[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNtE-bdY_Re9yiUYlwZmlfZE3dwlC3_4EAmJBpbgT-M4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":56,"analysis":165,"fingerprints":320},"wp-super-minify","WP Super Minify • Minify, Compress and Cache HTML, CSS & JavaScript","2.0.1","Dipak C. Gajjar","https:\u002F\u002Fprofiles.wordpress.org\u002Fdipakcg\u002F","\u003Cp>\u003Cstrong>WP Super Minify automatically minifies, compresses, and caches HTML, CSS & JavaScript files (inline and individual) on demand to enhance website’s load speed.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Once activated, the plugin seamlessly compresses HTML, inline CSS, and JavaScript, reducing file sizes for faster page loading. This optimisation helps improve your site’s Google PageSpeed Insights and GTmetrix performance scores.\u003C\u002Fp>\n\u003Cp>Additionally, WP Super Minify minifies individual JavaScript and CSS files, ensuring they load correctly and are automatically updated whenever the original files are modified or added — no manual settings needed!\u003C\u002Fp>\n\u003Cp>Optimise your website effortlessly and deliver a faster, smoother experience to your visitors.\u003C\u002Fp>\n\u003Cp>To check whether this plugin works properly, simply view your site source or press Ctrl + U from your keyboard. In the end of the source, you should see message something like:\u003C\u002Fp>\n\u003Cp>*** Total size saved: 11.341% | Size before compression: 27104 bytes | Size after compression: 24030 bytes. ***\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? You’ll love my other plugin: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-performance-score-booster\u002F\" rel=\"ugc\">WP Performance Score Booster\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Development & Support\u003C\u002Fh4>\n\u003Cp>Follow the development of this plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdipakcg\u002Fwp-super-minify\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>P.S. It is always the best policy to open a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-super-minify\" rel=\"ugc\">support thread\u003C\u002Fa> first before posting any negative review.\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>A big shoutout to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmrclay\u002Fminify\" rel=\"nofollow ugc\">Steve Clay\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmatthiasmullie\u002Fminify\" rel=\"nofollow ugc\">Matthias Mullie\u003C\u002Fa> for sharing their Minify libraries on GitHub. While these libraries are no longer actively maintained, their work has been invaluable, and I sincerely thank them.\u003C\u002Fp>\n","A lightweight plugin that automatically minifies, compresses, and caches HTML, CSS, and JavaScript on demand to improve your website’s load speed.",9000,357076,82,70,"2026-02-10T11:55:00.000Z","6.9.4","3.5","5.6",[20,21,22,23,24],"compress","css","html","javascript","minify","https:\u002F\u002Fgithub.com\u002Fdipakcg\u002Fwp-super-minify","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-super-minify.2.0.1.zip",100,1,0,"2023-08-28 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2023-27615","wp-super-minify-cross-site-request-forgery-via-wpsmyadminoptions","WP Super Minify \u003C= 1.5.1 - Cross-Site Request Forgery via 'wpsmy_admin_options'","The WP Super Minify plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.1. This is due to missing or incorrect nonce validation on the 'wpsmy_admin_options' function. This makes it possible for unauthenticated attackers to change the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.5.1","1.6","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2024-01-22 19:56:02",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Faf59fcf6-4435-45f0-8904-ff520ea86157?source=api-prod",148,{"slug":50,"display_name":7,"profile_url":8,"plugin_count":51,"total_installs":52,"avg_security_score":27,"avg_patch_time_days":53,"trust_score":54,"computed_at":55},"dipakcg",4,19210,488,79,"2026-04-04T15:32:28.843Z",[57,78,99,116,142],{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":75,"download_link":76,"security_score":77,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-minify-fix","WP Minify Fix","1.4.1","NodeCode","https:\u002F\u002Fprofiles.wordpress.org\u002Fnodecode\u002F","\u003Cp>This plugin is a fork of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-minify\u002F\" rel=\"ugc\">WP Minify\u003C\u002Fa> to fix bugs and add features, because it has not been updated since 2012-6-4.