[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fdmSTXsnxZmObpwhzAPH2uaC1yMCesdeErDqcS_xc1no":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":136,"fingerprints":187},"tiny-comment-spam-blocker","Tiny Comment Spam Blocker","1.4.0","Kasuga","https:\u002F\u002Fprofiles.wordpress.org\u002Fkasuga16\u002F","\u003Cp>Tiny Comment Spam Blocker is a lightweight yet powerful plugin designed to protect your WordPress comments from spam. It employs five different techniques to detect and block unwanted comments:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Nonce Verification\u003C\u002Fstrong> – Ensures that the comment form submission is genuine.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Submission Time Check\u003C\u002Fstrong> – Blocks comments submitted too quickly to prevent bots.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Honeypot Field\u003C\u002Fstrong> – Hidden field that traps automated spam bots.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Agent Validation\u003C\u002Fstrong> – Detects suspicious User-Agent strings and blocks them.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Forbidden Word Filtering\u003C\u002Fstrong> – Blocks submissions containing words or phrases from a configurable list within the \u003Cstrong>comment body, email address, or IP address.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>JavaScript-Based Human Interaction Detection\u003C\u002Fstrong> – Sets a verification token when mouse movement, scrolling, or touch interaction is detected.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>(Option) Block Non-Japanese Comments\u003C\u002Fstrong> – Blocks comments that do not contain Japanese characters (Hiragana, Katakana, or Han\u002FKanji), primarily targeting machine-translated or foreign spam.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>These filters are applied in order: if a comment passes the first check, it proceeds to the second, and so on, until all checks are applied or the comment is blocked.\u003C\u002Fp>\n\u003Cp>Additional features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Option to log detected spam in a local log file (up to 1.0 MB).\u003C\u002Fli>\n\u003Cli>Optional email notifications when spam is detected.\u003C\u002Fli>\n\u003Cli>Easy settings page in the WordPress admin panel.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Settings\u003C\u002Fh3>\n\u003Cp>The plugin provides the following settings in the WordPress admin panel:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Enable Spam Protection\u003C\u002Fstrong> – Toggle the spam protection on or off. When disabled, all anti-spam checks are skipped.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Save Spam Detection Log\u003C\u002Fstrong> – Enable or disable logging of detected spam. Logs are saved in a local file up to 1.0 MB within the WordPress uploads directory.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Notification Email Address\u003C\u002Fstrong> – Enter an email address to receive notifications when spam is detected. Leave blank to disable email notifications.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Minimum Submission Time (seconds)\u003C\u002Fstrong> – Set the minimum allowed time between loading the comment form and submitting a comment. Comments submitted faster than this threshold are considered spam.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Forbidden Words List\u003C\u002Fstrong> – Enter one forbidden word, phrase, or IP address per line. Submissions containing these entries in the comment body, \u003Cstrong>email address\u003C\u002Fstrong>, or \u003Cstrong>IP address\u003C\u002Fstrong> will be blocked. \u003Cstrong>Case is insensitive.\u003C\u002Fstrong>\n\u003Cul>\n\u003Cli>\u003Cstrong>Example:\u003C\u002Fstrong>\u003Cbr \u002F>\nviagra\u003Cbr \u002F>\nonline pharmacy\u003Cbr \u002F>\nspam@email.com\u003Cbr \u002F>\n164.138.205.72\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Block No Japanese Comments\u003C\u002Fstrong> – If enabled, this becomes the final check: Comments that contain Japanese characters (Hiragana, Katakana, or Kanji) will be automatically accepted after passing other security checks. \u003Cstrong>Comments without Japanese characters will be blocked.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Arbitrary Section\u003C\u002Fh3>\n\u003Cp>This plugin is designed to be lightweight and fast, ensuring minimal impact on site performance while providing robust protection against comment spam.