[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fk4egdyiUDhz_UN9oIOSOaK1k3zCgT-Uo_kSgIlTTr_U":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":124,"fingerprints":173},"trusted-only","Trusted Only","1.1","andreyk","https:\u002F\u002Fprofiles.wordpress.org\u002Fandreyk\u002F","\u003Cp>Just add usernames of those who are allowed to read your site, then no other person will be able to view it.\u003C\u002Fp>\n","Makes your site content visible only for several users who are in your trusted list.",10,3915,100,1,"","3.5.2","3.0",[19,20,21,22,23],"access","admin","administration","user","users","http:\u002F\u002Fandrey.eto-ya.com\u002Fwordpress\u002Fmy-plugins\u002Ftrusted-only","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftrusted-only.1.1.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":31,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"andreykashops",7,2360,87,30,85,"2026-04-04T02:40:44.202Z",[39,60,78,92,102],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":57,"download_link":58,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"users-by-date-registered","Users by Date Registered","1.0.7","Sébastien Dumont","https:\u002F\u002Fprofiles.wordpress.org\u002Fsebd86\u002F","\u003Cp>This simple plugin adds a new column to the users table displaying the date the user registered and allows you to filter the users by date.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Use the WordPress.org forums for \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fusers-by-date-registered\" rel=\"ugc\">community support\u003C\u002Fa>. If you spot a bug, you can of course log it on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fseb86\u002Fusers-by-date-registered\u002Fissues\" rel=\"nofollow ugc\">Github\u003C\u002Fa> instead where I can act upon it more efficiently.\u003C\u002Fp>\n\u003Ch4>Please Leave a Review\u003C\u002Fh4>\n\u003Cp>Your ratings make a big difference. If you like Users by Date Registered, please consider spending a minute or two \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fusers-by-date-registered\u002Freviews\u002F?rate=5#postform\" rel=\"ugc\">leaving a review\u003C\u002Fa> and tell me what you think about the plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>More information\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Other \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsebd86\u002F\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa> by \u003Ca href=\"https:\u002F\u002Fsebastiendumont.com\u002F\" rel=\"nofollow ugc\">Sébastien Dumont\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contact Sébastien on Twitter: \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fsebd86\" rel=\"nofollow ugc\">@sebd86\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>If you’re a developer yourself, follow or contribute to the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fseb86\u002Fusers-by-date-registered\" rel=\"nofollow ugc\">Users by Date Registered plugin on GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows you to see the dates users registered on and filter the users by date.",1000,20387,9,"2019-08-20T18:59:00.000Z","5.2.24","4.5","5.6",[20,21,55,56,23],"date","filter","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fusers-by-date-registered","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusers-by-date-registered.1.0.7.zip","2026-03-15T15:16:48.613Z",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":11,"downloaded":68,"rating":69,"num_ratings":14,"last_updated":70,"tested_up_to":71,"requires_at_least":15,"requires_php":15,"tags":72,"homepage":76,"download_link":77,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"bp-signup-member-type","BP Signup Member Type","0.1.1","Meitar","https:\u002F\u002Fprofiles.wordpress.org\u002Fmeitar\u002F","\u003Cp>Augment your BuddyPress sign-up form with your social network’s registered \u003Ca href=\"https:\u002F\u002Fcodex.buddypress.org\u002Fdeveloper\u002Fmember-types\u002F\" rel=\"nofollow ugc\">Member Types\u003C\u002Fa>. This allows new users to self-select one or more Member Types for themselves when they register for your site. You choose which Member Types you want to allow people to register with when they fill in your signup form.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works with all BuddyPress member types registered by other plugins and themes.\u003C\u002Fli>\n\u003Cli>Seamlessly integrates with the BuddyPress registration form and administration screens.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Donations for this plugin make up a chunk of my income. If you continue to enjoy this plugin, please consider \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=TJLPJYXHSRBEE&lc=US&item_name=BP%20Signup%20Member%20Type&item_number=bp-signup-member-type&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donate_SM%2egif%3aNonHosted\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>. 🙂 Thank you for your support!\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Once installed, simply access your main BuddyPress options (WordPress Dashboard → Settings → BuddyPress → Options → Main Settings) and you’ll see several \u003Cem>member type\u003C\u002Fem> options for you to configure.