\u003C\u002Fp>\n\u003Cp>This plugin integrates the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmrclay\u002Fminify\" rel=\"nofollow ugc\">Minify engine\u003C\u002Fa>\u003Cbr \u002F>\ninto your WordPress blog.  Once enabled, this plugin will combine and compress\u003Cbr \u002F>\nJS and CSS files to improve page load time.\u003C\u002Fp>\n\u003Ch4>What has been fixed?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Minify engine updated to version 2.1.7\u003C\u002Fli>\n\u003Cli>Cache interval option has been fixed\u003C\u002Fli>\n\u003Cli>Move CSS-@imports to the top of the output\u003C\u002Fli>\n\u003Cli>Bottom CSS- and JavaScript output fixed\u003C\u002Fli>\n\u003Cli>Support for script tags without \u003Ccode>type=\"text\u002Fjavascript\"\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Detection of protocol-relative URLs as external file (e.g. Google AdSense)\u003C\u002Fli>\n\u003Cli>New option for the HTML5 async attribute\u003C\u002Fli>\n\u003Cli>A separate JavaScript file in the footer is now possible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How Does it Work?\u003C\u002Fh4>\n\u003Cp>WP Minify Fix grabs JS\u002FCSS files in your generated WordPress page and passes that\u003Cbr \u002F>\nlist to the Minify engine. The Minify engine then returns a consolidated,\u003Cbr \u002F>\nminified, and compressed script or style for WP Minify to reference in the\u003Cbr \u002F>\nWordPress header.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easily integrate Minify into your WordPress blog.\u003C\u002Fli>\n\u003Cli>Minifies JavaScript, CSS, and HTML.\u003C\u002Fli>\n\u003Cli>Debug tools to help you debug your issues.\u003C\u002Fli>\n\u003Cli>Ability to include extra JS and CSS files for Minifying.\u003C\u002Fli>\n\u003Cli>Ability to exclude certain JS and CSS files for Minifying.\u003C\u002Fli>\n\u003Cli>Minified JS and CSS files can be placed wherever you want.\u003C\u002Fli>\n\u003Cli>Support for to minifying external files via caching.\u003C\u002Fli>\n\u003Cli>Ability to pass extra arguments to Minify engine.\u003C\u002Fli>\n\u003Cli>Expire headers for minified JS and CSS files.\u003C\u002Fli>\n\u003Cli>Detection and elimination of duplicate sources.\u003C\u002Fli>\n\u003Cli>Plugin hooks!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also commit changes on our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fnodecode\u002Fwp-minify-fix\" rel=\"nofollow ugc\">Github repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>All contents under the wp-minify-fix\u002Fmin\u002F directory is licensed under\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.opensource.org\u002Flicenses\u002Fbsd-license.php\" rel=\"nofollow ugc\">New BSD License\u003C\u002Fa> (which is\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.gnu.org\u002Fcopyleft\u002Fgpl.html\" rel=\"nofollow ugc\">GPL\u003C\u002Fa> compatible).  All other\u003Cbr \u002F>\ncontents within this package is licensed under GPLv3.\u003C\u002Fp>\n","[Fixed] This plugin uses the Minify engine to combine and compress JS and CSS files to improve page load time.",1000,73691,80,40,"2017-11-28T20:47:00.000Z","4.3.34","2.8","",[21,22,23,74,24],"js","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-minify-fixed\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-minify-fix.1.4.1.zip",85,{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":28,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":72,"tags":92,"homepage":72,"download_link":98,"security_score":77,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-easy-tools-compression","WP Easy Tools Compression","1.0","bastikikang","https:\u002F\u002Fprofiles.wordpress.org\u002Fbastikikang\u002F","\u003Cp>dietIMAGE uses smart lossy compression techniques to reduce the file size of your PNG files. By selectively decreasing the number of colours in the image, fewer bytes are required to store the data. The effect is nearly invisible but it makes a very large difference in file size!