[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fvcveFJfNk4aWKxAL40awkGBy3cBLOdME2CobmKoEd9A":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":126,"fingerprints":178},"wp-git-embed","WP-Git-Embed","0.4","Guilherme Baptista","https:\u002F\u002Fprofiles.wordpress.org\u002Fgbaptistas\u002F","\u003Cp>Embed GitHub, Gist or Bitbucket files.\u003C\u002Fp>\n\u003Cp>See: https:\u002F\u002Fgithub.com\u002Fgbaptista\u002Fwp-git-embed\u003C\u002Fp>\n","Embed GitHub, Gist or Bitbucket files.",10,2089,0,"","3.4.2","3.0.1",[18,19,20,21,22],"bitbucket","embed","gist","git","github","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwp-git-embed\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-git-embed.0.4.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"gbaptistas",2,110,93,30,89,"2026-04-04T15:54:28.682Z",[38,59,77,91,109],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":14,"tags":53,"homepage":54,"download_link":55,"security_score":56,"vuln_count":49,"unpatched_count":49,"last_vuln_date":57,"fetched_at":58},"wp-github-gist","WP Github Gist","0.5","Sudar Muthu","https:\u002F\u002Fprofiles.wordpress.org\u002Fsudar\u002F","\u003Cp>WP Github Gist WordPress Plugin, provides the ability to embed gist and files from Github in your blog posts or pages. Even though Github doesn’t provide a way to embed files, this Plugin still works by using the gist-it service.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Ch4>Embed Gist\u003C\u002Fh4>\n\u003Cp>To embed a gist you have to use the following shortcode\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gist id = \"{GIST_ID}\" file = \"{GIST_FILE}\" width = \"{WIDTH}\" height = \"{HEIGHT}\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The following are the different attributes that you can use in the shortcode\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>id\u003C\u002Fcode> – Id of your gist.\u003C\u002Fli>\n\u003Cli>\u003Ccode>file\u003C\u002Fcode> – File inside gist that you want to display. If there is only one file in the gist, then you can ignore this.\u003C\u002Fli>\n\u003Cli>\u003Ccode>width\u003C\u002Fcode> – Width of the code wrapper. Default is \u003Ccode>100%\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Ccode>height\u003C\u002Fcode> – Height of the code wrapper. Default is \u003Ccode>100%\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>eg: \u003Ccode>[gist id = \"12345\" file = \"myfile\" width = \"100%\" height = \"100%\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Ch4>Embed Github files\u003C\u002Fh4>\n\u003Cp>To embed a github file you have to use the following shortcode\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[github file = \"{GITHUB_FILE}\" start_line = \"{START_LINE}\" end_line = \"{END_LINE}\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cul>\n\u003Cli>\u003Ccode>{GITHUB_FILE}\u003C\u002Fcode> – full path to your github file. eg: If you want to embed https:\u002F\u002Fgithub.com\u002Fsudar\u002FMissileLauncher\u002Fblob\u002Fmaster\u002FMissileLauncher.cpp then \u003Ccode>{GITHUB_FILE}\u003C\u002Fcode> would be \u002Fsudar\u002FMissileLauncher\u002Fblob\u002Fmaster\u002FMissileLauncher.cpp\u003C\u002Fli>\n\u003Cli>\u003Ccode>{START_LINE}\u003C\u002Fcode> – If you want to embed only part of the file, then you can specify the starting line number (optional)\u003C\u002Fli>\n\u003Cli>\u003Ccode>{END_LINE}\u003C\u002Fcode> – If you want to embed only part of the file, then you can specify the ending line number (optional)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>eg: \u003Ccode>[github file = \"\u002Fsudar\u002FMissileLauncher\u002Fblob\u002Fmaster\u002FMissileLauncher.cpp\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>if you want to embed only part of the file, then you can specify the start and end line as well\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[github file = \"\u002Fsudar\u002FMissileLauncher\u002Fblob\u002Fmaster\u002FMissileLauncher.cpp\" start_line = \"10\" end_line = \"20\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Changing Gist-it server\u003C\u002Fh3>\n\u003Cp>By default, this Plugin uses my own \u003Ca href=\"http:\u002F\u002Fgist-it.sudarmuthu.com\" rel=\"nofollow ugc\">gist-it server\u003C\u002Fa> which is hosted on a free Google App Engine account. If you expect significant amount of traffic to your blog, then do consider using your own gist-it server. You can follow the \u003Ca href=\"http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fwp-github-gist\u002Fchanging-gist-it-server\" rel=\"nofollow ugc\">instructions to deploy your own gist-it server\u003C\u002Fa> and then go to the settings page to change the url.