[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9ELXP2Sovq46QSvchf7OdYMRqjJWa7vaFnGOcilaxBw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":146,"fingerprints":202},"startbox-easy-hooks","StartBox Easy Hooks","1.1","Michael Beckwith","https:\u002F\u002Fprofiles.wordpress.org\u002Ftw2113\u002F","\u003Cp>Easily insert most kinds of content or markup into the various hooks available in the StartBox Theme Framework, without editing any theme files. This allows you to further customize your StartBox based project without having to deal with code and manually adding WordPress hooks.\u003C\u002Fp>\n\u003Cp>For more information on the StartBox Theme Framework in general, visit \u003Ca href=\"http:\u002F\u002Fwpstartbox.com\" rel=\"nofollow ugc\">StartBox\u003C\u002Fa>, and for hooks, \u003Ca href=\"http:\u002F\u002Fdocs.wpstartbox.com\u002FHooks\" rel=\"nofollow ugc\">StartBox Hooks\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>All official development on this plugin is on GitHub. Version bumps will still be published here on WordPress.org. You can find the repo at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWebDevStudios\u002FStartBox-Easy-Hooks\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002FWebDevStudios\u002FStartBox-Easy-Hooks\u003C\u002Fa>. Please file issues, bugs, and enhancement ideas there, when possible.\u003C\u002Fp>\n","Easily hook content in Startbox Theme Framework.",10,2318,100,3,"","3.5.2","3.0",[19,20,21,22,23],"customization","display","functions","hooks","theme","http:\u002F\u002Fwpstartbox.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstartbox-easy-hooks.1.1.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"tw2113",9,370,91,1,94,"2026-04-05T02:27:19.538Z",[39,60,83,103,123],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":15,"tags":54,"homepage":57,"download_link":58,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"astra-hooks","Astra Hooks","1.0.2","Brainstorm Force","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainstormforce\u002F","\u003Cp>Astra uses the WordPress Hooks API to insert actions throughout the theme. This plugin allows you to hook your custom content, shortcodes, or JavaScript code into various hook locations.\u003C\u002Fp>\n\u003Cp>Once installed, you will see a new tab in the Customizer. See screenshots for more information.\u003C\u002Fp>\n\u003Cp>To see all of the available hooks in Astra, visit this page.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fdevelopers.wpastra.com\u002Ftheme-visual-hooks\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fdevelopers.wpastra.com\u002Ftheme-visual-hooks\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Need to add dynamic content with various conditions? Please consider the \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002F?utm_source=wp-org&utm_medium=readme&utm_campaign=astra-hooks\" rel=\"nofollow ugc\">Astra Pro Addon\u003C\u002Fa>. Custom Layouts module in Astra Pro Addon offers functionality so you can add dynamic content (PHP Code) easily.\u003C\u002Fp>\n","Add your content to Hooks in the Astra theme from the customizer.",20000,160661,90,6,"2025-12-01T09:45:00.000Z","6.9.4","4.4",[40,55,56],"astra-theme","customizer-hooks","https:\u002F\u002Fwpastra.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fastra-hooks.1.0.2.zip","2026-03-15T15:16:48.613Z",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":70,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":15,"tags":75,"homepage":80,"download_link":81,"security_score":82,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"homepage-control","Homepage Control","2.0.3","WooThemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoothemes\u002F","\u003Cp>Using Homepage Control, any theme which uses a “homepage” (or other) hook to display components on a homepage, just got better. Re-order or disable any of the homepage components added by your theme, and control the display and order of any function hooked on to the “homepage” hook.\u003C\u002Fp>\n\u003Cp>Looking for a helping hand? \u003Ca href=\"http:\u002F\u002Fdocs.woocommerce.com\u002Fdocument\u002Fhomepage-control\u002F\" rel=\"nofollow ugc\">View plugin documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>Once activated, a “Homepage Control” item will display in the Theme Customizer ( Appearance > Customizer ).