[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ftakoD9i0iwGw8OEI2vPSe7LTlklcYn5iaOImXUSS-_g":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":144,"fingerprints":181},"wp-recent-comments-with-avatars","WP Recent Comments With Avatars","1.0","TrueFalse","https:\u002F\u002Fprofiles.wordpress.org\u002Ftruefalse\u002F","\u003Cp>Lightweight plugin that overrides the default widget “recent comments” in WordPress, adding an avatar display visitors comments and quotes length of 50 characters.\u003C\u002Fp>\n\u003Cp>Is a direct descendant of WP_Widget_Recent_Comments.\u003C\u002Fp>\n\u003Cp>Example markup that is generated by the plugin(for theming):\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Cul id=\"recentcomments\">\n  \u003Cli class=\"recentcomments\">\n    \u003Cdiv class=\"alignleft\">\n      \u003Cimg width=\"32\" height=\"32\" class=\"avatar avatar-32 photo\" src=\"http:\u002F\u002F0.gravatar.com\u002F...%3D32&r=G\" alt=\"\">\n    \u003C\u002Fdiv>\n    \u003Cb>UserName\u003C\u002Fb>: excerpt comment \u003Ca href=\"http:\u002F\u002Fexample.com\u002Fpage\u002F#comment-ID\">»\u003C\u002Fa>\n  \u003C\u002Fli>\n  \u003Cli class=\"recentcomments\">\n  ...\n  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Adds avatars and announcements comments. Compact code.",80,5770,100,3,"2013-06-27T01:56:00.000Z","3.5.2","3.5.1","",[20,21,22],"avatars","comments","widget","http:\u002F\u002Fsitehint.ru\u002F?p=827","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-recent-comments-with-avatars.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"truefalse",6,420,88,30,86,"2026-04-04T13:48:31.738Z",[39,61,83,105,124],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":59,"download_link":60,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"remove-noreferrer","Remove noreferrer","2.0.0","gruz0","https:\u002F\u002Fprofiles.wordpress.org\u002Fgruz0\u002F","\u003Cp>\u003Cstrong>“Remove noreferrer” automatically removes \u003Ccode>rel=\"noreferrer\"\u003C\u002Fcode> attribute from links on your website on-the-fly.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Plugin does not modify original links or content in the database.\u003C\u002Fp>\n\u003Ch3>Which kind of content supported?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Posts\u003C\u002Fli>\n\u003Cli>Pages\u003C\u002Fli>\n\u003Cli>Blog page (homepage, etc.)\u003C\u002Fli>\n\u003Cli>Comments\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Also it supports standard WordPress widgets:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>“Text”\u003C\u002Fli>\n\u003Cli>“Custom HTML”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Docs & Support\u003C\u002Fh4>\n\u003Cp>This plugin is an open source project and we would love you to help us make it better. If you want a new feature will be implemented in this plugin, you can open a \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fgruz0\u002Fremove-noreferrer\u002Fissues\u002Fnew\" rel=\"nofollow ugc\">GitHub Issue\u003C\u002Fa>. If you don’t have a GitHub Account you can send me email to \u003Ca href=\"mailto:alexander@kadyrov.dev\" rel=\"nofollow ugc\">alexander@kadyrov.dev\u003C\u002Fa>. You can find more detailed information about plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fgruz0\u002Fremove-noreferrer\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.buymeacoffee.com\u002Fgruz0\" rel=\"nofollow ugc\">Buy Me a Coffee\u003C\u002Fa>\u003C\u002Fp>\n","\"Remove noreferrer\" automatically removes rel=\"noreferrer\" attribute from links on your website on-the-fly.",5000,15740,14,"2021-01-04T11:56:00.000Z","5.6.17","5.1","5.6",[21,55,56,57,58],"noreferrer","page","post","widgets","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fremove-noreferrer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-noreferrer.2.0.0.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":81,"download_link":82,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"better-recent-comments","Better Recent Comments","1.2.0","Kestrel","https:\u002F\u002Fprofiles.wordpress.org\u002Fkestrelwp\u002F","\u003Cp>The default Recent Comments widget is somewhat limited. Better Recent Comments improves on this by providing a more flexible widget with options to show the user’s actual comment, as well as show avatars and the ability to show or hide the comment date.