[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fial6eEl__1NviznJ0yf9W1ormjc-3jSLCW-a4cO1Jx4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":127,"fingerprints":157},"what-template","What Template","0.1","Brian Alexander","https:\u002F\u002Fprofiles.wordpress.org\u002Fironprogrammer\u002F","\u003Cp>Adds the current page’s template name to the admin bar.\u003C\u002Fp>\n\u003Cp>Because this plugin reveals potentially sensitive information about the active theme, it is recommended for development environments only, and should not be enabled on a production site.\u003C\u002Fp>\n","Adds the current page's template name to the admin bar.",1000,22245,100,3,"2024-07-19T20:49:00.000Z","6.6.5","3.1","",[20,21,22,23],"admin-bar","debug","development","template","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwhat-template\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhat-template.0.1.2.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"ironprogrammer",1,30,88,"2026-04-03T23:03:23.144Z",[38,55,75,92,108],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":27,"downloaded":46,"rating":27,"num_ratings":27,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":53,"download_link":54,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"current-template-insights","Current Template Insights","1.0.3","macurious","https:\u002F\u002Fprofiles.wordpress.org\u002Fmacurious\u002F","\u003Cp>\u003Cstrong>Displays the current template file and key page details in the WordPress admin bar for logged-in administrators.\u003C\u002Fstrong>\u003Cbr \u002F>\nNo setup required: just install, activate, and see the info bar on any front-end page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Shows “📄 Template: ” in the front-end admin bar\u003Cbr \u002F>\n– Details on hover\u002Fclick: full template path, post ID, post type, slug, theme name & version, locale, body classes, query vars, conditionals, DB query count, memory usage, and more\u003Cbr \u002F>\n– No settings page, no configuration\u003Cbr \u002F>\n– Works with classic and block\u002FFSE themes (special info for block themes)\u003Cbr \u002F>\n– Developer-friendly, lightweight, no bloat\u003C\u002Fp>\n","Quickly view the active template file and important page information directly in your WordPress admin bar.",347,"2025-12-17T16:14:00.000Z","6.9.4","5.5","7.4",[20,21,22,23,52],"theme","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcurrent-template-insights\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcurrent-template-insights.1.0.3.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":13,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":18,"tags":69,"homepage":72,"download_link":73,"security_score":74,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"what-template-am-i-using","What Template Am I Using","0.2.0","webdeveric","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebdeveric\u002F","\u003Cp>This plugin is intended for theme developers to use. It shows the current template being used to render the page, current post type, and much more.\u003C\u002Fp>\n\u003Cp>The info is only displayed for users that have the edit_theme_options capability.\u003C\u002Fp>\n\u003Cp>Information displayed:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Current template\u003C\u002Fli>\n\u003Cli>General Information (post type, are you on the front page, etc.)\u003C\u002Fli>\n\u003Cli>Additional files used. For example, header.php or footer.php\u003C\u002Fli>\n\u003Cli>What sidebars are being used and what widgets are in them.\u003C\u002Fli>\n\u003Cli>List of enqueued scripts and styles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>This plugin is intended for use by theme developers and it requires a standards compliant browser. This plugin will not work in IE8 or below.\u003C\u002Fstrong>\u003C\u002Fp>\n","This plugin is intended for theme developers to use. It shows the current template being used to render the page, current post type, and much more.",9190,96,13,"2015-12-08T05:17:00.000Z","4.4.0","3.1.0",[21,70,23,71],"server-information","theme-development","http:\u002F\u002Fphplug.in\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhat-template-am-i-using.0.2.0.zip",85,{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":27,"num_ratings":27,"last_updated":18,"tested_up_to":85,"requires_at_least":86,"requires_php":50,"tags":87,"homepage":89,"download_link":90,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":91},"current-page-template-viewer","Current Page Template Viewer","1.1.0","Nagaoka Design","https:\u002F\u002Fprofiles.wordpress.org\u002Fnagaokadesign\u002F","\u003Cp>This plugin helps WordPress developers by showing which template files are being used on the current page. It displays the current template file name and directory path in a convenient overlay, making it easy to identify which template is rendering the current page during development.