\u003C\u002Fp>\n\u003Cp>Visiting this screen will display a table of the possible homepage components, with options for re-ordering them, or disabling individual components.\u003C\u002Fp>\n\u003Cp>Once done, click the “Save Changes” button, to commit your new component order into the system.\u003C\u002Fp>\n","Re-order or disable the homepage components in certain themes.",10000,337606,84,19,"2020-08-27T14:40:00.000Z","5.2.24","3.8.1",[76,77,78,22,79],"components","customizer","homepage","theme-mod","http:\u002F\u002Fwww.woocommerce.com\u002Fproducts\u002Fhomepage-control\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhomepage-control.2.0.3.zip",85,{"slug":84,"name":85,"version":17,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":68,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":101,"download_link":102,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"hookmeup","HookMeUp for WooCommerce","Get Bowtied","https:\u002F\u002Fprofiles.wordpress.org\u002Fgetbowtied\u002F","\u003Cp>\u003Cstrong>HookMeUp for WooCommerce\u003C\u002Fstrong> helps non-developers insert additional content, banners, shortcodes by exploiting key areas in \u003Cstrong>any\u003C\u002Fstrong> WooCommerce Theme, without altering the theme’s code.\u003C\u002Fp>\n\u003Cp>Explore and use hidden places in pages like: Shop, Product Page, Cart, Checkout, Login, Register, My account, Thank You Page.\u003C\u002Fp>\n\u003Cp>Add banners, text, links, call to actions or anything you can think of in strategic spots on your site that you can’t normally manipulate.\u003C\u002Fp>\n\u003Cp>Insert custom content via \u003Cstrong>WordPress Dashboard\u003C\u002Fstrong> > \u003Cstrong>Appearance\u003C\u002Fstrong> > \u003Cstrong>Customize\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>No coding required.\u003C\u002Fp>\n\u003Cp>The plugin was built to answer common questions such as:\u003Cbr \u002F>\nHow to add a banner above the shop page?\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FY8_u5AuX8_g?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>HookMeUp for WooCommerce will help you add additional content in the following WooCommerce templates:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shop & Categories (Archives)\u003C\u002Fli>\n\u003Cli>Single Product\u003C\u002Fli>\n\u003Cli>Cart\u003C\u002Fli>\n\u003Cli>Cart Widget\u003C\u002Fli>\n\u003Cli>Thank You Page\u003C\u002Fli>\n\u003Cli>Checkout\u003C\u002Fli>\n\u003Cli>Login \u002F Register\u003C\u002Fli>\n\u003Cli>My Account\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>HookMeUp for WooCommerce uses SDK (Software Development Kit) to collect some telemetry data \u003Cstrong>upon user’s confirmation\u003C\u002Fstrong>. This helps us to troubleshoot problems faster & make product improvements. The SDK \u003Cstrong>does not gather any data by default\u003C\u002Fstrong>. The SDK only starts gathering basic telemetry data \u003Cstrong>when a user allows it\u003C\u002Fstrong> via the admin notice. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n","Additional content and Customization for WooCommerce Templates.",361673,98,7,"2025-09-29T10:35:00.000Z","6.8.5","6.0","7.4.1",[98,22,99,23,100],"customize","templates","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhookmeup\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhookmeup.3.0.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":13,"num_ratings":113,"last_updated":114,"tested_up_to":94,"requires_at_least":115,"requires_php":116,"tags":117,"homepage":15,"download_link":121,"security_score":91,"vuln_count":35,"unpatched_count":26,"last_vuln_date":122,"fetched_at":59},"wps-child-theme-generator","WPS Child Theme Generator","1.5.5.2","NicolasKulka","https:\u002F\u002Fprofiles.wordpress.org\u002Fnicolaskulka\u002F","\u003Ch4>Français\u003C\u002Fh4>\n\u003Cp>WPS Child Theme Generator est un outil avancé pour créer facilement autant de thèmes enfants que nécessaire. Il est livré avec de nombreuses options qui peuvent être ajoutées à votre functions.php sans avoir besoin de le modifier. Vous pouvez également ajouter votre propre CSS dans style.css.