[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhoiOZK4ptX1NaA01nK-FzvWermaZtQRsi2rFx1o_9OI":3,"$fmUH61M0fqm2DWj5R4-cyDyRpGl9tSkqJm-eujvoSVAs":327,"$fIYY-j_NQKc3G619-5i-zguMeQk8e-SmglV17L4VSdw8":332},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":37,"analysis":134,"fingerprints":302},"staticweb-deploy","StaticWeb Deploy","9.8.0","StaticWeb.io","https:\u002F\u002Fprofiles.wordpress.org\u002Fstaticwebio\u002F","\u003Cp>Turns your WordPress site into a secure, lightning-fast static website.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Deploy website directly to S3 and CloudFront\u003C\u002Fli>\n\u003Cli>Export website to a directory that can be served by your web server\u003C\u002Fli>\n\u003Cli>Full WP-CLI support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Speed\u003C\u002Fh4>\n\u003Cp>Static websites are many times faster than a normal WordPress server.\u003Cbr \u002F>\nA simple S3 + CloudFront setup can easily serve millions of users.\u003Cbr \u002F>\nThe greatly increased speed generally improves SEO performance.\u003C\u002Fp>\n\u003Ch4>Security\u003C\u002Fh4>\n\u003Cp>Making the public version of your website a static website allows you to restrict access to your WordPress server.\u003Cbr \u002F>\nThis dramatically reduces the attack surface of your website and makes expensive WAF services unnecessary.\u003C\u002Fp>\n","Generate static sites for deployment as files or S3-compatible storage.",0,394,"2026-04-03T03:21:00.000Z","7.0","6.4","8.2",[18,19,20,21,22],"performance","s3","security","speed","static-site-generator","https:\u002F\u002Fgithub.com\u002Fstaticweb-io\u002Fstatic-deploy","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaticweb-deploy.9.9.0.zip",100,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":25,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"staticwebio",2,40,30,94,"2026-05-19T20:58:12.717Z",[38,61,81,103,119],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":56,"download_link":57,"security_score":58,"vuln_count":32,"unpatched_count":11,"last_vuln_date":59,"fetched_at":60},"simply-static","Simply Static – The Static Site Generator","3.6.7","Simply Static","https:\u002F\u002Fprofiles.wordpress.org\u002Fsimplystatic\u002F","\u003Cp>Simply Static turns your WordPress site into secure, lightning-fast static HTML files.\u003C\u002Fp>\n\u003Cp>Stop worrying about WordPress security patches, performance plugins, and expensive hosting.\u003C\u002Fp>\n\u003Cp>Simply Static converts your entire WordPress site into static HTML, CSS, and JavaScript files that load instantly and can’t be hacked.\u003C\u002Fp>\n\u003Cp>Perfect for blogs, marketing sites, documentation, portfolios, and any content-driven WordPress site.\u003C\u002Fp>\n\u003Ch4>Why Go Static?\u003C\u002Fh4>\n\u003Cp>⚡ Blazing Fast Performance\u003Cbr \u002F>\nStatic sites load 3-5x faster than traditional WordPress. No database queries. No server-side processing. Just instant page loads from a global CDN.\u003C\u002Fp>\n\u003Cp>🔒 Unhackable Security\u003Cbr \u002F>\nNo database. No login page. No PHP vulnerabilities. Static HTML can’t be hacked the way traditional WordPress can.\u003C\u002Fp>\n\u003Cp>💰 Dramatically Lower Hosting Costs\u003Cbr \u002F>\nHost your static site for free on platforms like Cloudflare Pages, Netlify, or GitHub Pages. Or deploy to any server for pennies per month.\u003C\u002Fp>\n\u003Cp>🎯 Zero Maintenance\u003Cbr \u002F>\nNo more WordPress updates. No plugin conflicts. No security patches. Focus on content, not server management.\u003C\u002Fp>\n\u003Ch4>How Simply Static Works\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Generate: Click one button to convert your entire WordPress site to static HTML\u003C\u002Fli>\n\u003Cli>Export: Download as ZIP or deploy to a local directory\u003C\u002Fli>\n\u003Cli>Deploy: Upload to any hosting provider, CDN, or static hosting platform\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Your WordPress site stays private and secure. Your static site is what visitors see.\u003C\u002Fp>\n\u003Ch4>What You Can Do with the Free Version\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One-click static site generation\u003C\u002Fli>\n\u003Cli>Export as ZIP file\u003C\u002Fli>\n\u003Cli>Deploy to local directory\u003C\u002Fli>\n\u003Cli>Replace URLs (absolute, relative, or offline use)\u003C\u002Fli>\n\u003Cli>Works with any WordPress theme\u003C\u002Fli>\n\u003Cli>Compatible with popular page builders (Elementor, Bricks, Gutenberg)\u003C\u002Fli>\n\u003Cli>SEO plugin support (Yoast, Rank Math, AIOSEO)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Ready for More?\u003C\u002Fh4>\n\u003Cp>The free version is perfect for simple static exports, but if you need advanced deployment, automation, and powerful features, check out our premium solutions.