\u003C\u002Fp>\n","A simple and lightweight yet rock-solid plugin that blocks comment spam using multiple automatic detection methods.",0,411,"2026-01-30T09:21:00.000Z","6.9.4","6.3","7.4",[18,19,20,21,22],"anti-spam","comments","honeypot","security","spam-protection","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftiny-comment-spam-blocker.1.4.0.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":25,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":25,"computed_at":33},"kasuga16",7,1,"2026-04-03T19:05:00.094Z",[35,57,77,99,121],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":25,"vuln_count":32,"unpatched_count":11,"last_vuln_date":56,"fetched_at":27},"antispam-bee","Antispam Bee","2.11.8","pluginkollektiv","https:\u002F\u002Fprofiles.wordpress.org\u002Fpluginkollektiv\u002F","\u003Cp>Say Goodbye to comment spam on your WordPress blog or website. \u003Cem>Antispam Bee\u003C\u002Fem> blocks spam comments and trackbacks effectively, without captchas and without sending personal information to third party services. It is free of charge, ad-free and 100% GDPR compliant.\u003C\u002Fp>\n\u003Ch3>Feature\u002FSettings Overview\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Trust approved commenters.\u003C\u002Fli>\n\u003Cli>Trust commenters with a Gravatar.\u003C\u002Fli>\n\u003Cli>Consider the comment time.\u003C\u002Fli>\n\u003Cli>Allow comments only in a certain language.\u003C\u002Fli>\n\u003Cli>Block or allow commenters from certain countries.\u003C\u002Fli>\n\u003Cli>Treat BBCode links as spam.\u003C\u002Fli>\n\u003Cli>Use regular expressions.\u003C\u002Fli>\n\u003Cli>Search local spam database for commenters previously marked as spammers.\u003C\u002Fli>\n\u003Cli>Notify admins by e-mail about incoming spam.\u003C\u002Fli>\n\u003Cli>Delete existing spam after n days.\u003C\u002Fli>\n\u003Cli>Limit approval to comments\u002Fpings (will delete other comment types).\u003C\u002Fli>\n\u003Cli>Select spam indicators to send comments to deletion directly.\u003C\u002Fli>\n\u003Cli>Optionally exclude trackbacks and pingbacks from spam detection.\u003C\u002Fli>\n\u003Cli>Optionally spam-check comment forms on archive pages.\u003C\u002Fli>\n\u003Cli>Display spam statistics on the dashboard, including daily updates of spam detection rate and a total of blocked spam comments.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Community support via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fantispam-bee\" rel=\"ugc\">support forums on wordpress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Read \u003Ca href=\"https:\u002F\u002Fantispambee.pluginkollektiv.org\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">the documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>We don’t handle support via e-mail, Twitter, GitHub issues etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Active development of this plugin is handled \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpluginkollektiv\u002Fantispam-bee\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Pull requests for documented bugs are highly appreciated.\u003C\u002Fli>\n\u003Cli>If you think you’ve found a bug (e.g. you’re experiencing unexpected behavior), please post at the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fantispam-bee\" rel=\"ugc\">support forums\u003C\u002Fa> first.\u003C\u002Fli>\n\u003Cli>If you want to help us translate this plugin you can do so \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fantispam-bee\" rel=\"nofollow ugc\">on WordPress Translate\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Author: \u003Ca href=\"https:\u002F\u002Fsergejmueller.github.io\u002F\" rel=\"nofollow ugc\">Sergej Müller\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Maintainers: \u003Ca href=\"https:\u002F\u002Fpluginkollektiv.org\" rel=\"nofollow ugc\">pluginkollektiv\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Sophisticated antispam plugin for effective daily comment and trackback spam-fighting. Built with data protection and privacy in mind.",700000,10958057,96,225,"2025-07-22T11:23:00.000Z","6.8.5","4.6","5.2",[18,52,19,53,22],"antispam","spam-filter","https:\u002F\u002Fantispambee.pluginkollektiv.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fantispam-bee.2.11.8.zip","2023-11-27 00:00:00",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":14,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":75,"download_link":76,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"contact-form-7-honeypot","CF7 Apps – Honeypot, Database, Redirection, Webhook, and Addons for Contact Form 7","3.4.0","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>\u003Cstrong>Add extra Spam Protection functionalities to your Contact Form 7 forms with CF7 Apps.