\u003C\u002Fp>\n\u003Cp>Options\u003C\u002Fp>\n\u003Col>\n\u003Cli>Ajoutez votre capture d’écran de WordPress\u003C\u002Fli>\n\u003Cli>Supprimer les tailles d’image\u003C\u002Fli>\n\u003Cli>Ajouter une taille d’image\u003C\u002Fli>\n\u003Cli>Supprimer les widgets\u003C\u002Fli>\n\u003Cli>Activer le shortcode dans les widgets\u003C\u002Fli>\n\u003Cli>Modifier l’URL du résultat de la recherche\u003C\u002Fli>\n\u003Cli>Ajouter un type de publication aux résultats de recherche\u003C\u002Fli>\n\u003Cli>Ajoutez des colonnes dans la table de liste d’admin (vignette et ID) pour le type de publication choisi\u003C\u002Fli>\n\u003Cli>Retirer les “post type support”\u003C\u002Fli>\n\u003Cli>Ajouter CSS à style.css\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Creation behaviour:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>paquet de téléchargement\u003C\u002Fli>\n\u003Cli>thème enfant zippé et disponible dans wp-content\u002Fthemes\u003C\u002Fli>\n\u003Cli>envoi par email\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Ce plugin vous est gentiment proposé par \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpschildthemegenerator\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> l’hébergeur spécialisé WordPress.\u003C\u002Fp>\n\u003Cp>Découvrez également nos autres extensions gratuites :\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-limit-login\u002F\" rel=\"nofollow ugc\">WPS Limit Login\u003C\u002Fa> pour bloquer les attaques par force brute.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-hide-login\u002F\" rel=\"nofollow ugc\">WPS Hide Login\u003C\u002Fa> pour changer votre URL de connexion en ce que vous voulez.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"nofollow ugc\">WPS Bidouille\u003C\u002Fa> pour optimiser votre WordPress et faire le plein d’infos.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"nofollow ugc\">WPS Cleaner\u003C\u002Fa> pour nettoyer votre site WordPress.\u003C\u002Fp>\n\u003Cp>Ce plugin est seulement maintenu, ce qui signifie que nous ne garantissons pas un support gratuit. Envisagez de signaler un problème et soyez patient.\u003C\u002Fp>\n\u003Ch4>English\u003C\u002Fh4>\n\u003Cp>WPS Child Theme Generator is an advanced tools to easily create as many child theme as you need. It comes with many options that can be add to your functions.php without the need to edit it. You can also add your own CSS in style.css.\u003C\u002Fp>\n\u003Cp>Options\u003C\u002Fp>\n\u003Col>\n\u003Cli>Add your screenshot from WordPress Uploader\u003C\u002Fli>\n\u003Cli>Remove image sizes\u003C\u002Fli>\n\u003Cli>Add image size\u003C\u002Fli>\n\u003Cli>Remove widgets\u003C\u002Fli>\n\u003Cli>Enable shortcode in widgets\u003C\u002Fli>\n\u003Cli>Modify search result URL\u003C\u002Fli>\n\u003Cli>Add post type to search results\u003C\u002Fli>\n\u003Cli>Add columns in admin list table (thumbnail and ID) for choosen post type\u003C\u002Fli>\n\u003Cli>Remove post type supports\u003C\u002Fli>\n\u003Cli>Add CSS to style.css\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Creation behaviour:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>download package\u003C\u002Fli>\n\u003Cli>child theme is zip and available in wp-content\u002Fthemes\u003C\u002Fli>\n\u003Cli>send package by email\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is kindly proposed by \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpschildthemegenerator\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> the specialized WordPress web host.\u003C\u002Fp>\n\u003Cp>Discover also our other free extensions:\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-limit-login\u002F\" rel=\"ugc\">WPS Limit Login\u003C\u002Fa> to block brute force attacks.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-hide-login\u002F\" rel=\"ugc\">WPS Hide Login\u003C\u002Fa> to change your login URL to whatever you want.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"ugc\">WPS Bidouille\u003C\u002Fa> to optimize your WordPress and get more info.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"ugc\">WPS Cleaner\u003C\u002Fa> to clean your WordPress site.