\u003C\u002Fp>\n\u003Ch4>Simply Static Pro – For Developers & Agencies\u003C\u002Fh4>\n\u003Cp>$99\u002Fyear per site | $299\u002Fyear unlimited sites\u003Cbr \u002F>\nDeploy to any platform. Automate everything. Keep 100% of your profit margins.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Deploy to GitHub, Netlify, Cloudflare Pages, AWS S3, BunnyCDN, SFTP\u003C\u002Fli>\n\u003Cli>Incremental exports (update only changed pages)\u003C\u002Fli>\n\u003Cli>Single-page exports (instant publishing)\u003C\u002Fli>\n\u003Cli>WP-CLI support for complete automation\u003C\u002Fli>\n\u003Cli>Forms integration (Contact Form 7, Gravity Forms, WPForms, Fluent Forms)\u003C\u002Fli>\n\u003Cli>Static-friendly search (Fuse.js or Algolia)\u003C\u002Fli>\n\u003Cli>Multilingual support (WPML, Polylang, TranslatePress)\u003C\u002Fli>\n\u003Cli>Performance optimization (minification, image optimization)\u003C\u002Fli>\n\u003Cli>Comments integration\u003C\u002Fli>\n\u003Cli>Email support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for developers self-hosting client sites, agencies managing infrastructure, and technical users who want complete control.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsimplystatic.com\u002Fsimply-static-pro\u002F\" rel=\"nofollow ugc\">Get Simply Static Pro\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Simply Static Studio – For Businesses & Content Creators\u003C\u002Fh4>\n\u003Cp>From $11\u002Fmonth\u003Cbr \u002F>\nAll-in-one managed WordPress hosting. Zero maintenance. Maximum security.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Fully managed WordPress hosting\u003C\u002Fli>\n\u003Cli>Static site hosting on global CDN (120+ locations)\u003C\u002Fli>\n\u003Cli>Automated backups & SSL certificates\u003C\u002Fli>\n\u003Cli>One-click WordPress login\u003C\u002Fli>\n\u003Cli>Free white-glove migration\u003C\u002Fli>\n\u003Cli>Team management & access control\u003C\u002Fli>\n\u003Cli>Everything from Pro, pre-configured\u003C\u002Fli>\n\u003Cli>Priority support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for businesses running 1-5 websites, content creators who want simplicity, and anyone who values convenience over control.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsimplystatic.com\u002Fsimply-static-studio\u002F\" rel=\"nofollow ugc\">Try Studio Free for 7 Days\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Trusted by 40,000+ Users Worldwide\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>1,400,000+ plugin downloads\u003C\u002Fli>\n\u003Cli>4.5\u002F5 star rating\u003C\u002Fli>\n\u003Cli>Active development & support\u003C\u002Fli>\n\u003Cli>Used by Microsoft, HP, Postman, UNICEF\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Learning Resources\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdocs.simplystatic.com\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003Cbr \u002F>\nComprehensive guides covering every aspect of Simply Static.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsimplystatic.com\u002Fvideos\u002F\" rel=\"nofollow ugc\">Video Course\u003C\u002Fa>\u003Cbr \u002F>\nWatch our free YouTube course covering static WordPress from basics to advanced.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsimplystatic.com\u002Ftutorials\u002F\" rel=\"nofollow ugc\">Weekly Tutorials\u003C\u002Fa>\u003Cbr \u002F>\nNew tutorials published every other week on our blog.\u003C\u002Fp>\n\u003Cp>Community Support\u003Cbr \u002F>\nGet help from the community in the WordPress.org forums.\u003C\u002Fp>\n\u003Ch4>Use Cases\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Perfect For:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Blogs & content sites\u003C\u002Fli>\n\u003Cli>Marketing websites & landing pages\u003C\u002Fli>\n\u003Cli>Documentation sites\u003C\u002Fli>\n\u003Cli>Portfolio sites\u003C\u002Fli>\n\u003Cli>Company websites\u003C\u002Fli>\n\u003Cli>Product launch pages\u003C\u002Fli>\n\u003Cli>Event sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Not Suitable For:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>E-commerce sites\u003C\u002Fli>\n\u003Cli>Membership sites\u003C\u002Fli>\n\u003Cli>Sites requiring user logins\u003C\u002Fli>\n\u003Cli>Real-time data updates\u003C\u002Fli>\n\u003Cli>Heavy AJAX functionality\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note: Forms, search, and comments ARE possible with Simply Static Pro or Studio.\u003C\u002Fp>\n\u003Ch4>Plugins & Features That Don’t Work with Static Sites\u003C\u002Fh4>\n\u003Cp>Static sites are perfect for public content, but some WordPress plugins require server-side processing and won’t work on static sites:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>E-commerce:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads\u003C\u002Fli>\n\u003Cli>Other shopping cart plugins\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Static sites can’t process payments or manage user accounts. Consider headless WordPress solutions for e-commerce.