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Contact Form 7 is one of the most popular form plugins for WordPress, but \u003Cstrong>it lacks many advanced features\u003C\u002Fstrong> that modern websites need. CF7 Apps adds extra Spam Protection functionalities to your Contact Form 7 forms, introducing honeypot and hCaptcha options.\u003C\u002Fp>\n\u003Cp>👉 Get Support: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcontact-form-7-honeypot\u002F\" rel=\"ugc\">Click Here\u003C\u002Fa>\u003Cbr \u002F>\n👉 Check out the \u003Ca href=\"https:\u002F\u002Fcf7apps.com\u002Fdocs\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=documentation\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>What CF7 Apps Can Do for You ?\u003C\u002Fh3>\n\u003Cp>Right out of the box, CF7 Apps includes:\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Honeypot App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>hCaptcha App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>Database Entries App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>Redirection App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>Webhook App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>ACF Integeration\u003C\u002Fstrong>\u003Cbr \u002F>\n💡 \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fcf7apps.com\u002Fsubmit-idea\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=suggest_a_feature\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>And that’s just the beginning.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Save and Manage CF7 Form Submissions\u003C\u002Fstrong>\u003Cbr \u002F>\nThe Entries Database App stores all Contact Form 7 submissions directly to your WordPress database. Easily filter entries by form or date, view individual CF7 submissions, and export or delete them when needed. This ensures you never lose important leads or messages, even if emails fail to deliver.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Add a Honeypot Field to Prevent Spam\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Our \u003Cstrong>Honeypot Contact Form 7 extension\u003C\u002Fstrong> creates a hidden field inside your Contact Form 7 forms. Real users never see it, but bots do—and that’s how the bots fall for the trap. It blocks automated spam before it even hits your inbox.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Add hCaptcha to Contact Form 7\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Protect your forms from spam bots using \u003Cstrong>hCaptcha,\u003C\u002Fstrong> a privacy-friendly alternative to Google reCAPTCHA. This extension integrates directly with CF7 and works instantly after setup. No coding is required, and no extra plugins are needed. Just set up your site keys and you’re done.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Manage & View Contact Form 7 Entries\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Store, view, and manage all your Contact Form 7 submissions directly inside your WordPress dashboard. This extension logs every form entry automatically, giving you an organized record of user submissions. No coding or third-party tools required just activate and start tracking instantly.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Redirect Users After Form Submission\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Easily redirect users to any internal or external page after submitting a form. This extension lets you control the post-submission experience with custom URLs, thank-you pages, or marketing funnels. No coding needed configure your redirect URL and it works immediately.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Send Form Data via Webhooks\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Automatically forward your Contact Form 7 submission data to any external service using \u003Cstrong>webhooks.\u003C\u002Fstrong>This extension enables seamless API integrations, automation workflows, and third-party connections. No additional plugins or coding required just add your webhook URL and you’re ready to go.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Integrate ACF Fields into Your Forms\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Easily pull Advanced Custom Fields (ACF) data into your Contact Form 7 forms using the built-in ACF field tags. This integration lets you map and display your custom ACF fields directly inside CF7 without any extra plugins or coding. Just enable the feature, select your ACF fields, and your form is ready to use.