\u003C\u002Fp>\n\u003Cp>As well as the widget, there’s a handy shortcode you can use to display your recent comments. This is useful if you need to display comments somewhere other than your sidebar or footer, such as on your homepage. Simply add the shortcode \u003Ccode>[better_recent_comments]\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>That’s not all! The plugin is also WPML compatible, which means that the comments will be restricted to those in the current language. The default WordPress widget will list all recent comments, regardless of language, so you might end up with comments for German-language posts in the sidebar of your English site. Better Recent Comments solves this and makes sure the comments are for the current language only.\u003C\u002Fp>\n\u003Cp>Translations currently provided in Spanish, French and Italian.\u003C\u002Fp>\n\u003Cp>View the full \u003Ca href=\"https:\u002F\u002Fbarn2.com\u002Fkb-categories\u002Fbetter-recent-comments-kb\u002F\" rel=\"nofollow ugc\">plugin documentation\u003C\u002Fa> in our Knowledge Base.\u003C\u002Fp>\n\u003Cp>Options available with the shortcode:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>format\u003C\u002Fcode> – the format of each recent comment. This option uses ‘placeholders’ which are substituted with the actual data when the comments are displayed. See the FAQs for details.\u003C\u002Fli>\n\u003Cli>\u003Ccode>number\u003C\u002Fcode> – the number of comments to display. Default: 5 comments\u003C\u002Fli>\n\u003Cli>\u003Ccode>date_format\u003C\u002Fcode> – the date and time format to use. Like WordPress, this uses a PHP date format. It defaults to ‘M j, H:i’. See \u003Ca href=\"https:\u002F\u002Fbarn2.com\u002FPHP-Date-Format.pdf\" rel=\"nofollow ugc\">this cheat sheet\u003C\u002Fa> for a full list of date and time options.\u003C\u002Fli>\n\u003Cli>\u003Ccode>avatar_size\u003C\u002Fcode> – the size of the avatar in pixels. Only used if you have included {avatar} in your comment format (see ‘format’ option). Default: 50\u003C\u002Fli>\n\u003Cli>\u003Ccode>post_status\u003C\u002Fcode> – the status of posts to retrieve comments for. Defaults to ‘publish’. Can be a single status or a comma-separated list, or ‘any’ to show comments for all post statuses.\u003C\u002Fli>\n\u003Cli>\u003Ccode>post_type\u003C\u002Fcode> – the post type to retrieve comments for. Accepts a single or multiple post types (e.g. ‘post’ or ‘post, dlp_document’) or ‘any’ to show comments for all post types. Default: ‘any’\u003C\u002Fli>\n\u003Cli>\u003Ccode>excerpts\u003C\u002Fcode> – set to ‘true’ to show an excerpt of the comment (limited to 20 words), or ‘false’ to show the full comment. Default: true\u003C\u002Fli>\n\u003Cli>\u003Ccode>replies\u003C\u002Fcode> – set to ‘true’ to also show responses to comments, or ‘false’ to only see the top level comments. Default: true\u003C\u002Fli>\n\u003C\u002Ful>\n","Provides an improved Recent Comments widget and a shortcode to display your recent comments on any post or page.",3000,66663,92,17,"2024-03-28T02:06:00.000Z","6.5.8","6.0","7.4",[78,21,79,22,80],"avatar","shortcode","wpml","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbetter-recent-comments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-recent-comments.1.2.0.zip",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":93,"num_ratings":94,"last_updated":95,"tested_up_to":96,"requires_at_least":97,"requires_php":98,"tags":99,"homepage":103,"download_link":104,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"comments-widget-plus","Recent Comments Widget Plus","1.3","Ga Satrya","https:\u002F\u002Fprofiles.wordpress.org\u002Fsatrya\u002F","\u003Cp>This plugin will enable a custom and advanced \u003Cstrong>recent comments widget\u003C\u002Fstrong>. Allows you to display a list of the most recent comments with avatar and excerpt, you can also choose which to show newer comments first or older comments first and choose comments from any post type.