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Membership & Authentication:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>MemberPress\u003C\u002Fli>\n\u003Cli>Restrict Content Pro\u003C\u002Fli>\n\u003Cli>User registration plugins\u003C\u002Fli>\n\u003Cli>Login-required content\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Static sites don’t support user authentication or member-only areas.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Real-Time Dynamic Content:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Forum plugins (bbPress, BuddyPress)\u003C\u002Fli>\n\u003Cli>Live chat widgets (unless using external services)\u003C\u002Fli>\n\u003Cli>Real-time data feeds\u003C\u002Fli>\n\u003Cli>Heavy AJAX functionality\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>What DOES Work (with Pro\u002FStudio):\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Forms (Contact Form 7, Gravity Forms, WPForms, Fluent Forms)\u003C\u002Fli>\n\u003Cli>Search functionality (Fuse.js or Algolia)\u003C\u002Fli>\n\u003Cli>Comments (special integration)\u003C\u002Fli>\n\u003Cli>Newsletter signups (via external services)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If your site relies heavily on the plugins listed above, Simply Static may not be the right solution. For questions about specific plugin compatibility, check our compatibility database or ask in our support forum.\u003C\u002Fp>\n","Convert WordPress to static HTML. Boost performance 3-5x. Eliminate security vulnerabilities. Deploy anywhere.",30000,1711925,90,192,"2026-04-15T14:22:00.000Z","6.9.4","6.2","7.4",[55,18,20,22],"jamstack","https:\u002F\u002Fsimplystatic.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimply-static.3.6.7.zip",99,"2024-04-22 00:00:00","2026-04-16T10:56:18.058Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":51,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":79,"download_link":80,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"staatic","Staatic – Static Site Generator","1.12.2","Team Staatic","https:\u002F\u002Fprofiles.wordpress.org\u002Fstaatic\u002F","\u003Cp>Staatic lets you create and deploy a streamlined static version of your WordPress site, enhancing performance, SEO, and security simultaneously.\u003C\u002Fp>\n\u003Cp>Features of Staatic include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Powerful Crawler to transform your WordPress site quickly.\u003C\u002Fli>\n\u003Cli>Supports multiple deployment methods, e.g. GitHub, Netlify, AWS (Amazon Web Services) S3 or S3-compatible providers + CloudFront integration, or even your local server (dedicated or shared hosting).\u003C\u002Fli>\n\u003Cli>Very flexible out of the box (allows for additional urls, paths, redirects, exclude rules, etc.).\u003C\u002Fli>\n\u003Cli>Supports HTTP (301, 302, 307, 308) redirects, custom “404 not found” page and other HTTP headers.\u003C\u002Fli>\n\u003Cli>CLI command to publish from the command line.\u003C\u002Fli>\n\u003Cli>Compatible with WordPress MultiSite installations.\u003C\u002Fli>\n\u003Cli>Compatible with WPML (multilingual) installations.\u003C\u002Fli>\n\u003Cli>Supports HTTP basic auth protected WordPress installations.\u003C\u002Fli>\n\u003Cli>Various integrations to improve compatibility with popular WordPress plugins.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Depending on the chosen deployment method, additional features may be available.\u003C\u002Fp>\n\u003Ch3>Staatic Premium\u003C\u002Fh3>\n\u003Cp>In order to support ongoing development of Staatic, please consider going Premium. In addition to helping the authors maintain Staatic, Staatic Premium adds additional functionality.\u003C\u002Fp>\n\u003Cp>For more information visit \u003Ca href=\"https:\u002F\u002Fstaatic.com\u002Fwordpress\u002F\" rel=\"nofollow ugc\">Staatic\u003C\u002Fa>.\u003C\u002Fp>\n","Staatic lets you create and deploy a streamlined static version of your WordPress site.",2000,66979,84,22,"2026-04-14T13:48:00.000Z","5.0","7.1",[18,20,77,21,78],"seo","static","https:\u002F\u002Fstaatic.com\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaatic.1.12.2.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":100,"download_link":101,"security_score":102,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"specify-a-vary-accept-encoding-header","Specify a Vary: Accept-Encoding Header","1.0.0","lithiumsixteen","https:\u002F\u002Fprofiles.wordpress.org\u002Flithiumsixteen\u002F","\u003Cp>Many WordPress performance plugins are bloated and include features that you don’t need. This plugin does just one thing. It adds a “Vary: Accept-Encoding Header” to boost website performance.\u003C\u002Fp>\n\u003Cp>When browsers make a request, they include HTTP headers for the server to decide what to send back. The Vary header describes what information identifies a request. Caches should only be used if the request matches the Vary information in the cache.