\u003C\u002Fp>\n","Add a \"Member Type\" option to the BuddyPress registration form.",2105,20,"2020-05-14T04:58:00.000Z","4.8.28",[21,73,74,75,23],"buddypress","member-type","members","https:\u002F\u002Fgithub.com\u002Ffabacab\u002Fbp-signup-member-type","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-signup-member-type.zip",{"slug":79,"name":80,"version":63,"author":64,"author_profile":65,"description":81,"short_description":82,"active_installs":11,"downloaded":83,"rating":26,"num_ratings":26,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":15,"tags":87,"homepage":90,"download_link":91,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"wp-ldap","WP-LDAP","\u003Cp>This plugin turns your WordPress Dashboard into a familiar management interface for an enterprise-scale LDAP Directory Information Tree (DIT). Configure a connection to your LDAPv3 directory server, and from then on any modifications you make to your WordPress user database through the WordPress admin screens will be reflected in your LDAP database. This offers a simpler and more convenient front-end for managing user account information to support single sign-on (SSO), identity management, and other enterprise functions.\u003C\u002Fp>\n\u003Cp>\u003Cem>Donations for this plugin make up a chunk of my income. If you continue to enjoy this plugin, please consider \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=TJLPJYXHSRBEE&lc=US&item_name=WP-LDAP&item_number=WP-LDAP&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donate_SM%2egif%3aNonHosted\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>. 🙂 Thank you for your support!\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>All user accounts on the WordPress side are mirrored as \u003Ca href=\"https:\u002F\u002Fwww.ietf.org\u002Frfc\u002Frfc2798.txt\" rel=\"nofollow ugc\">\u003Ccode>inetOrgPerson\u003C\u002Fcode> (RFC 2798)\u003C\u002Fa> entries on the LDAP side. The following WordPress user account fields to LDAP attribute translations take place when a new WordPress user is created:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The WordPress \u003Ccode>user_login\u003C\u002Fcode> field becomes the \u003Ccode>uid\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>user_email\u003C\u002Fcode> field becomes the \u003Ccode>mail\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>display_name\u003C\u002Fcode> field becomes the \u003Ccode>displayName\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>user_pass\u003C\u002Fcode> field becomes the \u003Ccode>userPassword\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>There is no mapping for the WordPress user ID number on the LDAP side. Instead, users are uniquely identified by their fully-qualified Distinguished Name (DN). A user’s DN is automatically composed by combining their WordPress \u003Ccode>user_login\u003C\u002Fcode> with the WordPress Multisite’s configured LDAP Search Base setting. For instance, by default, a WordPress Multisite with WP-LDAP installed running at \u003Ccode>https:\u002F\u002Fexample.com\u002F\u003C\u002Fcode> with a user whose username is \u003Ccode>exampleuser\u003C\u002Fcode> will automatically be mirrored over LDAP to the user identified as \u003Ccode>uid=exampleuser,dc=example,dc=com\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>In addition to the above mappings, the following optional mappings also take place if or when the user updates their user profile:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The WordPress \u003Ccode>first_name\u003C\u002Fcode> field becomes the \u003Ccode>givenName\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>last_name\u003C\u002Fcode> field becomes the \u003Ccode>sn\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>nickname\u003C\u002Fcode> field becomes the \u003Ccode>cn\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>description\u003C\u002Fcode> field becomes the \u003Ccode>description\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress \u003Ccode>user_url\u003C\u002Fcode> field becomes the \u003Ccode>labeledURI\u003C\u002Fcode> attribute in the LDAP database.\u003C\u002Fli>\n\u003Cli>The WordPress user’s avatar becomes the \u003Ccode>jpegPhoto\u003C\u002Fcode> attribute in the LDAP database. (Not yet implemented.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Moreover, WP-LDAP is aware of certain features provided by other plugins. These include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The WordPress user’s S\u002FMIME certificate (\u003Ccode>smime_certificate\u003C\u002Fcode> field) becomes the \u003Ccode>userSMIMECertificate\u003C\u002Fcode> attribute in the LDAP database. (This functionality is provided by the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-pgp-encrypted-emails\u002F\" rel=\"ugc\">WP PGP Encrypted Emails\u003C\u002Fa> plugin and that plugin must be installed and activated for this to work.