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe best thing is that both features work independently. You can run them alone or together based on your site’s needs.\u003C\u002Fp>\n\u003Ch3>Real Use Cases for CF7 Apps\u003C\u002Fh3>\n\u003Cp>With the CF7 Apps, you can do the following:\u003Cbr \u002F>\n  ✔️ Trap bots using a honeypot field without affecting users\u003Cbr \u002F>\n  ✔️ Add hCaptcha to Contact Form 7 for privacy-first anti-spam\u003Cbr \u002F>\n  ✔️ Store and manage Contact Form 7 entries directly in WordPress\u003Cbr \u002F>\n  ✔️ Redirect your Contact Form 7 submissions to any internal or external page.\u003Cbr \u002F>\n  ✔️ Send your form data to any third-party service or custom endpoint through our Webhook.\u003Cbr \u002F>\n  ✔️ Display dynamic ACF field values inside your Contact Form 7 forms for personalized entries.\u003C\u002Fp>\n\u003Ch3>Why Should You Install CF7 Apps?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Works exclusively with Contact Form 7\u003C\u002Fli>\n\u003Cli>Modular design — activate only the features you need\u003C\u002Fli>\n\u003Cli>Lightweight — no unnecessary code or bloat\u003C\u002Fli>\n\u003Cli>Built for form security, user control, and advanced customization\u003C\u002Fli>\n\u003Cli>Continuously updated with new apps and requested features\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>We built CF7 Apps for users who want more power without abandoning the simplicity of Contact Form 7.\u003C\u002Fp>\n\u003Ch3>Try Our Other Awesome WordPress Plugins\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-smtp\u002F\" rel=\"ugc\">Post SMTP:\u003C\u002Fa>\u003C\u002Fstrong> Reliable WordPress email delivery plugin with detailed email logs and multiple SMTP integrations.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgutena-forms\u002F\" rel=\"ugc\">Gutena Forms:\u003C\u002Fa>\u003C\u002Fstrong> Create modern, responsive contact forms directly in the Gutenberg block editor. Includes advanced fields, spam protection (reCAPTCHA & Cloudflare Turnstile), and entry management.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-easy-pay\u002F\" rel=\"ugc\">WP EasyPay:\u003C\u002Fa>\u003C\u002Fstrong> Accept Square payments and donations easily on your WordPress site.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpassword-protected\u002F\" rel=\"ugc\">Password Protected:\u003C\u002Fa>\u003C\u002Fstrong> Secure your WordPress site, posts, pages, and categories with simple password protection.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffile-manager-advanced\u002F\" rel=\"ugc\">Advanced File Manager:\u003C\u002Fa>\u003C\u002Fstrong> Manage and organize WordPress files effortlessly from your dashboard.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwc-shop-sync\u002F\" rel=\"ugc\">WC Shop Sync:\u003C\u002Fa>\u003C\u002Fstrong> Add Square payments and sync WooCommerce products, customers, and orders with Square POS.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmycred\u002F\" rel=\"ugc\">myCred:\u003C\u002Fa>\u003C\u002Fstrong> Add gamification, rewards, ranks, and a points management system to your WordPress website.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbookify\u002F\" rel=\"ugc\">Bookify:\u003C\u002Fa>\u003C\u002Fstrong> Your complete online bookings and appointment scheduling solution for WordPress.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Faio-login\u002F\" rel=\"ugc\">All In One Login:\u003C\u002Fa>\u003C\u002Fstrong> Secure your WordPress login page, change wp-login.php URL, and add social logins including Google, Facebook, Microsoft, and LINE.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnew-user-approve\u002F\" rel=\"ugc\">New User Approve:\u003C\u002Fa>\u003C\u002Fstrong> Control new user registrations by approving or denying signups.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwpexperts.io\u002F\" rel=\"nofollow ugc\">WP Experts WooCommerce Store:\u003C\u002Fa>\u003C\u002Fstrong> Explore premium WooCommerce plugins and solutions by WPExperts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute or Report Issues\u003C\u002Fh3>\n\u003Cp>Do you have a feature request or bug to report? Contact us via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcontact-form-7-honeypot\" rel=\"ugc\">official Support Channel.\u003C\u002Fa>\u003C\u002Fp>\n","Addons for Contact Form 7 — Honeypot, Database Entries, Redirection, Spam Protection, Webhooks, ACF integration for Contact Form 7, and more.",300000,5576961,76,131,"2026-01-30T04:54:00.000Z","4.8","5.6",[18,73,74,20,22],"captcha","cf7-database","https:\u002F\u002Fcf7apps.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-honeypot.3.4.0.