\u003C\u002Fp>\n\u003Cp>Features :\u003C\u002Fp>\n\u003Cp>Image Compression\u003Cbr \u002F>\n– Easy to compressed your media image\u003Cbr \u002F>\n– Bulk compression\u003Cbr \u002F>\n-Auto compression of your media image\u003Cbr \u002F>\n-Restore original image\u003Cbr \u002F>\n-ON\u002FOff auto compression\u003C\u002Fp>\n\u003Cp>HTML\u002FCSS and Javascript Compression\u003Cbr \u002F>\n-Compressed HTML\u002FCSS and javascript\u003Cbr \u002F>\n-On\u002FOff HTML\u002FCSS and javascript compressed\u003C\u002Fp>\n\u003Cp>WP THEME CSS\u003Cbr \u002F>\n-Compressed style.css of your theme\u003C\u002Fp>\n","dietIMAGE uses smart lossy compression techniques to reduce the file size of your PNG files. By selectively decreasing the number of colours in the im &hellip;",10,2042,20,"2014-01-09T02:23:00.000Z","3.7.41","3.0.1",[93,94,95,96,97],"compress-css","compress-html","compress-image-file","compress-javascript","compressed-jpeg","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-easy-tools-compression.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":86,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":72,"tags":113,"homepage":114,"download_link":115,"security_score":77,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wp-inline-js-converter","WP Fast Minify","1.5.1","sakaitaka","https:\u002F\u002Fprofiles.wordpress.org\u002Fskita45\u002F","\u003Cp>Compress HTML Code, And Converting Inline Script and Style To JavaScript and CSS Compressed File.\u003C\u002Fp>\n","Compress HTML Code, And Converting Inline Script and Style To JavaScript and CSS Compressed File.",6301,60,2,"2021-05-27T12:24:00.000Z","5.7.15","3.9",[21,22,23,74,24],"http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwp-inline-js-converter\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-inline-js-converter.1.5.1.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":137,"download_link":138,"security_score":139,"vuln_count":140,"unpatched_count":29,"last_vuln_date":141,"fetched_at":31},"wp-asset-clean-up","Asset CleanUp: Page Speed Booster","1.4.0.3","Gabe Livan","https:\u002F\u002Fprofiles.wordpress.org\u002Fgabelivan\u002F","\u003Cp>Don’t just minify & combine CSS\u002FJavaScript files ending up with large, bloated and slow loading pages: \u003Cstrong>Strip the “fat” first and get a faster website\u003C\u002Fstrong> 🙂\u003C\u002Fp>\n\u003Cp>Faster page load = Happier Visitors = More Conversions = More Revenue\u003C\u002Fp>\n\u003Cp>There are often times when you are using a theme and a number of plugins which are enabled and run on the same page. However, you don’t need to use all of them and to improve the speed of your website and make the HTML source code cleaner (convenient for debugging purposes), it’s better to prevent those styles and scripts from loading.\u003C\u002Fp>\n\u003Cp>For instance, you might use a plugin that generates contact forms and it loads its assets (.CSS and .JS files) in every page of your website instead of doing it only in the \u002Fcontact page (if that’s the only place where you need it).\u003C\u002Fp>\n\u003Cp>“Asset CleanUp” scans your page and detects all the assets that are loaded. All you have to do when editing a page\u002Fpost is just to select the CSS\u002FJS that are not necessary to load, this way reducing the bloat.\u003C\u002Fp>\n\u003Cp>The plugin works best in combination with a cache plugin (e.g. WP Rocket, WP Fastest Cache, W3 Total Cache), a hosting company that offers packages with server-level caching available (e.g. WP Engine, Kinsta) or a service like Cloudflare that has page caching enabled.\u003C\u002Fp>\n\u003Ch4>Main plugin’s benefits include\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Decreases the number of HTTP requests loaded and eliminate render-blocking resources (important for faster page load) by unloading useless CSS\u002FJS\u003C\u002Fli>\n\u003Cli>Preload CSS\u002FJS, Local Fonts & Google Fonts files to instruct the browser to download the chosen assets as soon as possible\u003C\u002Fli>\n\u003Cli>Minify CSS files (including inline code within STYLE tags)\u003C\u002Fli>\n\u003Cli>Minify JavaScript files (including inline code within SCRIPT tags)\u003C\u002Fli>\n\u003Cli>Combine remaining loaded CSS & JavaScript files\u003C\u002Fli>\n\u003Cli>Inline CSS Files (automatically & by specifying the path to the stylesheets)\u003C\u002Fli>\n\u003Cli>Defer combined JavaScript files by applying “defer” attribute to the SCRIPT tags\u003C\u002Fli>\n\u003Cli>Site-wide removal for Emojis, Dashicons for guest users and Comment Reply if they are not used\u003C\u002Fli>\n\u003Cli>Disable RSS Feeds\u003C\u002Fli>\n\u003Cli>Reduces the HTML code of the actual page (that’s even better if GZIP compression is enabled)\u003C\u002Fli>\n\u003Cli>Makes source code easier to scan in case you’re a developer and want to search for something\u003C\u002Fli>\n\u003Cli>Remove possible conflicts between plugins\u002Ftheme (e.g. 2 JavaScript files that are loading from different plugins and they interfere one with another)\u003C\u002Fli>\n\u003Cli>Better performance score if you test your URL on websites such as GTmetrix, PageSpeed Insights, Pingdom Website Speed Test\u003C\u002Fli>\n\u003Cli>Google will love your website more as it would be faster and fast page load is nowadays a factor in search ranking\u003C\u002Fli>\n\u003Cli>Your server access log files (e.g the Apache ones) will be easier to scan and would take less space on your server\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Google Fonts Optimization \u002F Removal\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Combine all Google Font requests into fewer (usually one) requests, saving one round trip to the server for each additional font requested\u003C\u002Fli>\n\u003Cli>Choose between three methods of delivery: Render-blocking, Asynchronous via Web Font Loader (webfont.js) or Asynchronous by preloading the CSS stylesheet\u003C\u002Fli>\n\u003Cli>Option to preload Google Font Files from fonts.gstatic.com (e.g. ending in .woff2)\u003C\u002Fli>\n\u003Cli>Apply “font-display” CSS property to all loaded Google Font requests\u003C\u002Fli>\n\u003Cli>Enable preconnect resource hint for fonts.gstatic.com in case you use Google Fonts; don’t let the browser wait until it fetches the CSS for loading the font files before it begins DNS\u002FTCP\u002FTLS\u003C\u002Fli>\n\u003Cli>Remove all Google Font requests including link\u002Ffont preloads, @import\u002F@font-face from CSS files & STYLE tags, resource hints\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Local Fonts Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Preload local font files (ending in .woff, .woff2, .ttf, etc.)\u003C\u002Fli>\n\u003Cli>Apply “font-display:” CSS property to @font-face from existing to LINK \u002F STYLE tags to improve the PageSpeed score for “Ensure text remains visible during webfont load”\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Critical CSS\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>You can add already generated critical CSS (e.g. via tools such as \u003Ca href=\"https:\u002F\u002Fwww.corewebvitals.io\u002Ftools\u002Fcritical-css-generator\" rel=\"nofollow ugc\">Advanced Critical CSS Generator\u003C\u002Fa> customly for the homepage, posts, pages, taxonomy pages (e.g. category), archive pages (e.g. date, author), search, 404 not found\u003C\u002Fli>\n\u003Cli>The critical CSS can be added within the Dashboard as well as via code \u002F \u003Ca href=\"https:\u002F\u002Fwww.assetcleanup.com\u002Fdocs\u002F?p=608\" rel=\"nofollow ugc\">Read More\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Remove useless links, meta tags and HTML comments within the HEAD and BODY (footer) tags of the website\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Really Simple Discovery (RSD) link tag\u003C\u002Fli>\n\u003Cli>REST API link tag\u003C\u002Fli>\n\u003Cli>Pages\u002FPosts Shortlink tag\u003C\u002Fli>\n\u003Cli>WordPress version meta tag (also good for security reasons)\u003C\u002Fli>\n\u003Cli>All “generator” meta tags (also good for security reasons)\u003C\u002Fli>\n\u003Cli>RSS Feed Link Tags (usually they are not needed if your website is not used for blogging purposes)\u003C\u002Fli>\n\u003Cli>oEmbeds, if you do not need to embed videos (e.g. YouTube), tweets and audios\u003C\u002Fli>\n\u003Cli>Valid HTML Comments (exceptions from stripping can be added and Internet Explorer conditional comments are preserved)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Each option can be turned on\u002Foff depending on your needs. Instructions about each of them are given in the plugin’s settings page.