoiler","http:\u002F\u002Fwww.arthos.fr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspoiler-alert-js.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"lucdlb",2,130,30,84,"2026-04-05T18:48:03.237Z",[37,53,79,102,123],{"slug":38,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":13,"num_ratings":13,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":17,"tags":49,"homepage":51,"download_link":52,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wp-spoiler-alert","0.8.3","Darshan Sawardekar","https:\u002F\u002Fprofiles.wordpress.org\u002Fdsawardekar\u002F","\u003Cp>This plugin adds the shortcode \u003Ccode>[spoiler]\u003C\u002Fcode> to WordPress. Any content\u003Cbr \u002F>\nwrapped inside this shortcode is blurred out. It can be revealed by\u003Cbr \u002F>\nclicking on the blurred content.\u003C\u002Fp>\n\u003Cp>The shortcode takes a \u003Ccode>mode\u003C\u002Fcode> parameter, which defaults to \u003Ccode>block\u003C\u002Fcode>. This\u003Cbr \u002F>\nwraps your content inside a div. To add spoilers that are inside to your\u003Cbr \u002F>\ntext use the mode \u003Ccode>inline\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>Eg:- Some [spoiler mode=’inline’]super secret stuff[\u002Fspoiler] here!\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Inspired by the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjoshbuddy\u002Fspoiler-alert\" rel=\"nofollow ugc\">spoilerAlert\u003C\u002Fa> jQuery plugin by \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjoshbuddy\" rel=\"nofollow ugc\">Joshua Hull\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Shortcode to hide Spoilers in your Posts.",20,2677,"2014-08-07T14:05:00.000Z","3.9.40","3.5.0",[22,50],"spoiler-alert","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-spoiler-alert","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-spoiler-alert.0.8.3.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":63,"num_ratings":64,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":17,"tags":68,"homepage":74,"download_link":75,"security_score":76,"vuln_count":31,"unpatched_count":77,"last_vuln_date":78,"fetched_at":27},"siteguard","SiteGuard WP Plugin","1.7.9","jp-secure","https:\u002F\u002Fprofiles.wordpress.org\u002Fjp-secure\u002F","\u003Cp>You can find docs, FAQ and more detailed information on \u003Ca href=\"https:\u002F\u002Fwww.jp-secure.com\u002Fsiteguard_wp_plugin_en\u002F\" rel=\"nofollow ugc\">English Page\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fwww.jp-secure.com\u002Fsiteguard_wp_plugin\u002F\" rel=\"nofollow ugc\">Japanese Page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Simply install the SiteGuard WP Plugin, WordPress security is improved.\u003Cbr \u002F>\nThis plugin is a security plugin that specializes in the login attack of brute force, such as protection and management capabilities.\u003C\u002Fp>\n\u003Cp>Notes\u003C\u002Fp>\n\u003Cul>\n\u003Cli>It does not support the multisite function of WordPress.\u003C\u002Fli>\n\u003Cli>It only supports Apache 1.3, 2.x for Web servers.\u003C\u002Fli>\n\u003Cli>To use the CAPTCHA function, the expansion library “mbstring” and “gd” should be installed on php.\u003C\u002Fli>\n\u003Cli>To use the management page filter function and login page change function, “mod_rewrite” should be loaded on Apache.\u003C\u002Fli>\n\u003Cli>To use the WAF Tuning Support, WAF ( SiteGuard Server Edition ) should be installed on Apache.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>There are the following functions.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Admin Page IP Filter\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function for the protection against the attack to the management page (under wp-admin.)\u003Cbr \u002F>\nTo the access from the connection source IP address which does not login to the management page, 404 (Not Found) is returned.\u003Cbr \u002F>\nAt the login, the connection source IP address is recorded and the access to that page is allowed.