\u003C\u002Fp>\n\u003Cp>This plugin adds a rewrite rule to your WordPress directory’s \u003Ccode>.htaccess\u003C\u002Fcode> Apache file.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C IfModule mod_headers.c >\n\n  \u003C FilesMatch \\\".(js|css|xml|gz|html)$\\\" >\n\n    Header append Vary: Accept-Encoding\n\n  \u003C \u002FFilesMatch >\n\n\u003C \u002FIfModule >\n\u003C\u002Fcode>\u003C\u002Fpre>\n","This plugin fixes a \"Vary: Accept-Encoding Header\" message and boosts website performance.",200,5788,80,4,"2018-04-13T03:29:00.000Z","4.9.29","3.0.1","5.2",[98,18,20,21,99],"accept","vary","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspecify-a-vary-accept-encoding-header.1.0.0.zip",85,{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":25,"downloaded":111,"rating":25,"num_ratings":92,"last_updated":112,"tested_up_to":113,"requires_at_least":74,"requires_php":14,"tags":114,"homepage":100,"download_link":117,"security_score":118,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"better-speed","Why So Slow?","2.1","bettersecurity","https:\u002F\u002Fprofiles.wordpress.org\u002Fbettersecurity\u002F","\u003Cp>This plugin will allow you to easily remove bloat and turn off unused features, in order to streamline your website and reduce file requests.\u003C\u002Fp>\n\u003Cp>It also includes the following additional functionality:\u003Cbr \u002F>\n– Include \u003Ca href=\"https:\u002F\u002Finstant.page\" rel=\"nofollow ugc\">instant.page\u003C\u002Fa> library (v5.1.0) with settings\u003Cbr \u002F>\n– Add Server-Timing headers to enable better debugging\u003Cbr \u002F>\n– Use passive event listengers to improve scroll performance\u003C\u002Fp>\n\u003Cp>This plugin is NOT a caching plugin, but should play well with any caching plugin you decide to use.\u003C\u002Fp>\n","Improve the loading speed of your website by removing bloat and unused features (formerly named Better Speed)",3883,"2024-09-28T09:43:00.000Z","6.6.5",[115,116,18,20,21],"better","bloat","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-speed.zip",92,{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":33,"downloaded":127,"rating":25,"num_ratings":32,"last_updated":128,"tested_up_to":51,"requires_at_least":129,"requires_php":53,"tags":130,"homepage":132,"download_link":133,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"make-me-static","Make Me Static, Static Site Generator, Git, Pages and Live Stats","1.1.56","Gareth Bult","https:\u002F\u002Fprofiles.wordpress.org\u002Fmadpenguin\u002F","\u003Cp>Welcome to the Make Me Static Plugin for WordPress. This plugin is a static site generator and aims to create and maintain a static copy of your WordPress website within a Git repository. This version includes automatic access to a free Git solution and Page provider platform. (so no setup or credentials are necessary)\u003C\u002Fp>\n\u003Cp>Alternatively the static site can be generated and stored in a GitLab Git Repository that can be used as a source for a static page platform such as CloudFlare Pages. The plugin provides customised sitemap and change tracking which connects to an external crawling service which does all the heavy lifting.\u003C\u002Fp>\n\u003Cp>We have made great efforts in this version to minimise the configuration required to get going, if you have any problems (with anything) please let is know and we’ll do our best to help. Check out this YouTube video for an introduction to static front-ends and a walk-through of converting a pre-existing WordPress site into a WordPress site with a static front-end.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FZJ5IDgZ9u-Q?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>How the service works\u003C\u002Fh3>\n\u003Cp>The plugin connects to a directory service on the Internet at one of the directory URL’s listed below. This in turn will point the plugin to a ‘crawler’ that has been allocated to your site.\u003Cbr \u002F>\nWhen you ask the plugin to make a static copy of your site, it will instruct the crawler to visit all the pages on your site to determine which have changed since it’s last visit. Any changed pages will be copied to a Git repository, which in turn can publish pages directly to a page hosting service.\u003C\u002Fp>\n\u003Cp>The default option is to use a Git account hosted by MadPenguin, and to publish the site on MadPenguin’s page hosting platform. As a result the default options do not require any specific Git or Page hosting configuration to get going. If on the other hand you choose to use a hosted Git service such as GitLab, you will need to enter some credentials for your online account, and from there configure your GitLab account to publish to a page hosting service.\u003C\u002Fp>\n\u003Cp>Once you have successfully published a static copy of your site, all you need to do is point your domain at the address of the page hosting service, and asssuming your domain matches the one you\u003Cbr \u002F>\nentered when setting up your profile within the plugin, you should be up and running.