\u003C\u002Fp>\n\u003Ch3>Translation\u003C\u002Fh3>\n\u003Cp>The pot file is available with the Plugin. If you are willing to do translation for the Plugin, use the pot file to create the .po files for your language and let me know. I will add it to the Plugin after giving credit to you.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Support for the Plugin is available from the \u003Ca href=\"http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fwp-github-gist\" rel=\"nofollow ugc\">Plugin’s home page\u003C\u002Fa>. If you have any questions or suggestions, do leave a comment there or contact me in \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fsudarmuthu\" rel=\"nofollow ugc\">twitter\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Readme Generator\u003C\u002Fh3>\n\u003Cp>This Readme file was generated using \u003Ca href='http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fwp-readme' rel=\"nofollow ugc\">wp-readme\u003C\u002Fa>, which generates readme files for WordPress Plugins.\u003C\u002Fp>\n","Embed files and gist from Github in your blog posts or pages.",40,4928,20,1,"2021-10-13T12:18:00.000Z","5.8.13","2.8",[19,20,22],"http:\u002F\u002Fsudarmuthu.com\u002Fwordpress\u002Fwp-github-gist","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-github-gist.0.5.zip",63,"2025-09-05 00:00:00","2026-03-15T15:16:48.613Z",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":11,"downloaded":67,"rating":25,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":14,"tags":72,"homepage":74,"download_link":75,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":58},"gist-for-robots-wordpress","Gist for Robots WordPress Plugin","1.3","Pedro Elsner","https:\u002F\u002Fprofiles.wordpress.org\u002Fpedro-elsner\u002F","\u003Cp>Drop in the embed code from github between the gist shortcode.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gist]\u003Cscript src=\"http:\u002F\u002Fgist.github.com\u002F447298.js?file=github_gist_wordpress_plugin_test.txt\">\u003C\u002Fscript>[\u002Fgist]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>or pass the ID and file (optional)\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[gist id=447298 file=github_gist_wordpress_plugin_test.txt]\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Makes embedding Github.com gists SEO friendly and super awesomely easy.",2601,3,"2013-12-19T11:10:00.000Z","3.7.41","2.1",[19,20,21,22,73],"shortcode","https:\u002F\u002Fgithub.com\u002Fpedroelsner\u002Fgist-for-robots-wordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgist-for-robots-wordpress.zip",85,{"slug":78,"name":79,"version":80,"author":14,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":13,"num_ratings":13,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":14,"tags":88,"homepage":89,"download_link":90,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":58},"github-gist","GitHub Gist WordPress Plugin","1.1","https:\u002F\u002Fprofiles.wordpress.org\u002Fjingweno\u002F","\u003Cp>GitHub Gist WordPress Plugin allows you to embed \u003Ca href=\"http:\u002F\u002Fgist.github.com\" rel=\"nofollow ugc\">GitHub Gist\u003C\u002Fa> snippets with a [gist] tag, instead of copying and pasting HTML. For example, to embed the \u003Ca href=\"http:\u002F\u002Fgist.github.com\u002F447298.js?file=github_gist_wordpress_plugin_test.txt\" rel=\"nofollow ugc\">github_gist_wordpress_plugin_test.txt\u003C\u002Fa> file from \u003Ca href=\"http:\u002F\u002Fgist.github.com\u002F447298.js\" rel=\"nofollow ugc\">gist: 447298\u003C\u002Fa>, fill in the id and file attributes in the [gist] tag:\u003C\u002Fp>\n\u003Cp>[gist id=447298 file=github_gist_wordpress_plugin_test.txt]\u003C\u002Fp>\n\u003Cp>or\u003C\u002Fp>\n\u003Cp>copy the embedding JavaScript code from GitHub and directly paste it in the body of the [gist] tag:\u003C\u002Fp>\n\u003Cp>[gist]\u003Ccode>\u003Cscript src=\"http:\u002F\u002Fgist.github.com\u002F447298.js?file=github_gist_wordpress_plugin_test.txt\">\u003C\u002Fscript>\u003C\u002Fcode>[\u002Fgist].