\u003C\u002Fp>\n\u003Ch4>Disable partially or completely XML-RPC protocol\u003C\u002Fh4>\n\u003Cp>This is an API service used by WordPress for 3rd party applications, such as mobile apps, communication between blogs and plugins such as Jetpack. If you use or are planning to use a remote system to post content to your website, you can keep this feature enabled (which it is by default). Many users do not use this function at all and if you’re one of them, you can disable it.\u003C\u002Fp>\n\u003Cp>Plugin works with WordPress Multisite Network enabled!\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Asset CleanUp Pro\u003C\u002Fstrong>\u003Cbr \u002F>\n  This plugin is the lite version of Asset CleanUp Pro that comes with more benefits including managing assets (CSS & JS files) on all WordPress pages, unloading plugins site-wide or via Regex(es), apply “async” and “defer” attributes on loaded JavaScript files which would boost the speed score even higher, move the loading location of CSS\u002FJS files (from HEAD to BODY to reduce render-blocking or vice-versa if you need specific files to trigger earlier) and premium support. \u003Ca href=\"https:\u002F\u002Fwww.gabelivan.com\u002Fitems\u002Fwp-asset-cleanup-pro\u002F?utm_source=wp_org_lite&utm_medium=inside_quote\" rel=\"nofollow ugc\">Click here to purchase Asset CleanUp Pro!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>NOTES\u003C\u002Fh4>\n\u003Cp>People that have tested the plugin are so far happy with it and I want to keep a good reputation for it. In case something is not working for you or have any suggestions, please write to me on the forum and I will be happy to assist you. \u003Cstrong>BEFORE rating this plugin\u003C\u002Fstrong>, please check the following post http:\u002F\u002Fchrislema.com\u002Ftheres-wrong-way-give-plugin-feedback-wordpress-org\u002F and then use your common sense when writing the feedback 🙂\u003C\u002Fp>\n\u003Ch4>GO PRO\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Unload CSS\u002FJS files on all WordPress pages including Categories, Tags, Custom Taxonomy (e.g. WooCommerce product category), 404 Not Found, Date & Author Archives, Search Results)\u003C\u002Fli>\n\u003Cli>Unload plugins in the frontend view (for guest visitors) * This will not just unload the CSS\u002FJS files loaded from the plugins, but everything else related to them (e.g. slow database queries)\u003C\u002Fli>\n\u003Cli>Unload plugins within the Dashboard \u002Fwp-admin\u002F * Do you have any slow pages that are loading within the Dashboard? You can reduce seconds in page load for some bulky ones or fix plugin conflicts\u003C\u002Fli>\n\u003Cli>Instruct the browser to download a CSS\u002FJS file based on the visitor’s screen size (e.g. avoid downloading assets in mobile view when they are not needed, if the screen size is smaller than 768px)\u003C\u002Fli>\n\u003Cli>Defer CSS by appending it to the BODY to load it asynchronously (Render blocking CSS delays a web page from being visible in a timely manner)\u003C\u002Fli>\n\u003Cli>Move JavaScript files from HEAD to BODY and vice-versa (CSS files moved to the BODY are automatically deferred)\u003C\u002Fli>\n\u003Cli>Defer JavaScript loaded files (by applying “defer” attribute to any enqueued JS file)\u003C\u002Fli>\n\u003Cli>Async JavaScript loaded files (by applying “async” attribute to any enqueued JS file)\u003C\u002Fli>\n\u003Cli>Inline JavaScript files (automatically & by specifying the path to the stylesheets)\u003C\u002Fli>\n\u003Cli>Priority in releasing new features & other improvements (updates that are meant for both Lite and Pro plugins are first released to the Pro users)\u003C\u002Fli>\n\u003Cli>Premium support and updates within the Dashboard\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Give Asset CleanUp a try! If you want to unlock all features, you can \u003Ca href=\"https:\u002F\u002Fwww.gabelivan.com\u002Fitems\u002Fwp-asset-cleanup-pro\u002F?utm_source=wp_org_lite&utm_medium=go_pro\" rel=\"nofollow ugc\">Upgrade to the Pro version\u003C\u002Fa>.