\u003Cbr \u002F>\nThe connection source IP address which does not login for more than 24 hours is sequentially deleted.\u003Cbr \u002F>\nThe URL (under wp-admin) where this function is excluded can be specified.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Rename Login\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against an illegal login attempt attack such as a brute force attack or a password list attack.\u003Cbr \u002F>\nThe login page name (wp-login.php) is changed. The initial value is “login_\u003C5 random digits>” but it can be changed to a favorite name.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>CAPTCHA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against an illegal login attempt attack such as a brute force attack or a password list attack,\u003Cbr \u002F>\nor to receive less comment spam. For the character of CAPTCHA, hiragana and alphanumeric characters can be selected.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login Lock\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against an illegal login attempt attack such as a brute force attack or a password list attack.\u003Cbr \u002F>\nEspecially, it is the function to prevent an automated attack. The connection source IP address the number of login failure of which reaches\u003Cbr \u002F>\nthe specified number within the specified period is blocked for the specified time.\u003Cbr \u002F>\nEach user account is not locked.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login Alert\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to make it easier to notice unauthorized login. E-mail will be sent to a login user when logged in.\u003Cbr \u002F>\nIf you receive an e-mail to there is no logged-in idea, please suspect unauthorized login.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Fail Once\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against a password list attack. Even is the login input is correct, the first login must fail.\u003Cbr \u002F>\nAfter 5 seconds and later within 60 seconds, another correct login input make login succeed. At the first login failure, the following error message is displayed.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable Pingback\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The pingback function is disabled and its abuse is prevented.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Block Author Query\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Prevents leakage of user names due to “\u002F?author=” access.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Updates Notify\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Basic of security is that always you use the latest version. If WordPress core, plugins, and themes updates are needed , sends email to notify administrators.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WAF Tuning Support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to create the rule to avoid the false detection in WordPress (including 403 error occurrence with normal access,)\u003Cbr \u002F>\nif WAF ( SiteGuard Server Edition ) by EG Secure Solutions is installed on a Web server. WAF prevents the attack from the outside against the Web server,\u003Cbr \u002F>\nbut for some WordPress or plugin functions, WAF may detect the attack which is actually not attack and block the function.\u003Cbr \u002F>\nBy creating the WAF exclude rule, the WAF protection function can be activated while the false detection for the specified function is prevented.\u003C\u002Fp>\n\u003Ch4>Translate\u003C\u002Fh4>\n\u003Cp>If you have created your own language pack, or have an update of an existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">gettext PO and MO files\u003C\u002Fa> to sgdev@jp-secure.com so that We can bundle it into SiteGuard WP Plugin. You can download the latest \u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsiteguard\u002Ftrunk\u002Flanguages\u002Fsiteguard.pot\" rel=\"nofollow ugc\">POT file\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsiteguard\u002Fbranches\u002Flanguages\u002F\" rel=\"nofollow ugc\">PO files in each language\u003C\u002Fa>.