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is designed for medium to large deployments of WordPress Multisite (or Multi-Network) instances, originally developed as a collaboration with the \u003Ca href=\"https:\u002F\u002Fglocal.coop\u002Factivist-network-platform\u002F\" rel=\"nofollow ugc\">Glocal Coop’s Activist Network Platform\u003C\u002Fa> project. If you run multiple WordPress Multisite Networks, you can configure each WP Network with different LDAP settings. This plugin does not currently support single-site installs; please \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmeitar\u002Fwp-ldap\u002Fissues\" rel=\"nofollow ugc\">post an issue on GitHub\u003C\u002Fa> if you want to use LDAP data stores with a WP single-site install and we can discuss use cases.\u003Cbr \u002F>\nThis plugin is free software, but grocery stores do not offer free food. \u003Cem>Donations for this plugin make up a chunk of my income. If you continue to enjoy this plugin, please consider \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=TJLPJYXHSRBEE&lc=US&item_name=WP-LDAP&item_number=WP-LDAP&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donate_SM%2egif%3aNonHosted\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>. 🙂 Thank you for your support!\u003C\u002Fem>\u003C\u002Fp>\n","Translates the WordPress user database to an LDAP store of the same; manage your LDAP DIT using your WordPress Dashboard.",1801,"2017-05-25T05:01:00.000Z","4.7.32","4.6",[21,88,89,23],"ldap","multisite","https:\u002F\u002Fgithub.com\u002Fmeitar\u002Fwp-ldap","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-ldap.zip",{"slug":93,"name":94,"version":63,"author":64,"author_profile":65,"description":95,"short_description":96,"active_installs":26,"downloaded":97,"rating":26,"num_ratings":26,"last_updated":98,"tested_up_to":71,"requires_at_least":15,"requires_php":15,"tags":99,"homepage":100,"download_link":101,"security_score":36,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"bp-delegated-xprofile","BP Delegated XProfile","\u003Cp>Creates a simple, secure delegation system whereby a privileged user (such as an administrator) can assign other registered BuddyPress members to be “delegates” for a given user. A delegate has the capability to view and edit Extended Profile (XProfile) fields for the delegated user. This is useful on sites where certain relationships exist between one user and another, such as legal guardianship by an adult over a child. Using delegation reduces the need to share passwords or log in to shared accounts.\u003C\u002Fp>\n\u003Cp>\u003Cem>Donations for this plugin make up a chunk of my income. If you continue to enjoy this plugin, please consider \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_donations&business=TJLPJYXHSRBEE&lc=US&item_name=BP%20Delegated%20XProfile&item_number=bp-delegated-xprofile&currency_code=USD&bn=PP%2dDonationsBF%3abtn_donate_SM%2egif%3aNonHosted\" rel=\"nofollow ugc\">making a donation\u003C\u002Fa>. 🙂 Thank you for your support!\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Roles and capabilities\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin uses the built-in capabilities system as part of WordPress core, along with core BuddyPress hooks (\u003Ccode>bp_current_user_can\u003C\u002Fcode>) to check for appropriate permissions, making it both simple to customize and as secure as WP and BP core code. The custom capabilities are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>edit_user_delegates\u003C\u002Fcode> – Users with this capability can assign delegates for users they can edit (determined by \u003Ccode>edit_users\u003C\u002Fcode>).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Additionally, the following core capabilities are required:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>list_users\u003C\u002Fcode> – The delegation options implicitly enumerate all registered users, so a user must also have the \u003Ccode>list_users\u003C\u002Fcode> capability to be granted access to the Delegation user interface.\u003C\u002Fli>\n\u003Cli>\u003Ccode>edit_users\u003C\u002Fcode> – If you cannot \u003Ccode>edit_users\u003C\u002Fcode>, you cannot \u003Ccode>edit_user_delegates\u003C\u002Fcode>, either.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>On a default WordPress and BuddyPress installation, these capabilities are granted only to Administrator users. However, this can be changed using the built-in capability filter hooks.\u003C\u002Fp>\n","Enables delegating a user's Extended Profile for editing by other users.",1462,"2017-08-23T21:01:00.000Z",[21,73,74,75,23],"https:\u002F\u002Fgithub.com\u002Fmeitar\u002Fbp-delegated-xprofile","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-delegated-xprofile.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":112,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":117,"tags":118,"homepage":122,"download_link":123,"security_score":112,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":59},"remove-dashboard-access-for-non-admins","Remove Dashboard Access","1.2.1","TrustedLogin","https:\u002F\u002Fprofiles.wordpress.org\u002Ftrustedlogin\u002F","\u003Cp>The easiest and safest way to restrict access to your WordPress site’s Dashboard and administrative menus. Remove Dashboard Access is a lightweight plugin that automatically redirects users who shouldn’t have access to the Dashboard to a custom URL of your choosing. Redirects can also be configured on a per-role\u002Fper-capability basis, allowing you to keep certain users out of the Dashboard, while retaining access for others.