\u003C\u002Fp>\n\u003Cp>The service retains a metadata database for the site which includes file names, sizes and modification times, together with any credentials that have been added when creating a profile. (Sensitive credentials and other information is encrypted at rest).  The external service is responsible for all scanning and processing activities to mitigate strain on the WordPress server.\u003Cbr \u002F>\nThe only private data transferred to the external service is the information you enter when creating a profile. All other information is obtained via an anonymous external scan, hence publically available. If you have selected the default Git option, then the service will also retain a static copy of the site.\u003C\u002Fp>\n\u003Ch3>Useful references\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmakemestatic.com\u002F\" rel=\"nofollow ugc\">The service product page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmakemestatic.com\u002Fterms-and-conditions\u002F\" rel=\"nofollow ugc\">Terms and Conditions of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmakemestatic.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmakemestatic.com\u002Fgetting-started\u002F\" rel=\"nofollow ugc\">Getting Started\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmakemestatic.com\u002Fservice-status\u002F\" rel=\"nofollow ugc\">Service Status\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Foddjobz\u002Fmake_me_static\u002Fissues\" rel=\"nofollow ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Make me static directory service URL’s;\u003C\u002Fp>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fmms-directory-1.madpenguin.uk\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fmms-directory-2.madpenguin.uk\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fmms-directory-3.madpenguin.uk\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Other URL’s used to load code;\u003C\u002Fp>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fassets.makemestatic.com, source for stage-2 crawler UI\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fstatus.makemestatic.com, endpoints that indicate the currently deployed version of a site\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fweblogs.makemestatic.com, source for dynamically loaded weblogs data \u002F websockets\u003C\u002Fli>\n\u003Cli>https:\u002F\u002Fmms-crawler-*.madpenguin.uk, location of the actual crawlers (via websocket)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note that this in an integrated solution, the 3rd party crawling service is owned and operated by the plugin authors on a combination of cloud hosted and on premesis equipment.\u003C\u002Fp>\n\u003Ch3>Live Web Statistics (\u003Cem>experimental\u003C\u002Fem>)\u003C\u002Fh3>\n\u003Cp>If you opt to use the integrated Pages platform, this also provides a live WebStats option that uses the following URL;\u003C\u002Fp>\n\u003Cul>\n\u003Cli>https:\u002F\u002Fweblogs.makemestatic.com\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This allows live webstats to be seamlessly delivered into your control panel and updated in real-time via a websocket connection. Do not use this URL directly!\u003Cbr \u002F>\nThis URL is only referenced once you click on the webstats icon next to your profile.\u003C\u002Fp>\n\u003Ch3>How Does it work?\u003C\u002Fh3>\n\u003Cp>The WordPress site is scanned by the MMS service under direction from the WordPress plugin. This off-loads the scanning process to specialised software which aims to minimise the loading on the WordPress server while scans are in progress.\u003C\u002Fp>\n\u003Cp>There are three types of scan that can be performed;\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>An “update”, which literally only looks at entries with changed sitemap timestamps\u003Cbr \u002F>\n(this is very quick and great for typo’s and any changes that only affect a single page)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>A “synchronise”, typically this will scan every asset on the WordPress site and compare a checksum of each asset against it’s database to see if it’s changed since the last scan. Any changes are then transferred to the connected Git repository.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>A “Git verification”, this is like a “synchronise”, but also scans the Git repository for assets that are no longer referenced by the site (and removes them).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>As the site is scanned “from the outside” there should be no risk of the plugins actions exposing any data that isn’t already public. By the same token the external service has no ability to modify WordPress so the security footprint of the plugin is tiny.