\u003C\u002Fp>\n","SiteGurad WP Plugin is the plugin specialized for the protection against the attack to the management page and login.",600000,5177761,86,15,"2025-12-04T04:47:00.000Z","6.9.4","3.9",[69,70,71,72,73],"captcha","login-alert","login-lock","pingback","security","http:\u002F\u002Fwww.jp-secure.com\u002Fcont\u002Fproducts\u002Fsiteguard_wp_plugin\u002Findex_en.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsiteguard.1.7.9.zip",76,1,"2026-02-23 00:00:00",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":66,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":99,"download_link":100,"security_score":89,"vuln_count":31,"unpatched_count":13,"last_vuln_date":101,"fetched_at":27},"shortcoder","Shortcoder — Create Shortcodes for Anything","6.5.2","vaakash","https:\u002F\u002Fprofiles.wordpress.org\u002Fvaakash\u002F","\u003Cp>Shortcoder plugin allows to create a custom shortcodes for HTML, JavaScript, CSS and other code snippets. Now the shortcodes can be used in posts\u002Fpages and the snippet will be replaced in place.\u003C\u002Fp>\n\u003Ch3>✍ Create shortcodes easily\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Give a name for the shortcode\u003C\u002Fli>\n\u003Cli>Paste the HTML\u002FJavaScript\u002FCSS as shortcode content\u003C\u002Fli>\n\u003Cli>Save !\u003C\u002Fli>\n\u003Cli>Now insert the shortcode \u003Ccode>[sc name=\"my_shortcode\"]\u003C\u002Fcode> in your post\u002Fpage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Voila !\u003C\u002Fstrong> You got the HTML\u002FJavascript\u002FCSS in your post.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>✨ Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create \u003Cstrong>custom shortcodes\u003C\u002Fstrong> easily and use them in any place where shortcode is supported.\u003C\u002Fli>\n\u003Cli>Have any \u003Cstrong>HTML\u003C\u002Fstrong>, \u003Cstrong>Javascript\u003C\u002Fstrong>, \u003Cstrong>CSS\u003C\u002Fstrong> as Shortcode content.\u003C\u002Fli>\n\u003Cli>Insert: \u003Cstrong>Custom parameters\u003C\u002Fstrong> in shortcode\u003C\u002Fli>\n\u003Cli>Insert: \u003Cstrong>WordPress parameters\u003C\u002Fstrong> in shortcode\u003C\u002Fli>\n\u003Cli>Multiple editors: Code, Visual and text modes.\u003C\u002Fli>\n\u003Cli>Globally disable the shortcode when not needed.\u003C\u002Fli>\n\u003Cli>Disable shortcode on desktop, mobile devices.\u003C\u002Fli>\n\u003Cli>A button in post editor to pick the shortcodes to insert.\u003C\u002Fli>\n\u003Cli>Execute blocks HTML in shortcode content.\u003C\u002Fli>\n\u003Cli>Insert shortcodes in Gutenberg\u002Fblock editor.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🎲 An example usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Create a shortcode named “adsenseAd” in the Shortcoder admin page.\u003C\u002Fli>\n\u003Cli>Paste the adsense code in the box given and save it.\u003C\u002Fli>\n\u003Cli>Use \u003Ccode>[sc name=\"adsenseAd\"]\u003C\u002Fcode> in your posts and pages.\u003C\u002Fli>\n\u003Cli>Tada !!! the ad code is replaced and it appears in the post.\u003C\u002Fli>\n\u003Cli>Now you can edit the ad code at one place and the code is updated in all the locations where the shortcode is used.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Similarly shortcodes can be created for frequently used snippets.\u003C\u002Fp>\n\u003Cp>You can also add \u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fdocs\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">custom parameters\u003C\u002Fa> (like \u003Ccode>%%id%%\u003C\u002Fcode>) inside the snippets, and change it’s value like \u003Ccode>[sc name=\"youtube\" id=\"GrlRADfvjII\"]\u003C\u002Fcode> when using them.