\u003C\u002Fp>\n","Make your website load FASTER by stopping specific styles (.CSS) & scripts (.JS) from loading. It works best with a page caching plugin \u002F service.",100000,4846454,98,1550,"2025-03-12T21:24:00.000Z","6.7.5","4.5",[132,133,134,135,136],"defer-css-javascript","dequeue","minify-css","minify-javascript","page-speed","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-asset-clean-up\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-asset-clean-up.1.4.0.3.zip",89,6,"2024-11-27 00:00:00",{"slug":143,"name":144,"version":145,"author":146,"author_profile":147,"description":148,"short_description":149,"active_installs":150,"downloaded":151,"rating":152,"num_ratings":153,"last_updated":154,"tested_up_to":129,"requires_at_least":155,"requires_php":156,"tags":157,"homepage":160,"download_link":161,"security_score":162,"vuln_count":163,"unpatched_count":29,"last_vuln_date":164,"fetched_at":31},"minify-html-markup","Minify HTML","2.1.12","Tim Eckel","https:\u002F\u002Fprofiles.wordpress.org\u002Fteckel\u002F","\u003Cp>Try it out on a free dummy site here => \u003Ca href=\"https:\u002F\u002Fdemo.tastewp.com\u002Fminify-html-markup\" rel=\"nofollow ugc\">https:\u002F\u002Fdemo.tastewp.com\u002Fminify-html-markup\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Ever look at the HTML markup of your website and notice how sloppy and amateurish it looks? The Minify HTML plugin cleans up sloppy looking markup and minifies, which also speeds up download time.\u003C\u002Fp>\n\u003Cp>Make your website’s markup look professional by using Minify HTML. Easy to use, simply install and activate (with additional options for advanced settings).\u003C\u002Fp>\n\u003Cp>Minify HTML also has optional specialized minification for JavaScript and internal CSS. It doesn’t mess with your textareas or preformatted text.\u003C\u002Fp>\n\u003Cp>Settings options to removes HTML, CSS and JavaScript comments (leaving MSIE conditional comments), remove unneeded XHTML closing tags from HTML5 void elements and remove unneeded relative schemes and domains from links.\u003C\u002Fp>\n","Minify HTML output for clean looking markup and faster downloading.",10000,241875,94,33,"2025-01-15T15:41:00.000Z","3.6.0","5.2.4",[158,20,22,159,24],"beautify","minifier","https:\u002F\u002Fwww.wordpress.org\u002Fplugins\u002Fminify-html-markup\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fminify-html-markup.2.1.12.zip",88,3,"2026-03-30 23:01:56",{"attackSurface":166,"codeSignals":216,"taintFlows":277,"riskAssessment":305,"analyzedAt":319},{"hooks":167,"ajaxHandlers":212,"restRoutes":213,"shortcodes":214,"cronEvents":215,"entryPointCount":29,"unprotectedCount":29},[168,174,178,183,187,192,195,199,204,207],{"type":169,"name":170,"callback":171,"file":172,"line":173},"action","wpsmy_rating_system_action","wpsmy_rating_checker","rating-support.php",27,{"type":169,"name":175,"callback":176,"file":172,"line":177},"admin_notices","wpsmy_submit_review_notice",117,{"type":169,"name":179,"callback":180,"file":181,"line":182},"admin_init","wpsmy_add_stylesheet","wp-super-minify.php",44,{"type":169,"name":184,"callback":185,"file":181,"line":186},"admin_menu","wpsmy_add_admin_menu",55,{"type":188,"name":189,"callback":190,"priority":86,"file":181,"line":191},"filter","plugin_row_meta","wpsmy_plugin_meta_links",84,{"type":169,"name":179,"callback":193,"file":181,"line":194},"wpsmy_check_plugin_update",214,{"type":169,"name":196,"callback":197,"priority":28,"file":181,"line":198},"template_redirect","wpsmy_html_minify_start",287,{"type":169,"name":200,"callback":201,"priority":202,"file":181,"line":203},"shutdown","wpsmy_html_minify_end",9999,295,{"type":169,"name":200,"callback":205,"priority":150,"file":181,"line":206},"wpsmy_print_minify_comment",304,{"type":169,"name":208,"callback":209,"priority":210,"file":181,"line":211},"wp_enqueue_scripts","wpsmy_minify_enqueue_scripts",999,307,[],[],[],[],{"dangerousFunctions":217,"sqlUsage":223,"outputEscaping":225,"fileOperations":271,"externalRequests":29,"nonceChecks":28,"capabilityChecks":109,"bundledLibraries":272},[218],{"fn":219,"file":220,"line":221,"context":222},"preg_replace(\u002Fe)","includes\\min\\src\\JS.php",433,"preg_replace('\u002Fe",{"prepared":29,"raw":29,"locations":224},[],{"escaped":140,"rawEcho":226,"locations":227},21,[228,232,235,238,240,241,243,245,246,248,250,251,253,255,257,259,261,263,265,267,269],{"file":229,"line":230,"context":231},"clear-minified-cache.php",14,"raw