
Vigilant Healthchecks Security & Risk Analysis
wordpress.org/plugins/vigilant-healthchecksA WordPress plugin that provides healthchecks to your WordPress site that integrate seamlessly with Vigilant (https://govigilant.io).
Is Vigilant Healthchecks Safe to Use in 2026?
Generally Safe
Score 100/100Vigilant Healthchecks has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The vigilant-healthchecks plugin v1.0.0 exhibits a strong security posture based on the provided static analysis and vulnerability history. The plugin has a minimal attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events that could be exploited. Furthermore, the code adheres to good security practices by utilizing prepared statements for all SQL queries and properly escaping all output. The absence of file operations and external HTTP requests also reduces potential avenues for attack. Crucially, the plugin has no recorded vulnerabilities or CVEs, indicating a history of secure development or a lack of exposure to known exploit techniques.
While the plugin demonstrates excellent security fundamentals, a notable absence of nonce checks across its entry points, coupled with only one capability check, presents a potential, albeit theoretical, concern. The static analysis reported zero AJAX handlers without authentication, implying any existing handlers *do* have checks, but the absence of explicitly identified nonce checks in the analysis is a point of note. The taint analysis showing zero flows with unsanitized paths is a positive indicator, reinforcing the idea that data entering the plugin is handled securely. Overall, vigilant-healthchecks appears to be a very secure plugin, with the only area for potential improvement being the explicit and documented implementation of nonces for any future or existing interactive elements, though currently, the lack of an attack surface makes this less of an immediate threat.
Key Concerns
- Missing nonce checks
- Low number of capability checks
Vigilant Healthchecks Security Vulnerabilities
Vigilant Healthchecks Release Timeline
Vigilant Healthchecks Code Analysis
SQL Query Safety
Output Escaping
Vigilant Healthchecks Attack Surface
WordPress Hooks 6
Maintenance & Trust
Vigilant Healthchecks Maintenance & Trust
Maintenance Signals
Community Trust
Vigilant Healthchecks Alternatives
WP Healthcheck
wp-healthcheck
WP Healthcheck is a plugin to check the health of your WordPress install.
PromPress
prompress
Monitor the performance and health of your site with Prometheus.
SlyMetrics
slymetrics
A comprehensive WordPress plugin that exports WordPress metrics in Prometheus format for monitoring and observability.
Synapse – Data Bridge for Automation
synapse
The data bridge for WordPress. A powerful REST API to monitor sites and automate workflows with n8n, Zapier, Make, and your own scripts.
Gear5 Plugin
gear5
A simple plugin for website performance monitoring and alerting using Gear5
Vigilant Healthchecks Developer Profile
1 plugin · 0 total installs
How We Detect Vigilant Healthchecks
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/vigilant-healthchecks/assets/css/admin.css/wp-content/plugins/vigilant-healthchecks/assets/js/admin.js/wp-content/plugins/vigilant-healthchecks/assets/js/admin.jsvigilant-healthchecks/assets/css/admin.css?ver=vigilant-healthchecks/assets/js/admin.js?ver=HTML / DOM Fingerprints
/wp-json/vigilant/v1/health