\u003C\u002Fp>\n\u003Ch3>🧱 Using in block editor\u003C\u002Fh3>\n\u003Cp>Though shortcodes can be used in \u003Cstrong>any\u003C\u002Fstrong> place manually, Shortcoder provides below options to select and insert the shortcodes created easily when working with the block editor.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shortcoder block\u003C\u002Fli>\n\u003Cli>Toolbar button to select and insert shortcodes inline (under “more”)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>💎 Upgrade to PRO\u003C\u002Fh3>\n\u003Cp>Shortcoder also provides a \u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa> which has additional features to further enhance the experience. Below features are offered in the PRO version.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Custom editor\u003C\u002Fstrong> – Edit Shortcode content using block editor or page builder plugins like Elementor and WPBakery.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>(New) Translation with WPML\u003C\u002Fstrong> – Translate Shortcode content with WPML.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Revisions\u003C\u002Fstrong> – Revisions support for Shortcode content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Locate shortcode\u003C\u002Fstrong> – Search posts and pages where a shortcode is used.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Extra code\u003C\u002Fstrong> – Include extra code to the footer when a shortcode is used in a page.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">Get started with Shortcoder – PRO\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fdocs\u002Fshortcoder\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fdocs\u002Fshortcoder\u002Ffaq\u002F\" rel=\"nofollow ugc\">FAQs\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fforum\u002F\" rel=\"nofollow ugc\">Support forum\u002FReport bugs\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F#pro\" rel=\"nofollow ugc\">PRO features\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Create custom \"Shortcodes\" easily for HTML, JavaScript, CSS code snippets and use the shortcodes within posts, pages & widgets",100000,1888190,98,225,"2026-03-01T17:44:00.000Z","4.9.0","5.3",[95,96,21,97,98],"code","html","shortcode","snippets","https:\u002F\u002Fwww.aakashweb.com\u002Fwordpress-plugins\u002Fshortcoder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshortcoder.6.5.2.zip","2026-01-09 00:00:00",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":87,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":66,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":119,"download_link":120,"security_score":121,"vuln_count":112,"unpatched_count":13,"last_vuln_date":122,"fetched_at":27},"vk-blocks","VK Blocks","1.116.2.0","Vektor,Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fvektor-inc\u002F","\u003Cp>This is a plugin that extends Gutenberg’s blocks.\u003C\u002Fp>\n\u003Cp>[Blocks]\u003Cbr \u002F>\n* Alert\u003Cbr \u002F>\n* Balloon\u003Cbr \u002F>\n* Border Box\u003Cbr \u002F>\n* Button\u003Cbr \u002F>\n* Classic FAQ\u003Cbr \u002F>\n* New FAQ\u003Cbr \u002F>\n* Flow\u003Cbr \u002F>\n* Heading (not recommended)\u003Cbr \u002F>\n* Icon\u003Cbr \u002F>\n* Icon Outer\u003Cbr \u002F>\n* Page Content\u003Cbr \u002F>\n* PR Blocks (not recommended)\u003Cbr \u002F>\n* PR Content (not recommended)\u003Cbr \u002F>\n* Responsive Spacer\u003Cbr \u002F>\n* Staff (not recommended)\u003Cbr \u002F>\n* Page list from ancestor\u003Cbr \u002F>\n* Slider\u003Cbr \u002F>\n* Visual Embed\u003Cbr \u002F>\n* Accordion [ Pro ]\u003Cbr \u002F>\n* Animation [ Pro ]\u003Cbr \u002F>\n* Archive list [ Pro ]\u003Cbr \u002F>\n* Blog Card [ Pro ]\u003Cbr \u002F>\n* Breadcrumb [ Pro ]\u003Cbr \u002F>\n* Button Outer [ Pro ]\u003Cbr \u002F>\n* Card [ Pro ] (not recommended)\u003Cbr \u002F>\n* Category Badge [ Pro ]\u003Cbr \u002F>\n* Child page list [ Pro ]\u003Cbr \u002F>\n* Dynamic Text ( Post Type name \u002F Ancestor Page name ) [ Pro ]\u003Cbr \u002F>\n* Fixed