\u003C\u002Fp>\n\u003Ch4>Support this project\u003C\u002Fh4>\n\u003Cp>If you are enjoying this plugin. I would appreciate a cup of coffee to help me keep coding and supporting the project! \u003Ca href=\"https:\u002F\u002Fpaypal.me\u002Fsatrya\" rel=\"nofollow ugc\">Support & donate\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features Include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display avatar with customizable size.\u003C\u002Fli>\n\u003Cli>Display comment excerpt with customizable length.\u003C\u002Fli>\n\u003Cli>Exclude pingback & trackback\u003C\u002Fli>\n\u003Cli>Post type option.\u003C\u002Fli>\n\u003Cli>Offset option.\u003C\u002Fli>\n\u003Cli>Option to choose the comments order.\u003C\u002Fli>\n\u003Cli>Allows you to set title url.\u003C\u002Fli>\n\u003Cli>Custom CSS class.\u003C\u002Fli>\n\u003Cli>Multiple widgets.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fcomments-widget-plus\u002F\" rel=\"nofollow ugc\">Translate to your language\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Contribute or submit issues on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsatrya\u002Fcomments-widget-plus\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Provides custom recent comments widget with extra features such as display avatar, comment excerpt and much more!",2000,49264,94,20,"2022-10-26T16:06:00.000Z","6.1.10","5.8","7.2",[78,100,101,102,22],"excerpt","recent-comments","recent-comments-widget","https:\u002F\u002Fidenovasi.com\u002Fprojects\u002Fcomments-widget-plus\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomments-widget-plus.1.3.zip",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":91,"downloaded":113,"rating":93,"num_ratings":114,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":18,"tags":118,"homepage":122,"download_link":123,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"wp-first-letter-avatar","WP First Letter Avatar","2.2.8","DanielAGW","https:\u002F\u002Fprofiles.wordpress.org\u002Fdanielagw\u002F","\u003Cp>WP First Letter Avatar \u003Cstrong>sets custom avatars for users without Gravatar\u003C\u002Fstrong>. The avatar will be a first letter of the user’s name. You can also configure the plugin to use any other letter to set custom avatar.\u003C\u002Fp>\n\u003Cp>WP First Letter Avatar includes a set of \u003Cstrong>beautiful, colorful letter avatars\u003C\u002Fstrong> in many sizes. Optimal size will be chosen by the plugin in order to display high quality avatar and not download, for example, big 512px avatars when only 48px is needed… \u003Cstrong>PSD template\u003C\u002Fstrong> for avatar is also included.\u003C\u002Fp>\n\u003Cp>You can also create your own avatar set by creating new directory next to \u003Cem>‘default’\u003C\u002Fem> folder and following the naming convention from \u003Cem>‘default’\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>By default, custom avatar will be set only to users without Gravatars, but you can change that in settings and not use Gravatar at all.\u003C\u002Fp>\n\u003Cp>WP First Letter Avatar helps you \u003Cstrong>bring more colors\u003C\u002Fstrong> into your blog. Plus, your readers will be more \u003Cstrong>willing to comment on your posts\u003C\u002Fstrong>, since they can actually relate to these avatars much better than to Mystery Person.\u003C\u002Fp>\n\u003Cp>All images were compressed using the fantastic \u003Ca href=\"https:\u002F\u002Ftinypng.com\u002F\" rel=\"nofollow ugc\">TinyPNG\u003C\u002Fa>, so avatars are \u003Cstrong>incredibly light and ultra-high quality\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>WP First Letter Avatar is also available \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FDev49net\u002Fwp-first-letter-avatar\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Compatibility with other plugins\u003C\u002Fh4>\n\u003Cp>WP First Letter Avatar is fully compatible with \u003Ca href=\"https:\u002F\u002Fbbpress.org\u002F\" rel=\"nofollow ugc\">bbPress\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fwww.gvectors.com\u002Fwpdiscuz\u002F\" rel=\"nofollow ugc\">wpDiscuz\u003C\u002Fa>. For \u003Ca href=\"https:\u002F\u002Fbuddypress.org\u002F\" rel=\"nofollow ugc\">BuddyPress\u003C\u002Fa> compatibility please use my other plugin – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbuddypress-first-letter-avatar\u002F\" rel=\"ugc\">BuddyPress First Letter Avatar\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cp>WP First Letter Avatar requires at least PHP 5.4. It \u003Cstrong>does not work properly\u003C\u002Fstrong> on PHP 5.3.x and earlier.