\u003C\u002Fp>\n\u003Ch3>Feature bullet points\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>The plugin provides a way to produce a static copy of your website in a git repository\u003C\u002Fli>\n\u003Cli>The result is compatible with both Github pages and CloudFlare pages for automatic publication\u003C\u002Fli>\n\u003Cli>Multiple profiles are supported for (A+B_…) testing\u003C\u002Fli>\n\u003Cli>Various scan rates are supported from one page per 5s to 7 cores flat out\u003C\u002Fli>\n\u003Cli>Scheduled updates are supported and automated scanning\u003C\u002Fli>\n\u003Cli>Currently “Gitlab” is supported with plans for GitHub and on-prem Gitlab\u003C\u002Fli>\n\u003Cli>Support push services (WebPushr) to automatically notify subscribers on scan completion\u003C\u002Fli>\n\u003Cli>Issue tracker for each profile to diagnose problems\n\u003Cul>\n\u003Cli>Handles current and historical issues\u003C\u002Fli>\n\u003Cli>Ability to acknowlede or delete issues when resolved\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>GUI access to the internal asset database\n\u003Cul>\n\u003Cli>Search as you type filtering\u003C\u002Fli>\n\u003Cli>Pinning (force assets to be scanned regardless of perceived change)\u003C\u002Fli>\n\u003Cli>Selective \u002F manual queueing of assets for testing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Ability to include manual \u002F static assets in the scan (in the WP tree but unmanaged by WP)\u003C\u002Fli>\n\u003Cli>Ability to exclude specific files and folders\u003C\u002Fli>\n\u003Cli>Setup Wizard is included for a guided profile creation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>The Technology\u003C\u002Fh3>\n\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The Plugin presents as a WordPress Admin \u002F plugin page\u003C\u002Fli>\n\u003Cli>Backend connections are made over websockets using PKI\u003C\u002Fli>\n\u003Cli>The crawler respects Robots.txt, (make sure the “MMSbot” agent is allowed on your site)\u003C\u002Fli>\n\u003Cli>MMS Javascript runs in an isolated module and CSS “plays nice” with WordPress\u003C\u002Fli>\n\u003Cli>Global CSS and theming is partitioned and user editable (if you feel the need …)\u003C\u002Fli>\n\u003Cli>All of the front-end JS code and PHP is either GPL2 or MIT licensed\u003C\u002Fli>\n\u003Cli>Backend-code is all based on the Orbit Framework (the framework and DB are all MIT licensed)\u003C\u002Fli>\n\u003Cli>Orbit is a ‘real time’ framework, so the admin panel is 100% reactive.\n\u003Cul>\n\u003Cli>Progress bar updates are typically “per percent” granularity\u003C\u002Fli>\n\u003Cli>All statuses, totals, etc, are updated as they happen\u003C\u002Fli>\n\u003Cli>Unless you’ve hit a bug, there is no mileage in reloading the MMS plugin page\u003C\u002Fli>\n\u003Cli>If you change your license information, it will change in real-time\u003C\u002Fli>\n\u003Cli>If the crawler allocated to your site changes (perhaps due to a license upgrade) then the\u003Cbr \u002F>\nappropriate version of the crawler UI will be uploaded “into” the page from the new\u003Cbr \u002F>\ncrawler.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Static site generator using Git for storage. Comes with free integrated Git + Pages solution including Live WebStats.",3251,"2026-03-29T13:33:00.000Z","6.5",[18,20,78,22,131],"stats","https:\u002F\u002Fmadpenguin.uk\u002Fmake-me-static","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmake-me-static.1.1.56.zip",{"attackSurface":135,"codeSignals":271,"taintFlows":293,"riskAssessment":294,"analyzedAt":301},{"hooks":136,"ajaxHandlers":257,"restRoutes":265,"shortcodes":266,"cronEvents":267,"entryPointCount":32,"unprotectedCount":32},[137,143,146,152,155,159,162,166,168,171,174,177,178,181,183,186,189,192,195,198,201,204,207,210,213,216,219,222,224,227,230,233,237,240,243,245,249,252],{"type":138,"name":139,"callback":140,"priority":25,"file":141,"line":142},"action","admin_bar_menu","anonymous","src\u002FAdminBar.php",13,{"type":138,"name":144,"callback":140,"file":141,"line":145},"wp_after_admin_bar_render",18,{"type":147,"name":148,"callback":140,"priority":149,"file":150,"line":151},"filter","static_deploy_deployer_class",10,"src\u002FDeployerTrait.php",11,{"type":138,"name":153,"callback":140,"priority":154,"file":150,"line":145},"static_deploy_deploy",15,{"type":138,"name":156,"callback":140,"priority":154,"file":157,"line":158},"admin_menu","src\u002FOptionsControllerTrait.php",29,{"type":147,"name":160,"callback":140,"file":157,"line":161},"static_deploy_add_menu_items",36,{"type":147,"name":163,"callback":140,"file":164,"line":165},"cron_schedules","src\u002FWordPressAdmin.php",34,{"type":147,"name":167,"callback":140,"file":164,"line":33},"cron_request",{"type":138,"name":169,"callback":140,"priority":149,"file":164,"line":170},"admin_post_static_deploy_ui_save_options",59,{"type":138,"name":172,"callback":140,"priority":149,"file":164,"line":173},"static_deploy_register_addon",66,{"type":138,"name":175,"callback