Display [ Pro ]\u003Cbr \u002F>\n* Icon Card [ Pro ] (not recommended)\u003Cbr \u002F>\n* Post list [ Pro ]\u003Cbr \u002F>\n* Post list Slider [ Pro ]\u003Cbr \u002F>\n* New Badge [ Pro ]\u003Cbr \u002F>\n* Selected Post List [ Pro ]\u003Cbr \u002F>\n* Step [ Pro ]\u003Cbr \u002F>\n* Tab [ Pro ]\u003Cbr \u002F>\n* Table of Contents [ Pro ]\u003Cbr \u002F>\n* Taxonomy [ Pro ]\u003Cbr \u002F>\n* Timeline [ Pro ]\u003Cbr \u002F>\n* Grid Column [ Pro ]\u003Cbr \u002F>\n* Grid Column Card [ Pro ]\u003Cbr \u002F>\n* Outer [ Pro ]\u003C\u002Fp>\n\u003Cp>[Extensions]\u003Cbr \u002F>\n* Hidden extension\u003Cbr \u002F>\n* Highlighter\u003Cbr \u002F>\n* Inline Font Size\u003Cbr \u002F>\n* Margin extension\u003Cbr \u002F>\n* Nowrap\u003Cbr \u002F>\n* Responsive BR\u003Cbr \u002F>\n* Columns direction\u003Cbr \u002F>\n* Custom CSS [ Pro ]\u003Cbr \u002F>\n* Link toolbar\u003C\u002Fp>\n\u003Cp>[ Settings ]\u003Cbr \u002F>\n* Balloon\u003Cbr \u002F>\n* Custom Format [ Pro ]\u003Cbr \u002F>\n* Custom Block Style [ Pro ]\u003Cbr \u002F>\n* Common Margin\u003Cbr \u002F>\n* Load Separate\u003Cbr \u002F>\n* FAQ Block [ Pro ]\u003Cbr \u002F>\n* Custom CSS [ Pro ]\u003Cbr \u002F>\n* Block Manager\u003Cbr \u002F>\n* Block Style Manager\u003C\u002Fp>\n\u003Cp>[ Tools ]\u003Cbr \u002F>\n* Import Export\u003C\u002Fp>\n\u003Cp>[ Editing and correction ]\u003C\u002Fp>\n\u003Cp>The source code of this plugin is below.\u003Cbr \u002F>\nhttps:\u002F\u002Fgithub.com\u002Fvektor-inc\u002Fvk-blocks\u003C\u002Fp>\n","This is a plugin that extends Gutenberg's blocks.",4536310,96,6,"2026-02-16T06:56:00.000Z","6.5","7.4",[19,117,118],"faq","gutenberg","https:\u002F\u002Fgithub.com\u002Fvektor-inc\u002Fvk-blocks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvk-blocks.1.116.2.0.zip",97,"2025-03-06 21:13:55",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":87,"downloaded":131,"rating":89,"num_ratings":132,"last_updated":133,"tested_up_to":134,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":143,"download_link":144,"security_score":145,"vuln_count":112,"unpatched_count":13,"last_vuln_date":146,"fetched_at":27},"wp-asset-clean-up","Asset CleanUp: Page Speed Booster","1.4.0.3","Gabe Livan","https:\u002F\u002Fprofiles.wordpress.org\u002Fgabelivan\u002F","\u003Cp>Don’t just minify & combine CSS\u002FJavaScript files ending up with large, bloated and slow loading pages: \u003Cstrong>Strip the “fat” first and get a faster website\u003C\u002Fstrong> 🙂\u003C\u002Fp>\n\u003Cp>Faster page load = Happier Visitors = More Conversions = More Revenue\u003C\u002Fp>\n\u003Cp>There are often times when you are using a theme and a number of plugins which are enabled and run on the same page. However, you don’t need to use all of them and to improve the speed of your website and make the HTML source code cleaner (convenient for debugging purposes), it’s better to prevent those styles and scripts from loading.\u003C\u002Fp>\n\u003Cp>For instance, you might use a plugin that generates contact forms and it loads its assets (.CSS and .JS files) in every page of your website instead of doing it only in the \u002Fcontact page (if that’s the only place where you need it).\u003C\u002Fp>\n\u003Cp>“Asset CleanUp” scans your page and detects all the assets that are loaded. All you have to do when editing a page\u002Fpost is just to select the CSS\u002FJS that are not necessary to load, this way reducing the bloat.\u003C\u002Fp>\n\u003Cp>The plugin works best in combination with a cache plugin (e.g. WP Rocket, WP Fastest Cache, W3 Total Cache), a hosting company that offers packages with server-level caching available (e.g. WP Engine, Kinsta) or a service like Cloudflare that has page caching enabled.