\u003C\u002Fp>\n","Set custom avatars for users with no Gravatar. The avatar will be the first (or any other) letter of user's name on a colorful background.",67403,33,"2017-03-11T22:26:00.000Z","4.7.32","4.6",[20,119,21,120,121],"change-avatar","custom-avatar","discussion","http:\u002F\u002Fdev49.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-first-letter-avatar.zip",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":134,"num_ratings":135,"last_updated":136,"tested_up_to":137,"requires_at_least":138,"requires_php":18,"tags":139,"homepage":142,"download_link":143,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bwp-recent-comments","Better WordPress Recent Comments","1.2.2","Khang Minh","https:\u002F\u002Fprofiles.wordpress.org\u002Foddoneout\u002F","\u003Cp>This plugin displays recent comment lists at assigned locations. It does not add any significant load to your website. The comment list is updated on the fly when a visitor adds a comment or when you moderate one. No additional queries are needed for end-users.\u003C\u002Fp>\n\u003Cp>A recent comment list, in my opinion, can help stimulate discussion and exploration of your blog tremendously. Now for the past few months I have been using a plugin called Get Recent Comments; though this plugin is configurable and indeed popular, the code is somehow messy and no support for custom post type is found. The worst thing is Get Recent Comment doesn’t seem to be updated anymore, so I decide to write another recent comment plugin which is more lightweight and makes use of some nice features provided by WordPress 3.0.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Powerup your recent comment list today!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Group comments by post (inspired by the classic Get Recent Comments plugin).\u003C\u002Fli>\n\u003Cli>AJAX navigation for any recent comment list you want!\u003C\u002Fli>\n\u003Cli>Has the options to show comment only, trackback only, or show both (separately or all together)\u003C\u002Fli>\n\u003Cli>Get comments from a specific post, using either ID or post name (slug).\u003C\u002Fli>\n\u003Cli>Possibility to add different comment lists with different settings on one page\u003C\u002Fli>\n\u003Cli>You can show comments on a separate page, with pagination and custom template!\u003C\u002Fli>\n\u003Cli>You can sort comment lists descendingly or ascendingly\u003C\u002Fli>\n\u003Cli>Supports custom post type\u003C\u002Fli>\n\u003Cli>Supports Gravatar\u003C\u002Fli>\n\u003Cli>Supports smiley\u003C\u002Fli>\n\u003Cli>Widget-ready\u003C\u002Fli>\n\u003Cli>Template functions ready\u003C\u002Fli>\n\u003Cli>Generate Zero SQL query for end-users\u003C\u002Fli>\n\u003Cli>Possibility to trim post title to a certain number of words.\u003C\u002Fli>\n\u003Cli>Possibility to trim comment to a specific number of words\u003C\u002Fli>\n\u003Cli>Possibility to split long words into smaller chunks\u003C\u002Fli>\n\u003Cli>WordPress Multi-site compatible (not tested with WPMU)\u003C\u002Fli>\n\u003Cli>And more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Get in touch\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>I’m available at \u003Ca href=\"http:\u002F\u002Fbetterwp.net\" rel=\"nofollow ugc\">BetterWP.net\u003C\u002Fa> and you can also follow me on \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002F0dd0ne0ut\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Check out \u003Ca href=\"http:\u002F\u002Ffeeds.feedburner.com\u002FBetterWPnet\" rel=\"nofollow ugc\">latest WordPress Tips and Ideas\u003C\u002Fa> from BetterWP.net.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Languages\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English (default)\u003C\u002Fli>\n\u003Cli>French 1.1.0 (fr_FR) – Thanks to \u003Ca href=\"http:\u002F\u002Fmaitremo.fr\" rel=\"nofollow ugc\">Ma�tre M�\u003C\u002Fa>!\u003C\u002Fli>\n\u003Cli>Russian 1.1.0 (ru_RU) – Thanks to Konstantin (kg69design)!