":140,"priority":149,"file":164,"line":176},"static_deploy_post_deploy_trigger",73,{"type":138,"name":175,"callback":140,"priority":149,"file":164,"line":91},{"type":138,"name":179,"callback":140,"priority":149,"file":164,"line":180},"admin_post_static_deploy_post_processed_site_delete",87,{"type":138,"name":182,"callback":140,"priority":149,"file":164,"line":35},"admin_post_static_deploy_post_processed_site_show",{"type":138,"name":184,"callback":140,"priority":149,"file":164,"line":185},"admin_post_static_deploy_log_delete",101,{"type":138,"name":187,"callback":140,"priority":149,"file":164,"line":188},"admin_post_static_deploy_delete_all_caches",108,{"type":138,"name":190,"callback":140,"priority":149,"file":164,"line":191},"admin_post_static_deploy_delete_jobs_queue",115,{"type":138,"name":193,"callback":140,"priority":149,"file":164,"line":194},"admin_post_static_deploy_process_jobs_queue",122,{"type":138,"name":196,"callback":140,"priority":149,"file":164,"line":197},"admin_post_static_deploy_process_queue",129,{"type":138,"name":199,"callback":140,"priority":149,"file":164,"line":200},"admin_post_static_deploy_detected_files_delete",136,{"type":138,"name":202,"callback":140,"priority":149,"file":164,"line":203},"admin_post_static_deploy_detected_files_show",143,{"type":138,"name":205,"callback":140,"priority":149,"file":164,"line":206},"admin_post_static_deploy_deploy_cache_delete",150,{"type":138,"name":208,"callback":140,"priority":149,"file":164,"line":209},"admin_post_static_deploy_deploy_cache_show",157,{"type":138,"name":211,"callback":140,"priority":149,"file":164,"line":212},"admin_post_static_deploy_crawled_files_delete",164,{"type":138,"name":214,"callback":140,"priority":149,"file":164,"line":215},"admin_post_static_deploy_crawled_files_show",171,{"type":138,"name":217,"callback":140,"priority":149,"file":164,"line":218},"admin_post_static_deploy_ui_save_job_options",178,{"type":138,"name":220,"callback":140,"priority":149,"file":164,"line":221},"admin_post_static_deploy_ui_save_advanced_options",185,{"type":138,"name":223,"callback":140,"priority":149,"file":164,"line":49},"admin_post_static_deploy_manually_enqueue_jobs",{"type":138,"name":225,"callback":140,"priority":149,"file":164,"line":226},"admin_post_static_deploy_toggle_addon",199,{"type":138,"name":228,"callback":140,"priority":149,"file":164,"line":229},"static_deploy_process_queue",206,{"type":138,"name":231,"callback":140,"priority":149,"file":164,"line":232},"static_deploy_headless_hook",213,{"type":138,"name":234,"callback":235,"priority":149,"file":164,"line":236},"static_deploy_crawl","crawl",220,{"type":138,"name":238,"callback":140,"priority":11,"file":164,"line":239},"save_post",227,{"type":138,"name":241,"callback":140,"priority":11,"file":164,"line":242},"trashed_post",233,{"type":138,"name":156,"callback":140,"file":164,"line":244},264,{"type":147,"name":246,"callback":247,"file":164,"line":248},"custom_menu_order","__return_true",268,{"type":147,"name":250,"callback":140,"file":164,"line":251},"menu_order",269,{"type":138,"name":253,"callback":254,"file":255,"line":256},"wp_footer","static_deploy_deregister_scripts","staticweb-deploy.php",82,[258,262],{"action":259,"nopriv":260,"callback":140,"hasNonce":260,"hasCapCheck":260,"file":164,"line":261},"static_deploy_run",false,45,{"action":263,"nopriv":260,"callback":140,"hasNonce":260,"hasCapCheck":260,"file":164,"line":264},"static_deploy_poll_log",52,[],[],[268],{"hook":228,"callback":228,"file":269,"line":270},"src\u002FWPCron.php",33,{"dangerousFunctions":272,"sqlUsage":273,"outputEscaping":276,"fileOperations":278,"externalRequests":32,"nonceChecks":288,"capabilityChecks":11,"bundledLibraries":289},[],{"prepared":274,"raw":11,"locations":275},156,[],{"escaped":277,"rawEcho":278,"locations":279},263,3,[280,283,285],{"file":141,"line":281,"context":282},223,"raw output",{"file":284,"line":209,"context":282},"views\u002Fcaches-page.php",{"file":286,"line":287,"context":282},"views\u002Ffiles-paginated-page.php",79,26,[290],{"name":291,"version":26,"knownCves":292},"Guzzle",[],[],{"summary":295,"deductions":296},"The static analysis of the \"staticweb-deploy\" plugin v9.9.4 reveals a generally positive security posture, with strong adherence to best practices in several key areas. The plugin demonstrates excellent SQL query sanitation, with 100% of queries utilizing prepared statements, and a very high rate of output escaping (99%), which significantly mitigates common injection vulnerabilities.  Furthermore, the absence of any recorded vulnerabilities (CVEs) in its history is a strong indicator of a well-maintained and secure codebase. The presence of nonces on 26 occasions also suggests an effort to protect against cross-site request forgery.