\u003C\u002Fp>\n\u003Ch4>Main plugin’s benefits include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Decreases the number of HTTP requests loaded and eliminate render-blocking resources (important for faster page load) by unloading useless CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Preload CSS\u002FJS, Local Fonts & Google Fonts files to instruct the browser to download the chosen assets as soon as possible\u003C\u002Fli>\n\u003Cli>Minify CSS files (including inline code within STYLE tags)\u003C\u002Fli>\n\u003Cli>Minify JavaScript files (including inline code within SCRIPT tags)\u003C\u002Fli>\n\u003Cli>Combine remaining loaded CSS & JavaScript files\u003C\u002Fli>\n\u003Cli>Inline CSS Files (automatically & by specifying the path to the stylesheets)\u003C\u002Fli>\n\u003Cli>Defer combined JavaScript files by applying “defer” attribute to the SCRIPT tags\u003C\u002Fli>\n\u003Cli>Site-wide removal for Emojis, Dashicons for guest users and Comment Reply if they are not used\u003C\u002Fli>\n\u003Cli>Disable RSS Feeds\u003C\u002Fli>\n\u003Cli>Reduces the HTML code of the actual page (that’s even better if GZIP compression is enabled)\u003C\u002Fli>\n\u003Cli>Makes source code easier to scan in case you’re a developer and want to search for something\u003C\u002Fli>\n\u003Cli>Remove possible conflicts between plugins\u002Ftheme (e.g. 2 JavaScript files that are loading from different plugins and they interfere one with another)\u003C\u002Fli>\n\u003Cli>Better performance score if you test your URL on websites such as GTmetrix, PageSpeed Insights, Pingdom Website Speed Test\u003C\u002Fli>\n\u003Cli>Google will love your website more as it would be faster and fast page load is nowadays a factor in search ranking\u003C\u002Fli>\n\u003Cli>Your server access log files (e.g the Apache ones) will be easier to scan and would take less space on your server\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Google Fonts Optimization \u002F Removal\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Combine all Google Font requests into fewer (usually one) requests, saving one round trip to the server for each additional font requested\u003C\u002Fli>\n\u003Cli>Choose between three methods of delivery: Render-blocking, Asynchronous via Web Font Loader (webfont.js) or Asynchronous by preloading the CSS stylesheet\u003C\u002Fli>\n\u003Cli>Option to preload Google Font Files from fonts.gstatic.com (e.g. ending in .woff2)\u003C\u002Fli>\n\u003Cli>Apply “font-display” CSS property to all loaded Google Font requests\u003C\u002Fli>\n\u003Cli>Enable preconnect resource hint for fonts.gstatic.com in case you use Google Fonts; don’t let the browser wait until it fetches the CSS for loading the font files before it begins DNS\u002FTCP\u002FTLS\u003C\u002Fli>\n\u003Cli>Remove all Google Font requests including link\u002Ffont preloads, @import\u002F@font-face from CSS files & STYLE tags, resource hints\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Local Fonts Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Preload local font files (ending in .woff, .woff2, .ttf, etc.)\u003C\u002Fli>\n\u003Cli>Apply “font-display:” CSS property to @font-face from existing to LINK \u002F STYLE tags to improve the PageSpeed score for “Ensure text remains visible during webfont load”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Critical CSS\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>You can add already generated critical CSS (e.g. via tools such as \u003Ca href=\"https:\u002F\u002Fwww.corewebvitals.io\u002Ftools\u002Fcritical-css-generator\" rel=\"nofollow ugc\">Advanced Critical CSS Generator\u003C\u002Fa> customly for the homepage, posts, pages, taxonomy pages (e.g. category), archive pages (e.g. date, author), search, 404 not found\u003C\u002Fli>\n\u003Cli>The critical CSS can be added within the Dashboard as well as via code \u002F \u003Ca href=\"https:\u002F\u002Fwww.assetcleanup.com\u002Fdocs\u002F?p=608\" rel=\"nofollow ugc\">Read More\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Remove useless links, meta tags and HTML comments within the HEAD and BODY (footer) tags of the website\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Really