\u003C\u002Fp>\n\u003Cp>This plugin is only maintained, which means we do not guarantee free support. Consider reporting a problem and be patient.\u003C\u002Fp>\n","Create your child theme with options. Customize it many options.",6000,85740,2,"2025-06-24T07:59:00.000Z","3.3","5.6",[118,21,119,120,23],"child","generator","options","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwps-child-theme-generator.1.5.5.2.zip","2019-07-23 00:00:00",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":111,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":94,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":142,"download_link":143,"security_score":144,"vuln_count":113,"unpatched_count":26,"last_vuln_date":145,"fetched_at":59},"yith-custom-login","YITH Custom Login","1.7.7","YITHEMES","https:\u002F\u002Fprofiles.wordpress.org\u002Fyithemes\u002F","\u003Cp>Install the plugin and change the default style of wordpress login. Set a pretty style to login page of your website and customize it according to your style!\u003Cbr \u002F>\nFull documentation is available \u003Ca href=\"https:\u002F\u002Fdocs.yithemes.com\u002Fyith-custom-login\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Installation\u003C\u002Fh4>\n\u003Cp>Once you have installed the plugin, you just need to activate the plugin in order to enable it.\u003C\u002Fp>\n\u003Ch4>Configuration\u003C\u002Fh4>\n\u003Cp>YITH Custom Login will add a new page under Appearance -> Login Screen, where you can configure the plugin and customize the frontend page.\u003C\u002Fp>\n\u003Ch4>GDPR Disclaimer\u003C\u002Fh4>\n\u003Cp>As you can see in \u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Ffonts\u002Ffaq#what_does_using_the_google_fonts_api_mean_for_the_privacy_of_my_users\" rel=\"nofollow ugc\">Google FAQ\u003C\u002Fa>:\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>The Google Fonts API is designed to limit the collection, storage, and use of end-user data to what is needed to serve fonts efficiently. [â€¦] Google Fonts logs records of the CSS and the font file requests, and access to this data is kept secure. [â€¦] We use data from Googleâ€™s web crawler to detect which websites use Google fonts.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>In other words, when someone visits your website, Google will be able to access the IP address they used to access it. As a result of using Google Fonts, you implicitly accept their terms and conditions, and you must inform people visiting your site of this in accordance with the current GDPR law in Europe.\u003C\u002Fp>\n\u003Ch4>Developer\u003C\u002Fh4>\n\u003Cp>Are you a developer? Want to customize the templates or the style of the plugin? Read on the \u003Ca href=\"https:\u002F\u002Fdocs.yithemes.com\u002Fyith-custom-login\u002F\" rel=\"nofollow ugc\">documentation\u003C\u002Fa> and discover how to do that.\u003C\u002Fp>\n\u003Ch3>Suggestions\u003C\u002Fh3>\n\u003Cp>If you have suggestions about how to improve YITH Custom Login, you can \u003Ca href=\"mailto:plugins@yithemes.com\" title=\"Your Inspiration Themes\" rel=\"nofollow ugc\">write us\u003C\u002Fa> so we can bundle them into YITH Custom Login.\u003C\u002Fp>\n\u003Ch3>Translators\u003C\u002Fh3>\n\u003Ch4>Available Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English (Default)\u003C\u002Fli>\n\u003Cli>Italian\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you have created your own language pack, or have an update for an existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" title=\"Translating WordPress\" rel=\"nofollow ugc\">gettext PO and MO file\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fyithemes.com\u002Fcontact\u002F\" title=\"Your Inspiration Themes\" rel=\"nofollow ugc\">use\u003C\u002Fa> so we can bundle it into YITH Custom Login Languages.