\n\nHowever, two significant concerns emerge from the analysis. Firstly, the plugin exposes two AJAX handlers without any authentication or capability checks. This creates a direct attack vector for unauthorized users to potentially trigger plugin functionality. Secondly, while the taint analysis showed no immediate critical or high-severity flows, the absence of any taint analysis data to begin with (0 flows analyzed) means that potential vulnerabilities in this area cannot be ruled out. The use of the Guzzle library also warrants attention; while not inherently insecure, bundled libraries can become a risk if not kept up-to-date, and their security depends on the upstream project.\n\nIn conclusion, \"staticweb-deploy\" v9.9.4 exhibits strengths in SQL security and output handling, and a clean vulnerability history. The primary weaknesses lie in the unprotected AJAX endpoints, which present a clear risk that should be addressed immediately. The lack of comprehensive taint analysis is a missed opportunity to ensure deeper code security, and the bundled Guzzle library should be monitored for potential updates.",[297,299],{"reason":298,"points":149},"AJAX handlers without authentication",{"reason":300,"points":278},"Bundled library (Guzzle)","2026-04-16T13:05:46.026Z",{"wat":303,"direct":312},{"assetPaths":304,"generatorPatterns":307,"scriptPaths":308,"versionParams":309},[305,306],"\u002Fwp-content\u002Fplugins\u002Fstaticweb-deploy\u002Fstatic\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fstaticweb-deploy\u002Fstatic\u002Fjs\u002Fadmin.js",[],[306],[310,311],"staticweb-deploy\u002Fstatic\u002Fcss\u002Fadmin.css?ver=","staticweb-deploy\u002Fstatic\u002Fjs\u002Fadmin.js?ver=",{"cssClasses":313,"htmlComments":316,"htmlAttributes":317,"restEndpoints":319,"jsGlobals":321,"shortcodeOutput":326},[314,315],"static-deploy-deploy-status-container","static-deploy-deploy-status",[],[318],"data-static-deploy-id",[320],"\u002Fwp-json\u002Fstatic-deploy\u002Fv1\u002Fsettings",[322,323,324,325],"static_deploy_job_queue_url","static_deploy_last_interval","static_deploy_job_type_labels","static_deploy_idle",[],{"error":328,"url":329,"statusCode":330,"statusMessage":331,"message":331},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fstaticweb-deploy\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":333,"versions":334},6,[335,341,347,354,361,368],{"version":336,"download_url":24,"svn_tag_url":337,"released_at":26,"has_diff":260,"diff_files_changed":338,"diff_lines":26,"trac_diff_url":339,"vulnerabilities":340,"is_current":260},"9.9.0","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstaticweb-deploy\u002Ftags\u002F9.9.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstaticweb-deploy%2Ftags%2F9.8.0&new_path=%2Fstaticweb-deploy%2Ftags%2F9.9.0",[],{"version":6,"download_url":342,"svn_tag_url":343,"released_at":26,"has_diff":260,"diff_files_changed":344,"diff_lines":26,"trac_diff_url":345,"vulnerabilities":346,"is_current":328},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaticweb-deploy.9.8.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstaticweb-deploy\u002Ftags\u002F9.8.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstaticweb-deploy%2Ftags%2F9.7.1&new_path=%2Fstaticweb-deploy%2Ftags%2F9.8.0",[],{"version":348,"download_url":349,"svn_tag_url":350,"released_at":26,"has_diff":260,"diff_files_changed":351,"diff_lines":26,"trac_diff_url":352,"vulnerabilities":353,"is_current":260},"9.7.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaticweb-deploy.9.7.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstaticweb-deploy\u002Ftags\u002F9.7.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstaticweb-deploy%2Ftags%2F9.7.0&new_path=%2Fstaticweb-deploy%2Ftags%2F9.7.1",[],{"version":355,"download_url":356,"svn_tag_url":357,"released_at":26,"has_diff":260,"diff_files_changed":358,"diff_lines":26,"trac_diff_url":359,"vulnerabilities":360,"is_current":260},"9.7.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaticweb-deploy.9.7.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstaticweb-deploy\u002Ftags\u002F9.7.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstaticweb-deploy%2Ftags%2F9.6.0&new_path=%2Fstaticweb-deploy%2Ftags%2F9.7.0",[],{"version":362,"download_url":363,"svn_tag_url":364,"released_at":26,"has_diff":260,"diff_files_changed":365,"diff_lines":26,"trac_diff_url":366,"vulnerabilities":367,"is_current":260},"9.6.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaticweb-deploy.9.6.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstaticweb-deploy\u002Ftags\u002F9.6.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstaticweb-deploy%2Ftags%2F9.5.1&new_path=%2Fstaticweb-deploy%2Ftags%2F9.6.0",[],{"version":369,"download_url":370,"svn_tag_url":371,"released_at":26,"has_diff":260,"diff_files_changed":372,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":373,"is_current":260},"9.5.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstaticweb-deploy.9.5.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstaticweb-deploy\u002Ftags\u002F9.5.1\u002F",[],[]]