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":87,"num_ratings":88,"last_updated":89,"tested_up_to":14,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":95,"download_link":96,"security_score":97,"vuln_count":32,"unpatched_count":11,"last_vuln_date":98,"fetched_at":27},"blackhole-bad-bots","Blackhole for Bad Bots","3.8","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cblockquote>\n\u003Cp>✨ Trap bad bots in a virtual black hole\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> Do NOT use this plugin on sites with caching. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fimportant-do-not-use-on-sites-with-caching\u002F\" rel=\"ugc\">Learn more&nbsp;&raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>👾 Bye bye bad bots..\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Bad bots are the worst. They do all sorts of nasty stuff and waste server resources. The Blackhole plugin helps to stop bad bots and save precious resources for legit visitors.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>👾 How does it work?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>First the plugin adds a hidden trigger link to the footer of your pages. You then add a line to your robots.txt file that forbids all bots from following the hidden link. Bots that then ignore or disobey your robots rules will crawl the link and fall into the trap. Once trapped, bad bots are denied further access to your WordPress site.\u003C\u002Fp>\n\u003Cp>I call it the “one-strike” rule: bots have one chance to obey your site’s robots.txt rule. Failure to comply results in immediate banishment. The best part is that the Blackhole only affects bad bots: human users never see the hidden link, and good bots obey the robots rules in the first place. Win-win! 🙂\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>✨ Add a blackhole trap to help stop bad bots\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> Do NOT use this plugin on sites with caching. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fimportant-do-not-use-on-sites-with-caching\u002F\" rel=\"ugc\">Learn more&nbsp;&raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>👾 Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to set up\u003C\u002Fli>\n\u003Cli>Squeaky clean code\u003C\u002Fli>\n\u003Cli>Focused and modular\u003C\u002Fli>\n\u003Cli>Lightweight, fast and flexible\u003C\u002Fli>\n\u003Cli>Built with the WordPress API\u003C\u002Fli>\n\u003Cli>Works with other security plugins\u003C\u002Fli>\n\u003Cli>Easy to reset the list of bad bots\u003C\u002Fli>\n\u003Cli>Easy to delete any bot from the list\u003C\u002Fli>\n\u003Cli>Regularly updated and “future proof”\u003C\u002Fli>\n\u003Cli>Blackhole link includes “nofollow” attribute\u003C\u002Fli>\n\u003Cli>Plugin options configurable via settings screen\u003C\u002Fli>\n\u003Cli>Works silently behind the scenes to protect your site\u003C\u002Fli>\n\u003Cli>Whitelists all major search engines to never block\u003C\u002Fli>\n\u003Cli>Focused on flexibility, performance, and security\u003C\u002Fli>\n\u003Cli>Email alerts with WHOIS lookup for blocked bots\u003C\u002Fli>\n\u003Cli>Complete inline documentation via the Help tab\u003C\u002Fli>\n\u003Cli>Provides setting to whitelist any IP addresses\u003C\u002Fli>\n\u003Cli>Customize the message displayed to bad bots 😉\u003C\u002Fli>\n\u003Cli>One-click restore the plugin default options\u003C\u002Fli>\n\u003Cli>Does NOT use or require any .htaccess rules\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Blackhole for Bad Bots protects your site against bad bots, spammers, scrapers, scanners, and other automated threats.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>✨ Not using WordPress? Check out the \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fblackhole-bad-bots\u002F\" rel=\"nofollow ugc\">standalone PHP version of Blackhole\u003C\u002Fa>!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>👾 Whitelist\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, this plugin does NOT block any of the major search engines (user agents):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>AOL.com\u003C\u002Fli>\n\u003Cli>Baidu\u003C\u002Fli>\n\u003Cli>Bingbot\u002FMSN\u003C\u002Fli>\n\u003Cli>DuckDuckGo\u003C\u002Fli>\n\u003Cli>Googlebot\u003C\u002Fli>\n\u003Cli>Teoma\u003C\u002Fli>\n\u003Cli>Yahoo!\u003C\u002Fli>\n\u003Cli>Yandex\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>These search engines (and all of their myriad variations) are whitelisted via user agent. So are a bunch of other “useful” bots. They always are allowed full access to your site, even if they disobey your robots.txt rules. This list can be customized in the plugin settings. For a complete list of whitelisted bots, visit the Help tab in the plugin settings (under “Whitelist Settings”).