output",{"file":233,"line":234,"context":231},"includes\\min\\builder\\index.php",67,{"file":236,"line":237,"context":231},"includes\\min\\server-info.php",19,{"file":236,"line":239,"context":231},29,{"file":181,"line":152,"context":231},{"file":181,"line":242,"context":231},137,{"file":181,"line":244,"context":231},139,{"file":181,"line":244,"context":231},{"file":181,"line":247,"context":231},140,{"file":181,"line":249,"context":231},143,{"file":181,"line":249,"context":231},{"file":181,"line":252,"context":231},144,{"file":181,"line":254,"context":231},174,{"file":181,"line":256,"context":231},181,{"file":181,"line":258,"context":231},182,{"file":181,"line":260,"context":231},183,{"file":181,"line":262,"context":231},184,{"file":181,"line":264,"context":231},185,{"file":181,"line":266,"context":231},186,{"file":181,"line":268,"context":231},188,{"file":181,"line":270,"context":231},301,9,[273],{"name":274,"version":275,"knownCves":276},"jQuery","1.12.4",[],[278,297],{"entryPoint":279,"graph":280,"unsanitizedCount":29,"severity":296},"wpsmy_admin_options (wp-super-minify.php:87)",{"nodes":281,"edges":293},[282,287],{"id":283,"type":284,"label":285,"file":181,"line":286},"n0","source","$_POST (x2)",123,{"id":288,"type":289,"label":290,"file":181,"line":291,"wp_function":292},"n1","sink","update_option() [Settings Manipulation]",127,"update_option",[294],{"from":283,"to":288,"sanitized":295},true,"low",{"entryPoint":298,"graph":299,"unsanitizedCount":29,"severity":296},"\u003Cwp-super-minify> (wp-super-minify.php:0)",{"nodes":300,"edges":303},[301,302],{"id":283,"type":284,"label":285,"file":181,"line":286},{"id":288,"type":289,"label":290,"file":181,"line":291,"wp_function":292},[304],{"from":283,"to":288,"sanitized":295},{"summary":306,"deductions":307},"The \"wp-super-minify\" plugin version 2.0.1 presents a mixed security posture.  On the positive side, the plugin demonstrates good practices by having no identified AJAX handlers, REST API routes, shortcodes, or cron events that lack proper authentication or permission checks.  Furthermore, all SQL queries utilize prepared statements, and a nonce check is present, indicating an awareness of common WordPress security vulnerabilities.\n\nHowever, several concerns are flagged by the static analysis. The presence of a 'dangerous function' (preg_replace(\u002Fe)) is a notable risk, as this pattern can be exploited for remote code execution if not handled with extreme care and input validation.  The low percentage of properly escaped output (22%) is also a significant weakness, suggesting a high potential for Cross-Site Scripting (XSS) vulnerabilities across various output points.\n\nThe plugin's vulnerability history shows one known CVE, which is thankfully patched, and the common vulnerability type being Cross-Site Request Forgery (CSRF). While there are no currently unpatched critical or high vulnerabilities, the history of CSRF and the static analysis concerns suggest that while the entry points are well-secured, the internal handling of data and output might not be as robust. The conclusion is that while the plugin has a small attack surface and secures its entry points well, the risk of XSS due to poor output escaping and the presence of a dangerous function warrant careful attention and potential remediation.",[308,311,314,316],{"reason":309,"points":310},"Dangerous function detected (preg_replace(\u002Fe))",15,{"reason":312,"points":313},"Low percentage of properly escaped output (22%)",8,{"reason":315,"points":163},"Bundled outdated library (jQuery v1.12.4)",{"reason":317,"points":318},"One known CVE in history",5,"2026-03-16T17:51:41.789Z",{"wat":321,"direct":327},{"assetPaths":322,"generatorPatterns":324,"scriptPaths":325,"versionParams":326},[323],"\u002Fwp-content\u002Fplugins\u002Fwp-super-minify\u002Fassets\u002Fcss\u002Fstyle.min.css",[],[],[],{"cssClasses":328,"htmlComments":330,"htmlAttributes":331,"restEndpoints":337,"jsGlobals":338,"shortcodeOutput":339},[329],"wpsmy_settings",[],[332,333,334,335,336],"name=\"wpsmy_combine_js\"","id=\"wpsmy_combine_js\"","name=\"wpsmy_combine_css\"","id=\"wpsmy_combine_css\"","name=\"wpsmy_clear_minified\"",[],[],[]]