\u003C\u002Fp>\n\u003Cp>The plugin shows a small, unobtrusive display that can be clicked to reveal detailed information about all template files loaded for the current page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Shows current template file name\u003Cbr \u002F>\n* Displays template directory path\u003Cbr \u002F>\n* Click to view all included template files\u003Cbr \u002F>\n* Configurable display position (top-left, top-right, bottom-left, bottom-right)\u003Cbr \u002F>\n* Customizable background and text colors\u003Cbr \u002F>\n* Admin-only display option for security\u003Cbr \u002F>\n* Debug mode option (only shows when WP_DEBUG is enabled)\u003Cbr \u002F>\n* Lightweight and performance-optimized\u003Cbr \u002F>\n* Clean, modern interface\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Theme developers\u003Cbr \u002F>\n* WordPress developers\u003Cbr \u002F>\n* Site debugging\u003Cbr \u002F>\n* Template hierarchy understanding\u003Cbr \u002F>\n* Development and staging environments\u003C\u002Fp>\n\u003Cp>The plugin is designed to be completely safe and non-intrusive, with options to restrict visibility to administrators only.\u003C\u002Fp>\n","Display current template file and directory name on screen for WordPress development.",10,319,"6.8.5","5.0",[21,88,22,23,52],"developer","https:\u002F\u002Fgithub.com\u002Fnagaoka-design\u002Fcurrent-page-template-viewer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcurrent-page-template-viewer.1.1.0.zip","2026-03-15T10:48:56.248Z",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":27,"downloaded":100,"rating":27,"num_ratings":27,"last_updated":101,"tested_up_to":48,"requires_at_least":102,"requires_php":103,"tags":104,"homepage":106,"download_link":107,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"dont-mess-up-prod","Don't Mess Up Prod","1.0.1","Dave Kellam","https:\u002F\u002Fprofiles.wordpress.org\u002Feightface\u002F","\u003Cp>Don’t Mess Up Prod helps developers and content managers quickly identify which environment they’re working in by displaying a colored indicator in the WordPress admin bar. Hopefully this prevents messing up production 😅\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdavekellam\u002Fdont-mess-up-prod\" rel=\"nofollow ugc\">Active development is on Github\u003C\u002Fa>\u003C\u002Fp>\n","Displays a colored environment indicator in the admin bar.",204,"2026-01-28T21:10:00.000Z","6.7","8.0",[20,21,22,105],"environment","https:\u002F\u002Fgithub.com\u002Fdavekellam\u002Fdont-mess-up-prod","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdont-mess-up-prod.1.0.1.zip",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":48,"requires_at_least":121,"requires_php":50,"tags":122,"homepage":125,"download_link":126,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"query-monitor","Query Monitor – The developer tools panel for WordPress","3.20.2","John Blackbourn","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnbillion\u002F","\u003Cp>Query Monitor is the developer tools panel for WordPress and WooCommerce. It enables debugging of database queries, PHP errors, hooks and actions, block editor blocks, enqueued scripts and stylesheets, HTTP API calls, and more.\u003C\u002Fp>\n\u003Cp>It includes some advanced features such as debugging of Ajax calls, REST API calls, user capability checks, and full support for block themes and full site editing. It includes the ability to narrow down much of its output by plugin or theme, allowing you to quickly determine poorly performing plugins, themes, or functions.\u003C\u002Fp>\n\u003Cp>Query Monitor focuses heavily on presenting its information in a useful manner, for example by showing aggregate database queries grouped by the plugins, themes, or functions that are responsible for them. It adds an admin toolbar menu showing an overview of the current page, with complete debugging information shown in panels once you select a menu item.\u003C\u002Fp>\n\u003Cp>Query Monitor supports versions of WordPress up to three years old, and PHP version 7.4 or higher.\u003C\u002Fp>\n\u003Cp>For complete information, please see \u003Ca href=\"https:\u002F\u002Fquerymonitor.com\u002F\" rel=\"nofollow ugc\">the Query Monitor website\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Here’s an overview of what’s shown for each page load:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Database queries, including notifications for slow, duplicate, or erroneous queries. Allows filtering by query type (\u003Ccode>SELECT\u003C\u002Fcode>, \u003Ccode>UPDATE\u003C\u002Fcode>, \u003Ccode>DELETE\u003C\u002Fcode>, etc), responsible component (plugin, theme, WordPress core), and calling function, and provides separate aggregate views for each.\u003C\u002Fli>\n\u003Cli>The template filename, the complete template hierarchy, and names of all template parts that were loaded or not loaded (for block themes and classic themes).\u003C\u002Fli>\n\u003Cli>PHP errors presented nicely along with their responsible component and call stack, and a visible warning in the admin toolbar.\u003C\u002Fli>\n\u003Cli>Usage of “Doing it Wrong” or “Deprecated” functionality in the code on your site.\u003C\u002Fli>\n\u003Cli>Blocks and associated properties within post content and within full site editing (FSE).\u003C\u002Fli>\n\u003Cli>Matched rewrite rules, associated query strings, and query vars.\u003C\u002Fli>\n\u003Cli>Enqueued scripts and stylesheets, along with their dependencies, dependents, and alerts for broken dependencies.\u003C\u002Fli>\n\u003Cli>Language settings and loaded translation files (MO files and JSON files) for each text domain.\u003C\u002Fli>\n\u003Cli>HTTP API requests, with response code, responsible component, and time taken, with alerts for failed or erroneous requests.\u003C\u002Fli>\n\u003Cli>User capability checks, along with the result and any parameters passed to the capability check.