\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>✨ Check out \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> and level up with advanced features!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>👾 Exclusive Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Option to disable for logged-in users\u003C\u002Fli>\n\u003Cli>Threshold control (number of allowed hits)\u003C\u002Fli>\n\u003Cli>Custom email alerts\u003C\u002Fli>\n\u003Cli>Custom messages for blocked bots\u003C\u002Fli>\n\u003Cli>Custom redirect for blocked bots\u003C\u002Fli>\n\u003Cli>Custom blackhole trigger links\u003C\u002Fli>\n\u003Cli>Complete inline documentation\u003C\u002Fli>\n\u003Cli>Block bots based on user agent\u003C\u002Fli>\n\u003Cli>Block bots based on IP address\u003C\u002Fli>\n\u003Cli>Whitelist\u002Fallow bots by user agent\u003C\u002Fli>\n\u003Cli>Whitelist\u002Fallow bots by IP address\u003C\u002Fli>\n\u003Cli>Redirect whitelisted bots\u003C\u002Fli>\n\u003Cli>Set custom HTTP Status Code\u003C\u002Fli>\n\u003Cli>Full-featured Bad Bot Log with paging, sorting, and field search\u003C\u002Fli>\n\u003Cli>Manually add bad bots to the Bad Bot Log\u003C\u002Fli>\n\u003Cli>Geo\u002FIP location lookups for each bad bot\u003C\u002Fli>\n\u003Cli>Logs number of blocked hits for each bot\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>..plus everything the free version can do and more.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>✨ Learn more and \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">get Blackhole Pro &raquo;\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>👾 Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>User Data:\u003C\u002Fstrong> This plugin automatically blocks bad bots. When bad bots fall into the trap, their IP address, user agent, and other request data are stored in the WP database. No other user data is collected by this plugin. At any time, the administrator may delete all saved data via the plugin settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Services:\u003C\u002Fstrong> This plugin does not connect to any third-party locations or services.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cookies:\u003C\u002Fstrong> This plugin does not set any cookies.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Credit:\u003C\u002Fstrong> Header Image Courtesy NASA\u002FJPL-Caltech.\u003C\u002Fp>\n\u003Cp>Blackhole for Bad Bots is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>👾 Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thank you! 🙂\u003C\u002Fp>\n","Blackhole is a WordPress security plugin that detects and traps bad bots in a virtual black hole, where they are denied access to your entire site.",30000,863484,94,147,"2026-02-06T22:29:00.000Z","4.7","5.6.20",[18,93,94,20,21],"blackhole","bots","https:\u002F\u002Fperishablepress.com\u002Fblackhole-bad-bots\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblackhole-bad-bots.3.8.zip",98,"2022-01-31 00:00:00",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":85,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":14,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":116,"download_link":117,"security_score":118,"vuln_count":119,"unpatched_count":11,"last_vuln_date":120,"fetched_at":27},"stop-spammer-registrations-plugin","Stop Spammers Classic","2026.3","Web Guy","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebguyio\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fdam-spam\u002Fissues\" rel=\"nofollow ugc\">💬 Ask Question\u003C\u002Fa> | \u003Ca href=\"mailto:webguywork@gmail.com\" rel=\"nofollow ugc\">📧 Email Me\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>A simplified, restored, and preserved version of the original Stop Spammers plugin.\u003C\u002Fp>\n\u003Cp>🥪 \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsponsors\u002Fwebguyio\" rel=\"nofollow ugc\">Buy Me a Sandwich\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Development for Stop Spammers has slowed down; I recommend switching to \u003Ca href=\"https:\u002F\u002Fdamspam.com\u002F\" rel=\"nofollow ugc\">Dam Spam\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>🧐 \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fdam-spam\u002Fissues\u002F8\" rel=\"nofollow ugc\">Why, What Happened?\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>However, rest-assured that if you can’t migrate to Dam Spam, I’ll still continue making sure that Stop Spammers is safe, stable, and supported.