\u003C\u002Fp>\n\u003Cp>The [gist] tag also expands the content of the embedded Gist and wraps it with “\u003Ccode>\u003Cnoscript>\u003Ccode>\u003Cpre>\u003C\u002Fcode>” so that search engine spiders, users with javascript disabled and users reading your blog through RSS will still see your code in a blog entry.\u003C\u002Fp>\n","GitHub Gist Wordpress Plugin allows you to embed GitHub Gist snippets with a [gist] tag, instead of copying and pasting HTML.",3431,"2010-09-22T07:14:00.000Z","3.0.5","2.5.1",[19,20,21,22,73],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fgithub-gist","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgithub-gist.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":11,"downloaded":99,"rating":100,"num_ratings":31,"last_updated":101,"tested_up_to":102,"requires_at_least":103,"requires_php":14,"tags":104,"homepage":107,"download_link":108,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":58},"pcsh-pastacode-syntaxhighlighter","PCSH (PastaCode and SyntaxHighlighter)","0.4.2","Oleg Soromin","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebaib\u002F","\u003Cp>With PCSH (based on the Pastacode plugin), you can easily add code into your posts with the awesome SyntaxHighlighter js-library.\u003Cbr \u002F>\nYou can insert source code into the post editor, from a file, or from webservices like GitHub, Gist, Pastebin or BitBucket. Webservices responses are cached in order to avoid too many HTTP requests.\u003C\u002Fp>\n\u003Cp>Don’t worry about posts updates while upgrading codes!\u003C\u002Fp>\n\u003Cp>PCSH allows to enhance your snippets using SyntaxHighlighter plugins (highlightning lines, link functions…).\u003C\u002Fp>\n\u003Cp>8 different color schemes are included, and you can build yours.\u003C\u002Fp>\n\u003Cp>Available programming languages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>AppleScript\u003C\u002Fli>\n\u003Cli>ActionScript3\u003C\u002Fli>\n\u003Cli>Bash\u003C\u002Fli>\n\u003Cli>CoffeeScript\u003C\u002Fli>\n\u003Cli>C++\u003C\u002Fli>\n\u003Cli>C#\u003C\u002Fli>\n\u003Cli>CSS\u003C\u002Fli>\n\u003Cli>Pascal\u003C\u002Fli>\n\u003Cli>Diff\u003C\u002Fli>\n\u003Cli>Erlang\u003C\u002Fli>\n\u003Cli>Groovy\u003C\u002Fli>\n\u003Cli>Haxe\u003C\u002Fli>\n\u003Cli>Java\u003C\u002Fli>\n\u003Cli>JavaFX\u003C\u002Fli>\n\u003Cli>JavaScript\u003C\u002Fli>\n\u003Cli>Perl\u003C\u002Fli>\n\u003Cli>PHP\u003C\u002Fli>\n\u003Cli>Plain\u003C\u002Fli>\n\u003Cli>Python\u003C\u002Fli>\n\u003Cli>Ruby\u003C\u002Fli>\n\u003Cli>Scala\u003C\u002Fli>\n\u003Cli>SQL\u003C\u002Fli>\n\u003Cli>VisualBasic\u003C\u002Fli>\n\u003Cli>XML\u003C\u002Fli>\n\u003C\u002Ful>\n","Use PCSH to add code into your posts with the awesome SyntaxHighlighter plugin. So, past'a code!",2506,60,"2015-12-10T13:11:00.000Z","4.4.34","3.1",[18,105,19,22,106],"code","version","https:\u002F\u002Fgithub.com\u002FWebaib\u002FPastacodeAndSyntaxHighlighter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpcsh-pastacode-syntaxhighlighter.0.4.2.zip",{"slug":110,"name":111,"version":80,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":11,"downloaded":116,"rating":13,"num_ratings":13,"last_updated":117,"tested_up_to":118,"requires_at_least":119,"requires_php":14,"tags":120,"homepage":124,"download_link":125,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":58},"simple-gist-embed","Simple Gist Embed","Bainternet","https:\u002F\u002Fprofiles.wordpress.org\u002Fbainternet\u002F","\u003Cp>This plugin lets you embed Github’s Gists in your posts or pages, but the main deference then all others is that this plugin also enables you to create Gists without leaving your WordPress.\u003Cbr \u002F>\nthat’s right you can create gists from within your WordPress admin.