\u003C\u002Fli>\n\u003Cli>Environment information, including detailed information about PHP, the database, WordPress, and the web server.\u003C\u002Fli>\n\u003Cli>The values of all WordPress conditional functions such as \u003Ccode>is_single()\u003C\u002Fcode>, \u003Ccode>is_home()\u003C\u002Fcode>, etc.\u003C\u002Fli>\n\u003Cli>Transients that were updated.\u003C\u002Fli>\n\u003Cli>Usage of \u003Ccode>switch_to_blog()\u003C\u002Fcode> and \u003Ccode>restore_current_blog()\u003C\u002Fcode> on Multisite installations.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In addition:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Whenever a redirect occurs, Query Monitor adds an HTTP header containing the call stack, so you can use your favourite HTTP inspector or browser developer tools to trace what triggered the redirect.\u003C\u002Fli>\n\u003Cli>The response from any jQuery-initiated Ajax request on the page will contain various debugging information in its headers. PHP errors also get output to the browser’s developer console.\u003C\u002Fli>\n\u003Cli>The response from an authenticated WordPress REST API request will contain an overview of performance information and PHP errors in its headers, as long as the authenticated user has permission to view Query Monitor’s output. An \u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Frest-api\u002Fusing-the-rest-api\u002Fglobal-parameters\u002F#_envelope\" rel=\"nofollow ugc\">an enveloped REST API request\u003C\u002Fa> will include even more debugging information in the \u003Ccode>qm\u003C\u002Fcode> property of the response.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>By default, Query Monitor’s output is only shown to Administrators on single-site installations, and Super Admins on Multisite installations.\u003C\u002Fp>\n\u003Cp>In addition to this, you can set an authentication cookie which allows you to view Query Monitor output when you’re not logged in (or if you’re logged in as a non-Administrator). See the Settings panel for details.\u003C\u002Fp>\n\u003Ch3>Other Plugins\u003C\u002Fh3>\n\u003Cp>I maintain several other plugins for developers. Check them out:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-switching\u002F\" rel=\"ugc\">User Switching\u003C\u002Fa> provides instant switching between user accounts in WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-crontrol\u002F\" rel=\"ugc\">WP Crontrol\u003C\u002Fa> lets you view and control what’s happening in the WP-Cron system\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Statement\u003C\u002Fh3>\n\u003Cp>Query Monitor is private by default and always will be. It does not persistently store any of the data that it collects. It does not send data to any third party, nor does it include any third party resources. \u003Ca href=\"https:\u002F\u002Fquerymonitor.com\u002Fprivacy\u002F\" rel=\"nofollow ugc\">Query Monitor’s full privacy statement can be found here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Accessibility Statement\u003C\u002Fh3>\n\u003Cp>Query Monitor aims to be fully accessible to all of its users. \u003Ca href=\"https:\u002F\u002Fquerymonitor.com\u002Faccessibility\u002F\" rel=\"nofollow ugc\">Query Monitor’s full accessibility statement can be found here\u003C\u002Fa>.\u003C\u002Fp>\n","Query Monitor is the developer tools panel for WordPress and WooCommerce.",200000,19156533,98,463,"2025-12-11T22:16:00.000Z","6.1",[21,123,22,124,109],"debug-bar","performance","https:\u002F\u002Fquerymonitor.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquery-monitor.3.20.2.zip",{"attackSurface":128,"codeSignals":140,"taintFlows":147,"riskAssessment":148,"analyzedAt":156},{"hooks":129,"ajaxHandlers":136,"restRoutes":137,"shortcodes":138,"cronEvents":139,"entryPointCount":27,"unprotectedCount":27},[130],{"type":131,"name":132,"callback":133,"file":134,"line":135},"action","wp_before_admin_bar_render","ip_admin_bar_what_template","what-template.php",22,[],[],[],[],{"dangerousFunctions":141,"sqlUsage":142,"outputEscaping":144,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":146},[],{"prepared":27,"raw":27,"locations":143},[],{"escaped":27,"rawEcho":27,"locations":145},[],[],[],{"summary":149,"deductions":150},"The \"what-template\" plugin v0.1 exhibits a seemingly strong security posture based on the provided static analysis. The absence of any identified dangerous functions, SQL queries, file operations, or external HTTP requests is highly encouraging.  Furthermore, the 100% usage of prepared statements for any potential (though none detected) SQL queries and the 100% proper output escaping indicate good coding practices regarding data handling and presentation. The lack of any documented vulnerabilities or CVEs in its history is also a positive sign, suggesting a history of secure development or a lack of prior exposure. The limited attack surface, with zero identified entry points, further bolsters its security profile.",[151,154],{"reason":152,"points":153},"No nonce checks found",5,{"reason":155,"points":153},"No capability checks found","2026-03-16T18:50:13.205Z",{"wat":158,"direct":165},{"assetPaths":159,"generatorPatterns":161,"scriptPaths":162,"versionParams":163},[160],"\u002Fwp-content\u002Fplugins\u002Fwhat-template\u002F",[],[],[164],"what-template?ver=",{"cssClasses":166,"htmlComments":167,"htmlAttributes":168,"restEndpoints":169,"jsGlobals":170,"shortcodeOutput":171},[],[],[],[],[],[]]