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Full documentation is available \u003Ca href=\"https:\u002F\u002Fdocs.yithemes.com\u002Fyith-custom-login\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n","YITH Custom Login give you the ability to customize the login page of wordpress.",230692,96,17,"2025-04-24T12:37:00.000Z","6.4","7.4",[138,19,139,140,141],"custom-login","login-screen","themes","wordpress-login","https:\u002F\u002Fyithemes.com\u002Fthemes\u002Fplugins\u002Fyith-custom-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyith-custom-login.1.7.7.zip",99,"2024-09-12 18:13:16",{"attackSurface":147,"codeSignals":177,"taintFlows":191,"riskAssessment":192,"analyzedAt":201},{"hooks":148,"ajaxHandlers":173,"restRoutes":174,"shortcodes":175,"cronEvents":176,"entryPointCount":26,"unprotectedCount":26},[149,154,158,160,163,166,169],{"type":150,"name":151,"callback":152,"file":153,"line":133},"action","admin_menu","add_sb_easy_hooks_options_page","startbox-easy-hooks.php",{"type":150,"name":155,"callback":156,"file":153,"line":157},"admin_init","sb_easy_hooks_options_init",18,{"type":150,"name":155,"callback":159,"file":153,"line":71},"sb_easy_hooks_array_init",{"type":150,"name":155,"callback":161,"file":153,"line":162},"sb_easy_hooks_notice",20,{"type":150,"name":164,"callback":159,"file":153,"line":165},"init",21,{"type":150,"name":164,"callback":167,"file":153,"line":168},"sb_easy_hooks_add_actions",22,{"type":150,"name":170,"callback":171,"file":153,"line":172},"admin_notices","sb_easy_hooks_notice_success",132,[],[],[],[],{"dangerousFunctions":178,"sqlUsage":179,"outputEscaping":181,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":190},[],{"prepared":26,"raw":26,"locations":180},[],{"escaped":50,"rawEcho":14,"locations":182},[183,186,188],{"file":153,"line":184,"context":185},140,"raw output",{"file":153,"line":187,"context":185},151,{"file":153,"line":189,"context":185},207,[],[],{"summary":193,"deductions":194},"The \"startbox-easy-hooks\" v1.1 plugin exhibits a seemingly strong security posture based on the provided static analysis and vulnerability history.  There are no identified dangerous functions, external HTTP requests, file operations, or SQL queries that don't use prepared statements. The absence of any recorded CVEs, past or present, is a positive indicator. The plugin also reports zero attack surface points, meaning no AJAX handlers, REST API routes, shortcodes, or cron events were detected, which significantly limits potential entry points for attackers. Furthermore, the taint analysis shows no identified flows with unsanitized paths, suggesting that data handling within the plugin is likely robust.\n\nHowever, there are some areas that warrant caution. The lack of any identified nonce checks or capability checks across the entire plugin is a significant concern. While the attack surface is reported as zero, this could mean these checks are absent from *all* potential (even if undiscovered) entry points. Additionally, a notable portion of output (33%) is not properly escaped. If these unescaped outputs are used in contexts where they can be rendered by a user's browser, they could be vulnerable to Cross-Site Scripting (XSS) attacks, especially if user-supplied data is involved in those outputs. The complete absence of any discovered vulnerabilities in the past is a good sign, but it does not guarantee future immunity, and the presence of unescaped output remains a potential weakness.\n\nIn conclusion, while the \"startbox-easy-hooks\" v1.1 plugin benefits from a clean vulnerability history and a reported minimal attack surface, the complete absence of nonce and capability checks, coupled with a significant percentage of unescaped output, presents notable security risks. These weaknesses could be exploited to gain unauthorized access or execute malicious scripts if any input is improperly handled in the unescaped output scenarios. Developers should prioritize implementing proper nonce and capability checks and thoroughly review all output for proper escaping to mitigate these risks.",[195,197,199],{"reason":196,"points":11},"No nonce checks found",{"reason":198,"points":11},"No capability checks found",{"reason":200,"points":50},"Unescaped output identified","2026-03-16T23:26:34.463Z",{"wat":203,"direct":208},{"assetPaths":204,"generatorPatterns":205,"scriptPaths":206,"versionParams":207},[],[],[],[],{"cssClasses":209,"htmlComments":216,"htmlAttributes":217,"restEndpoints":218,"jsGlobals":219,"shortcodeOutput":220},[210,211,212,213,214,215],"wrap","wp-picker-container","wp-color-result","wp-color-result-trigger","wp-color-wrap","button-primary",[],[],[],[],[]]