WP-Safety

WP Trigger Github Security & Risk Analysis

wordpress.org/plugins/wp-trigger-github

Save or update action triggers Github repository_dispatch action

30 active installs v1.3.0 PHP + WP + Updated Sep 20, 2022
github-actionsheadless-wordpresstrigger-github-actions
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WP Trigger Github Safe to Use in 2026?

Generally Safe

Score 85/100

WP Trigger Github has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The wp-trigger-github v1.3.0 plugin exhibits a generally good security posture based on the provided static analysis. The absence of identified dangerous functions, raw SQL queries, file operations, and known vulnerabilities are positive indicators. Furthermore, the plugin has no recorded vulnerability history, suggesting a track record of security. However, a significant concern arises from the complete lack of output escaping, meaning that any data processed and displayed by the plugin could potentially be vulnerable to cross-site scripting (XSS) attacks if user-supplied input is not properly handled elsewhere. The lack of explicit capability checks and nonce checks, while not immediately indicative of a vulnerability due to the limited attack surface, represents missed opportunities for robust security implementation.

Key Concerns

  • Unescaped output detected
  • Missing capability checks
  • Missing nonce checks
Vulnerabilities
None known

WP Trigger Github Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WP Trigger Github Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

0% escaped3 total outputs
Attack Surface

WP Trigger Github Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 3
actionadmin_initwp-trigger-github.php:26
actionwp_after_insert_postwp-trigger-github.php:27
actionwp_dashboard_setupwp-trigger-github.php:28
Maintenance & Trust

WP Trigger Github Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13
Last updatedSep 20, 2022
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs30
Alternatives

WP Trigger Github Alternatives

WPGraphQL Yoast SEO Addon

WPGraphQL Yoast SEO Addon

add-wpgraphql-seo

A
100

This plugin enables Yoast SEO Support for WPGraphQL.

9K No CVEs
WPGraphQL Send Mail

WPGraphQL Send Mail

add-wpgraphql-send-mail

A
85

This plugin enables to send email via WPGraphQL.

500 No CVEs
WPGraphQL Redirection Addon

WPGraphQL Redirection Addon

add-wpgraphql-redirection

A
85

Add WPGraphQl support for redirects made using the popular Redirection Plugin

300 No CVEs
Generate WpGraphql Image DataUrl

Generate WpGraphql Image DataUrl

generate-wpgraphql-image-dataurl

A
85

This plugin Generates DataUrl of MediaItem in WPGraphQL.

50 No CVEs
Deploy Webhook Github Actions

Deploy Webhook Github Actions

deploy-webhook-github-actions

A
85

DEPLOY WEBHOOK GITHUB ACTIONS PLUGIN

10 No CVEs
Developer Profile

WP Trigger Github Developer Profile

glukmann

1 plugin · 30 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WP Trigger Github

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Data Attributes
data-github-usernamedata-github-repodata-github-workflow
FAQ

Frequently Asked Questions about WP Trigger Github