\u003C\u002Fp>\n\u003Cp>🛟 \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fdam-spam\u002Fissues\" rel=\"nofollow ugc\">Get Support\u003C\u002Fa>\u003C\u002Fp>\n","A simplified, restored, and preserved version of the original Stop Spammers plugin.",2585698,88,243,"2026-02-24T20:20:00.000Z","3.0","5.0",[18,114,21,115,22],"no-spam","spam","https:\u002F\u002Fdamspam.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstop-spammer-registrations-plugin.zip",89,8,"2026-01-27 00:00:00",{"slug":122,"name":123,"version":124,"author":103,"author_profile":104,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":14,"requires_at_least":23,"requires_php":23,"tags":132,"homepage":116,"download_link":133,"security_score":134,"vuln_count":32,"unpatched_count":11,"last_vuln_date":135,"fetched_at":27},"dam-spam","Dam Spam","1.1.3","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwebguyio\u002Fdam-spam\u002Fissues\" rel=\"nofollow ugc\">💬 Ask Question\u003C\u002Fa> | \u003Ca href=\"mailto:webguywork@gmail.com\" rel=\"nofollow ugc\">📧 Email Me\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Dam Spam is a comprehensive spam protection plugin that blocks spam registrations, login attempts, comments, and contact form submissions. It provides multiple layers of protection including IP blocking, email validation, CAPTCHA challenges, and integration with third-party spam detection services.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How it Works\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Dam Spam runs a series of configurable checks on registrations, logins, comments, and form submissions. When a submission is flagged as potentially suspicious, you can choose to block it outright or present a CAPTCHA challenge. Legitimate users are cached to speed up future submissions, while known spam sources are permanently blocked.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Multiple Protection Layers\u003C\u002Fstrong> – Block spam using IP lists, disposable email detection, and behavioral analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CAPTCHA Support\u003C\u002Fstrong> – Integrate with Google reCAPTCHA or hCaptcha to challenge suspicious submissions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Third-Party API Integration\u003C\u002Fstrong> – Connect with Akismet, Stop Forum Spam, BotScout, and other spam detection services\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Challenges\u003C\u002Fstrong> – Present challenges only to suspicious users while allowing legitimate users through\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Allow and Block Lists\u003C\u002Fstrong> – Maintain custom lists of allowed and blocked IPs, emails, and user IDs\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Caching\u003C\u002Fstrong> – Cache known good and bad IPs to improve performance and reduce API calls\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Logging\u003C\u002Fstrong> – Track all blocked attempts and approved submissions for review\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Login\u002FRegistration Forms\u003C\u002Fstrong> – Optional custom forms with built-in spam protection\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Management\u003C\u002Fstrong> – Identify and manage inactive or suspicious user accounts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Configuration\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>After installation, go to the Dam Spam settings in your WordPress admin to:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enable the protection types you need (registration, login, comments, contact forms)\u003C\u002Fli>\n\u003Cli>Choose which spam detection methods to use (IP checks, email validation, third-party APIs)\u003C\u002Fli>\n\u003Cli>Configure CAPTCHA settings if desired\u003C\u002Fli>\n\u003Cli>Set up allow and block lists for your specific needs\u003C\u002Fli>\n\u003Cli>Review logs to fine-tune your protection settings\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Differences from Stop Spammers\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Dam Spam is a fork of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fstop-spammer-registrations-plugin\u002F\" rel=\"ugc\">Stop Spammers\u003C\u002Fa>. While the core spam protection functionality remains similar, Dam Spam’s file and code structure has been significantly cleaned up and modernized.