Simple Discovery (RSD) link tag\u003C\u002Fli>\n\u003Cli>REST API link tag\u003C\u002Fli>\n\u003Cli>Pages\u002FPosts Shortlink tag\u003C\u002Fli>\n\u003Cli>WordPress version meta tag (also good for security reasons)\u003C\u002Fli>\n\u003Cli>All “generator” meta tags (also good for security reasons)\u003C\u002Fli>\n\u003Cli>RSS Feed Link Tags (usually they are not needed if your website is not used for blogging purposes)\u003C\u002Fli>\n\u003Cli>oEmbeds, if you do not need to embed videos (e.g. YouTube), tweets and audios\u003C\u002Fli>\n\u003Cli>Valid HTML Comments (exceptions from stripping can be added and Internet Explorer conditional comments are preserved)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Each option can be turned on\u002Foff depending on your needs. Instructions about each of them are given in the plugin’s settings page.\u003C\u002Fp>\n\u003Ch4>Disable partially or completely XML-RPC protocol\u003C\u002Fh4>\n\u003Cp>This is an API service used by WordPress for 3rd party applications, such as mobile apps, communication between blogs and plugins such as Jetpack. If you use or are planning to use a remote system to post content to your website, you can keep this feature enabled (which it is by default). Many users do not use this function at all and if you’re one of them, you can disable it.\u003C\u002Fp>\n\u003Cp>Plugin works with WordPress Multisite Network enabled!\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Asset CleanUp Pro\u003C\u002Fstrong>\u003Cbr \u002F>\n  This plugin is the lite version of Asset CleanUp Pro that comes with more benefits including managing assets (CSS & JS files) on all WordPress pages, unloading plugins site-wide or via Regex(es), apply “async” and “defer” attributes on loaded JavaScript files which would boost the speed score even higher, move the loading location of CSS\u002FJS files (from HEAD to BODY to reduce render-blocking or vice-versa if you need specific files to trigger earlier) and premium support. \u003Ca href=\"https:\u002F\u002Fwww.gabelivan.com\u002Fitems\u002Fwp-asset-cleanup-pro\u002F?utm_source=wp_org_lite&utm_medium=inside_quote\" rel=\"nofollow ugc\">Click here to purchase Asset CleanUp Pro!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>NOTES\u003C\u002Fh4>\n\u003Cp>People that have tested the plugin are so far happy with it and I want to keep a good reputation for it. In case something is not working for you or have any suggestions, please write to me on the forum and I will be happy to assist you. \u003Cstrong>BEFORE rating this plugin\u003C\u002Fstrong>, please check the following post http:\u002F\u002Fchrislema.com\u002Ftheres-wrong-way-give-plugin-feedback-wordpress-org\u002F and then use your common sense when writing the feedback 🙂\u003C\u002Fp>\n\u003Ch4>GO PRO\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Unload CSS\u002FJS files on all WordPress pages including Categories, Tags, Custom Taxonomy (e.g. WooCommerce product category), 404 Not Found, Date & Author Archives, Search Results)\u003C\u002Fli>\n\u003Cli>Unload plugins in the frontend view (for guest visitors) * This will not just unload the CSS\u002FJS files loaded from the plugins, but everything else related to them (e.g. slow database queries)\u003C\u002Fli>\n\u003Cli>Unload plugins within the Dashboard \u002Fwp-admin\u002F * Do you have any slow pages that are loading within the Dashboard? You can reduce seconds in page load for some bulky ones or fix plugin conflicts\u003C\u002Fli>\n\u003Cli>Instruct the browser to download a CSS\u002FJS file based on the visitor’s screen size (e.g. avoid downloading assets in mobile view when they are not needed, if the screen size is smaller than 768px)\u003C\u002Fli>\n\u003Cli>Defer CSS by appending it to the BODY to load it asynchronously (Render blocking CSS delays a web page from being visible in a timely manner)\u003C\u002Fli>\n\u003Cli>Move JavaScript files