\u003Cbr \u002F>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FQ_dBkGQSU7g?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Updated to the latest GitHub API V3\u003C\u002Fli>\n\u003Cli>Create Gists from your WordPress Admin panel\u003C\u002Fli>\n\u003Cli>Internal cache built-in\u003C\u002Fli>\n\u003Cli>Built in Tinymce (editor) button.\u003C\u002Fli>\n\u003Cli>Works with all posts types (post,page,custom).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>any feedback or suggestions are welcome.\u003C\u002Fp>\n\u003Cp>check out my \u003Ca href=\"http:\u002F\u002Fen.bainternet.info\u002Fcategory\u002Fplugins\" rel=\"nofollow ugc\">other plugins\u003C\u002Fa>\u003C\u002Fp>\n","This plugin lets you embed Github's Gists in your posts or pages, but the main deference is that this plugin also enables you to create Gists wit &hellip;",2026,"2011-09-13T23:52:00.000Z","3.2.1","2.9.2",[121,20,22,122,123],"embed-gist","syntax-highlight","syntax-highlighting","http:\u002F\u002Fen.bainternet.info","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-gist-embed.1.1.zip",{"attackSurface":127,"codeSignals":150,"taintFlows":163,"riskAssessment":164,"analyzedAt":177},{"hooks":128,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":149,"entryPointCount":13,"unprotectedCount":13},[129,135,138,141],{"type":130,"name":131,"callback":132,"file":133,"line":134},"filter","the_content","beforeFilter","wp-git-embed.php",25,{"type":130,"name":136,"callback":132,"file":133,"line":137},"the_excerpt",26,{"type":130,"name":139,"callback":132,"file":133,"line":140},"comment_text",27,{"type":142,"name":143,"callback":144,"file":133,"line":145},"action","plugins_loaded","WP_Git_Embed",207,[],[],[],[],{"dangerousFunctions":151,"sqlUsage":158,"outputEscaping":160,"fileOperations":49,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":162},[152,156],{"fn":153,"file":133,"line":154,"context":155},"preg_replace(\u002Fe)",113,"preg_replace(\"\u002Fe",{"fn":153,"file":133,"line":157,"context":155},114,{"prepared":13,"raw":13,"locations":159},[],{"escaped":13,"rawEcho":13,"locations":161},[],[],[],{"summary":165,"deductions":166},"The wp-git-embed plugin v0.4 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs, coupled with the fact that all SQL queries utilize prepared statements and all output is properly escaped, are significant strengths. Furthermore, the plugin demonstrates a small attack surface with zero entry points identified, which is commendable. However, there are some notable concerns. The presence of two instances of `preg_replace(\u002Fe)` is a red flag, as this function is known to be dangerous and can be exploited for remote code execution if not handled with extreme care and proper sanitization. The plugin also lacks nonce checks and capability checks, which are crucial for preventing various types of attacks, especially if any of the entry points were to become exposed or if new ones are added in future versions.  The file operation, while only one, is another area that warrants attention due to potential security implications if not implemented securely.  In conclusion, while the plugin has a clean history and good practices in many areas, the identified dangerous functions and missing security checks represent potential vulnerabilities that should be addressed.",[167,170,172,174],{"reason":168,"points":169},"Dangerous function: preg_replace(\u002Fe)",15,{"reason":171,"points":11},"Missing nonce checks",{"reason":173,"points":11},"Missing capability checks",{"reason":175,"points":176},"File operations without specific security context",5,"2026-03-16T23:19:36.106Z",{"wat":179,"direct":184},{"assetPaths":180,"generatorPatterns":181,"scriptPaths":182,"versionParams":183},[],[],[],[],{"cssClasses":185,"htmlComments":186,"htmlAttributes":187,"restEndpoints":188,"jsGlobals":189,"shortcodeOutput":190},[4],[],[],[],[],[191,192,193,194,195,196],"\u003Cdiv class=\"wp-git-embed\"","view raw","view file on","\u003Cstrong>GitHub\u003C\u002Fstrong>","\u003Cstrong>GitHub Gist\u003C\u002Fstrong>","\u003Cstrong>Bitbucket\u003C\u002Fstrong>"]