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Addon Support\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Dam Spam supports custom spam checks via addons. Create a separate plugin with this structure:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\n\u002F*\nPlugin Name: Dam Spam Addon Example\nDescription: Custom spam check addon for Dam Spam\nVersion: 1.0\n*\u002F\n\nadd_filter( 'dam_spam_addons_block', function( $addons ) {\n    $addons[] = array( __FILE__, 'My_Spam_Check' );\n    return $addons;\n} );\n\nclass My_Spam_Check {\n    public function process( $ip, &$stats, &$options, &$post ) {\n        if ( $ip === '123.45.67.89' ) {\n            return 'Blocked by custom check';\n        }\n        return false;\n    }\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cul>\n\u003Cli>Hook into \u003Ccode>dam_spam_addons_block\u003C\u002Fcode> or \u003Ccode>dam_spam_addons_allow\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Return an array with your file path and class name\u003C\u002Fli>\n\u003Cli>Create a class with a \u003Ccode>process()\u003C\u002Fcode> method\u003C\u002Fli>\n\u003Cli>For \u003Ccode>dam_spam_addons_block\u003C\u002Fcode>: return \u003Ccode>false\u003C\u002Fcode> to continue checking, or a string to block\u003C\u002Fli>\n\u003Cli>For \u003Ccode>dam_spam_addons_allow\u003C\u002Fcode>: return \u003Ccode>false\u003C\u002Fcode> to continue checking, or a string to approve\u003C\u002Fli>\n\u003Cli>Test using Dam Spam > Testing (spam checks don’t run when logged in)\u003C\u002Fli>\n\u003C\u002Ful>\n","Comprehensive spam protection for WordPress registration, login, comments, and contact forms.",1000,7382,86,4,"2026-03-07T03:55:00.000Z",[18,114,21,115,22],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdam-spam.zip",99,"2026-02-17 19:02:21",{"attackSurface":137,"codeSignals":169,"taintFlows":182,"riskAssessment":183,"analyzedAt":186},{"hooks":138,"ajaxHandlers":165,"restRoutes":166,"shortcodes":167,"cronEvents":168,"entryPointCount":11,"unprotectedCount":11},[139,145,149,153,156,160],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","admin_init","tcsb_register_settings","tiny-comment-spam-blocker.php",172,{"type":140,"name":146,"callback":147,"file":143,"line":148},"admin_menu","tcsb_add_admin_menu",186,{"type":140,"name":150,"callback":151,"file":143,"line":152},"comment_form_after_fields","tcsb_add_spam_fields",360,{"type":140,"name":154,"callback":151,"file":143,"line":155},"comment_form_logged_in_after",361,{"type":140,"name":157,"callback":158,"file":143,"line":159},"wp_footer","tcsb_print_js_checker",390,{"type":161,"name":162,"callback":163,"priority":32,"file":143,"line":164},"filter","preprocess_comment","tcsb_check_spam",555,[],[],[],[],{"dangerousFunctions":170,"sqlUsage":171,"outputEscaping":173,"fileOperations":179,"externalRequests":11,"nonceChecks":180,"capabilityChecks":32,"bundledLibraries":181},[],{"prepared":11,"raw":11,"locations":172},[],{"escaped":174,"rawEcho":32,"locations":175},39,[176],{"file":143,"line":177,"context":178},352,"raw output",2,3,[],[],{"summary":184,"deductions":185},"The tiny-comment-spam-blocker plugin v1.4.0 exhibits a strong security posture based on the provided static analysis. The complete absence of AJAX handlers, REST API routes, shortcodes, and cron events, particularly those lacking authentication or permission checks, significantly minimizes the attack surface.  The code signals also indicate good security practices, with no dangerous functions identified, all SQL queries utilizing prepared statements, and a very high percentage of properly escaped output.  Furthermore, the presence of nonce and capability checks suggests an effort to protect against common web vulnerabilities.  The plugin's vulnerability history is also clean, with no recorded CVEs, which is a positive indicator of its security over time.  However, while the code is generally clean, the lack of taint analysis data means potential vulnerabilities related to unsanitized user input flowing into sensitive operations cannot be definitively ruled out. The file operations and external HTTP requests, though few, are areas that always warrant scrutiny, even if no immediate issues were flagged. Overall, this plugin appears to be well-developed from a security perspective, with a minimal attack surface and good coding practices.",[],"2026-03-17T06:21:47.859Z",{"wat":188,"direct":193},{"assetPaths":189,"generatorPatterns":190,"scriptPaths":191,"versionParams":192},[],[],[],[],{"cssClasses":194,"htmlComments":196,"htmlAttributes":198,"restEndpoints":199,"jsGlobals":200,"shortcodeOutput":201},[195],"tcsb-settings-page",[197],"\u003C!-- Tiny Comment Spam Blocker Settings -->",[],[],[],[]]