from HEAD to BODY and vice-versa (CSS files moved to the BODY are automatically deferred)\u003C\u002Fli>\n\u003Cli>Defer JavaScript loaded files (by applying “defer” attribute to any enqueued JS file)\u003C\u002Fli>\n\u003Cli>Async JavaScript loaded files (by applying “async” attribute to any enqueued JS file)\u003C\u002Fli>\n\u003Cli>Inline JavaScript files (automatically & by specifying the path to the stylesheets)\u003C\u002Fli>\n\u003Cli>Priority in releasing new features & other improvements (updates that are meant for both Lite and Pro plugins are first released to the Pro users)\u003C\u002Fli>\n\u003Cli>Premium support and updates within the Dashboard\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Give Asset CleanUp a try! If you want to unlock all features, you can \u003Ca href=\"https:\u002F\u002Fwww.gabelivan.com\u002Fitems\u002Fwp-asset-cleanup-pro\u002F?utm_source=wp_org_lite&utm_medium=go_pro\" rel=\"nofollow ugc\">Upgrade to the Pro version\u003C\u002Fa>.\u003C\u002Fp>\n","Make your website load FASTER by stopping specific styles (.CSS) & scripts (.JS) from loading. It works best with a page caching plugin \u002F service.",4846454,1550,"2025-03-12T21:24:00.000Z","6.7.5","4.5","5.6",[138,139,140,141,142],"defer-css-javascript","dequeue","minify-css","minify-javascript","page-speed","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-asset-clean-up\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-asset-clean-up.1.4.0.3.zip",89,"2024-11-27 00:00:00",{"attackSurface":148,"codeSignals":168,"taintFlows":175,"riskAssessment":176,"analyzedAt":184},{"hooks":149,"ajaxHandlers":159,"restRoutes":160,"shortcodes":161,"cronEvents":167,"entryPointCount":31,"unprotectedCount":13},[150,156],{"type":151,"name":152,"callback":153,"file":154,"line":155},"action","init","init_spoiler_alert_js","spoiler-alert-js.php",41,{"type":151,"name":152,"callback":157,"file":154,"line":158},"register_shortcode",57,[],[],[162,165],{"tag":22,"callback":163,"file":154,"line":164},"render_shortcode",52,{"tag":22,"callback":163,"file":154,"line":166},61,[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":174},[],{"prepared":13,"raw":13,"locations":171},[],{"escaped":13,"rawEcho":13,"locations":173},[],[],[],{"summary":177,"deductions":178},"The \"spoiler-alert-js\" v1.0 plugin exhibits a strong security posture based on the provided static analysis. There are no identified dangerous functions, SQL queries are all prepared, and output is properly escaped. The absence of file operations and external HTTP requests further minimizes potential attack vectors. The taint analysis shows no unsanitized paths, indicating that data is not being improperly handled from user input to sensitive operations. The vulnerability history is clean, with no recorded CVEs, suggesting a history of secure development or limited exposure.  However, the lack of any nonce or capability checks, combined with the presence of two shortcodes as entry points, presents a potential area of concern. While the current analysis indicates no unprotected entry points, future versions or misconfigurations could inadvertently expose these shortcodes to unauthorized use if proper authorization checks are not implemented. Overall, the plugin is well-coded from a security perspective, but the absence of authorization checks on its entry points warrants vigilance.",[179,182],{"reason":180,"points":181},"No nonce checks on entry points",5,{"reason":183,"points":181},"No capability checks on entry points","2026-03-16T21:53:26.433Z",{"wat":186,"direct":192},{"assetPaths":187,"generatorPatterns":189,"scriptPaths":190,"versionParams":191},[188],"\u002Fwp-content\u002Fplugins\u002Fspoiler-alert-js\u002Fjs\u002Fspoiler.min.js",[],[188],[],{"cssClasses":193,"htmlComments":195,"htmlAttributes":196,"restEndpoints":197,"jsGlobals":198,"shortcodeOutput":199},[194],"spoiler-",[],[],[],[],[200,201],"\u003Cspoiler class=\"spoiler-","\".spoilerAlert({"]