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Limit Dashboard access to user roles:\n\u003Cul>\n\u003Cli>Admins only\u003C\u002Fli>\n\u003Cli>Admins + editors\u003C\u002Fli>\n\u003Cli>Admins, editors, and authors\u003C\u002Fli>\n\u003Cli>or restrict by specific user capability\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Choose your own redirect URL\u003C\u002Fli>\n\u003Cli>Optionally allow users to edit their profiles\u003C\u002Fli>\n\u003Cli>Display a message on the login screen so users know why they’re being redirected\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Blocking access to the Dashboard is a great way to prevent clients from breaking their sites, prevent users from seeing things they shouldn’t, and to keep your site’s backend more secure.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Allow only users with roles or capabilities:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can restrict Dashboard access to Admins only, Editors or above, Authors or above, or by selecting a specific user capability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Grant access to user profiles:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Optionally allow all users the ability to edit their profiles in the Dashboard. Users lacking the chosen capability won’t be able to access any other sections of the Dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Show a custom login message:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Supply a message to display on the login screen. Leaving this blank disables the message.\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable Dashboard access for users of a specific role or capability. Disallowed users are redirected to a chosen URL. Get set up in seconds.",30000,467245,92,78,"2024-11-29T20:13:00.000Z","6.7.5","3.1.0","5.3",[19,21,119,120,121],"dashboard","login","restrict","https:\u002F\u002Fwww.trustedlogin.com\u002Fremove-dashboard-access\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-dashboard-access-for-non-admins.1.2.1.zip",{"attackSurface":125,"codeSignals":155,"taintFlows":165,"riskAssessment":166,"analyzedAt":172},{"hooks":126,"ajaxHandlers":151,"restRoutes":152,"shortcodes":153,"cronEvents":154,"entryPointCount":26,"unprotectedCount":26},[127,133,136,140,144,148],{"type":128,"name":129,"callback":130,"file":131,"line":132},"action","init","trusted_only_init","trusted-only.php",29,{"type":56,"name":134,"callback":135,"file":131,"line":35},"login_message","trusted_only_login_message",{"type":128,"name":137,"callback":138,"file":131,"line":139},"admin_menu","trusted_only_menu",31,{"type":128,"name":141,"callback":142,"file":131,"line":143},"login_head","trusted_only_login_head",32,{"type":56,"name":145,"callback":146,"priority":11,"file":131,"line":147},"login_redirect","trusted_only_login_redirect",33,{"type":128,"name":149,"callback":130,"file":131,"line":150},"admin_init",67,[],[],[],[],{"dangerousFunctions":156,"sqlUsage":157,"outputEscaping":159,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":14,"bundledLibraries":164},[],{"prepared":26,"raw":26,"locations":158},[],{"escaped":26,"rawEcho":14,"locations":160},[161],{"file":131,"line":162,"context":163},132,"raw output",[],[],{"summary":167,"deductions":168},"The \"trusted-only\" v1.1 plugin presents a generally positive security posture based on the provided static analysis. It demonstrates a lack of identified vulnerabilities in its history and a clean taint analysis, with no critical or high severity flows found. Furthermore, the plugin doesn't appear to have a significant attack surface, with zero AJAX handlers, REST API routes, shortcodes, or cron events detected. The use of prepared statements for SQL queries is a strong security practice.\n\nHowever, a significant concern arises from the \"Output escaping\" signal, where 100% of the outputs are not properly escaped. This indicates a potential for Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the website if user-provided data is displayed without proper sanitization. While the plugin has a capability check, the lack of nonce checks on any entry points (though none were identified) could also be a concern in a broader context, especially if new entry points were to be introduced without adequate security measures.\n\nIn conclusion, the plugin benefits from a clean vulnerability history and a limited attack surface. The main weakness lies in the unescaped output, which introduces a notable risk of XSS. Addressing the output escaping issue should be a top priority to improve its overall security.",[169],{"reason":170,"points":171},"Output escaping is not properly implemented",6,"2026-03-16T23:21:29.485Z",{"wat":174,"direct":179},{"assetPaths":175,"generatorPatterns":176,"scriptPaths":177,"versionParams":178},[],[],[],[],{"cssClasses":180,"htmlComments":182,"htmlAttributes":183,"restEndpoints":184,"jsGlobals":185,"shortcodeOutput":186},[181],"trusted-only-message",[],[],[],[],[]]