\u003C\u002Fli>\n\u003Cli>Ukrainian 1.1.0 (ua_UA) – Thanks to Konstantin (kg69design)!\u003C\u002Fli>\n\u003Cli>Portuguese 1.2.1 (pt_PT) – Thanks to Marcus (http:\u002F\u002Fwww.maniadecelular.com.br)!\u003C\u002Fli>\n\u003Cli>Spanish 1.2.1 (es_ES) – Thanks to Jordi!\u003C\u002Fli>\n\u003Cli>Polish 1.2.1 (pl_PL) – Thanks to Jarek!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please \u003Ca href=\"http:\u002F\u002Fbetterwp.net\u002Fwordpress-tips\u002Fcreate-pot-file-using-poedit\u002F\" rel=\"nofollow ugc\">help translate\u003C\u002Fa> this plugin!\u003C\u002Fp>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fbetterwp.net\u002Fwordpress-plugins\u002Fbwp-recent-comments\u002F\" rel=\"nofollow ugc\">Plugin’s Official Page\u003C\u002Fa> for more information!\u003C\u002Fp>\n","This plugin displays recent comment lists at assigned locations, with comprehensive support for widgets.",600,55904,90,15,"2017-11-28T21:47:00.000Z","3.7.41","2.8",[21,101,140,141],"recent-comments-widgets","wordpress-recent-comments","http:\u002F\u002Fbetterwp.net\u002Fwordpress-plugins\u002Fbwp-recent-comments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbwp-recent-comments.zip",{"attackSurface":145,"codeSignals":157,"taintFlows":170,"riskAssessment":171,"analyzedAt":180},{"hooks":146,"ajaxHandlers":153,"restRoutes":154,"shortcodes":155,"cronEvents":156,"entryPointCount":26,"unprotectedCount":26},[147],{"type":148,"name":149,"callback":150,"file":151,"line":152},"action","widgets_init","WPRCWA_recent_comments","wp-recent-comments-with-avatars.php",18,[],[],[],[],{"dangerousFunctions":158,"sqlUsage":159,"outputEscaping":161,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":169},[],{"prepared":26,"raw":26,"locations":160},[],{"escaped":162,"rawEcho":162,"locations":163},2,[164,167],{"file":151,"line":165,"context":166},68,"raw output",{"file":151,"line":168,"context":166},99,[],[],{"summary":172,"deductions":173},"The static analysis of wp-recent-comments-with-avatars v1.0 reveals a generally good security posture with no identified vulnerabilities in the code signals or taint analysis. The absence of dangerous functions, external HTTP requests, file operations, and the use of prepared statements for all SQL queries are strong indicators of secure coding practices. Additionally, the plugin has no recorded vulnerability history, suggesting a stable and well-maintained codebase. This lack of historical issues further reinforces the current positive assessment.\n\nHowever, there are notable areas for improvement. The plugin has zero capability checks and zero nonce checks. While the attack surface appears small with no explicit entry points like AJAX handlers, REST API routes, or shortcodes, the lack of capability checks on any potential, albeit undocumented, entry points is a significant concern. Any future additions or undocumented features could expose sensitive operations to unauthorized users if proper authorization checks are not implemented. Furthermore, only 50% of the output escaping is properly handled, which could lead to cross-site scripting (XSS) vulnerabilities if the unescaped outputs contain user-supplied data.\n\nIn conclusion, while the plugin demonstrates strong foundational security with its SQL handling and absence of known vulnerabilities, the lack of authorization checks and incomplete output escaping represent potential risks. Addressing these specific concerns would significantly strengthen the plugin's overall security, moving it from a 'good' to an 'excellent' security profile.",[174,177],{"reason":175,"points":176},"Missing capability checks",10,{"reason":178,"points":179},"Unescaped output (50% properly escaped)",5,"2026-03-16T21:24:33.470Z",{"wat":182,"direct":190},{"assetPaths":183,"generatorPatterns":185,"scriptPaths":186,"versionParams":187},[184],"\u002Fwp-content\u002Fplugins\u002Fwp-recent-comments-with-avatars\u002Fstyle.css",[],[],[188,189],"\u002Fwp-content\u002Fplugins\u002Fwp-recent-comments-with-avatars\u002Fstyle.css?ver=","\u002Fwp-content\u002Fplugins\u002Fwp-recent-comments-with-avatars.php?ver=",{"cssClasses":191,"htmlComments":194,"htmlAttributes":195,"restEndpoints":196,"jsGlobals":197,"shortcodeOutput":198},[192,78,193],"recentcomments","alignleft",[],[],[],[],[]]