[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmrDJMQclhxyuo8O2IQujHpXBuU0AzYpTKM2uAUBN9uw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":139,"fingerprints":518},"wp-tweaks","WP Tweaks","2.4.1","Luiz Bills","https:\u002F\u002Fprofiles.wordpress.org\u002Fluizbills\u002F","\u003Cp>Several opinionated WordPress tweaks focused in security and performance.\u003C\u002Fp>\n\u003Ch4>FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Produces clean filenames for uploads\u003C\u002Fli>\n\u003Cli>Change admin footer text\u003C\u002Fli>\n\u003Cli>Disable author page and author search by url\u003C\u002Fli>\n\u003Cli>Disable emoji mess\u003C\u002Fli>\n\u003Cli>Disable “meta widget”\u003C\u002Fli>\n\u003Cli>Disable WP REST API public access\u003C\u002Fli>\n\u003Cli>Disable “website” field from comment form\u003C\u002Fli>\n\u003Cli>Disable wp embed\u003C\u002Fli>\n\u003Cli>Disable xmlrpc.php\u003C\u002Fli>\n\u003Cli>Show admin bar for admin users only\u003C\u002Fli>\n\u003Cli>Hide WordPress update nag to all but admins\u003C\u002Fli>\n\u003Cli>Remove “WordPress logo” from admin bar\u003C\u002Fli>\n\u003Cli>Remove “+ New” button from admin bar\u003C\u002Fli>\n\u003Cli>Remove some dashboard widgets\u003C\u002Fli>\n\u003Cli>Remove query strings from scripts (JavaScript and CSS)\u003C\u002Fli>\n\u003Cli>Remove \u003Clink rel=”shortlink” >\u003C\u002Fli>\n\u003Cli>Remove dashboard “welcome panel”\u003C\u002Fli>\n\u003Cli>Remove WordPress version number in \u003Chead>\u003C\u002Fli>\n\u003Cli>and more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong>: is possible disable any feature.\u003C\u002Fp>\n\u003Ch4>Contribuitions\u003C\u002Fh4>\n\u003Cp>For bugs, suggestions or contribuitions, open a issue in our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fluizbills\u002Fwp-tweaks\u002Fissues\" rel=\"nofollow ugc\">Github Repository\u003C\u002Fa> or create a topic in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-tweaks\u002F\" rel=\"ugc\">WordPress Plugin Forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Donations\u003C\u002Fh4>\n\u003Cp>Support this plugin on \u003Ca href=\"https:\u002F\u002Fluizpb.com\u002Fdonate\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fluizpb.com\u002Fdonate\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Several opinionated WordPress tweaks focused in security and performance.",200,15211,100,3,"2025-04-26T13:52:00.000Z","6.8.5","4.0","7.4",[20,21,22,23,24],"optimization","performance","security","tweaks","xmlrpc","https:\u002F\u002Fgithub.com\u002Fluizbills\u002Fwp-tweaks","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-tweaks.2.4.1.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"luizbills",4,13280,96,30,91,"2026-04-04T01:07:33.775Z",[40,57,78,95,120],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":13,"downloaded":48,"rating":27,"num_ratings":27,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":55,"download_link":56,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"rationalcleanup","RationalCleanup","1.1.0","rationalwp","https:\u002F\u002Fprofiles.wordpress.org\u002Frationalwp\u002F","\u003Cp>RationalCleanup removes unnecessary WordPress features, hardens security, and improves performance. All 24 options are toggleable with sensible defaults that balance security and compatibility.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Head Tags\u003C\u002Fstrong>\u003Cbr \u002F>\nRemove unnecessary meta tags and links from the document head:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Remove WordPress generator meta tag (hides version number)\u003C\u002Fli>\n\u003Cli>Remove WLW manifest link\u003C\u002Fli>\n\u003Cli>Remove RSD link\u003C\u002Fli>\n\u003Cli>Remove shortlink\u003C\u002Fli>\n\u003Cli>Remove REST API discovery link\u003C\u002Fli>\n\u003Cli>Remove RSS feed links\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Frontend Bloat\u003C\u002Fstrong>\u003Cbr \u002F>\nRemove scripts and styles that most sites don’t need:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Remove emoji detection scripts and styles\u003C\u002Fli>\n\u003Cli>Remove jQuery Migrate from frontend\u003C\u002Fli>\n\u003Cli>Remove Gutenberg block library CSS\u003C\u002Fli>\n\u003Cli>Remove global styles and SVG filters\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Security\u003C\u002Fstrong>\u003Cbr \u002F>\nHarden WordPress against common attack vectors:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable XML-RPC completely (prevents brute force and DDoS attacks)\u003C\u002Fli>\n\u003Cli>Prevent user enumeration (blocks author archives and REST API user endpoints)\u003C\u002Fli>\n\u003Cli>Obfuscate login error messages (prevents username discovery)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Performance\u003C\u002Fstrong>\u003Cbr \u002F>\nReduce unnecessary WordPress overhead:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable self-pingbacks\u003C\u002Fli>\n\u003Cli>Throttle Heartbeat API (reduces server load)\u003C\u002Fli>\n\u003Cli>Extend autosave interval (reduces database writes)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003Cbr \u002F>\nDisable major WordPress subsystems:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable comments system completely\u003C\u002Fli>\n\u003Cli>Disable block editor (force classic editor)\u003C\u002Fli>\n\u003Cli>Disable REST API for non-authenticated users\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Admin Cleanup\u003C\u002Fstrong>\u003Cbr \u002F>\nDeclutter the WordPress admin dashboard:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Remove WordPress Events and News widget\u003C\u002Fli>\n\u003Cli>Remove Quick Draft widget\u003C\u002Fli>\n\u003Cli>Remove At a Glance widget\u003C\u002Fli>\n\u003Cli>Remove Activity widget\u003C\u002Fli>\n\u003Cli>Remove Site Health Status widget\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Opinionated Defaults\u003C\u002Fh4>\n\u003Cp>RationalCleanup uses sensible defaults:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Security options:\u003C\u002Fstrong> Enabled by default (XML-RPC disabled, user enumeration blocked)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Head cleanup:\u003C\u002Fstrong> Mostly enabled (safe, no compatibility issues)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Frontend cleanup:\u003C\u002Fstrong> Emoji and jQuery Migrate removal enabled\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Breaking features:\u003C\u002Fstrong> Disabled by default (comments, block editor, REST API restrictions)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin widgets:\u003C\u002Fstrong> Disabled by default\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>RationalWP Menu\u003C\u002Fh4>\n\u003Cp>This plugin uses a shared parent menu for all RationalWP plugins. When activated, you’ll see a \u003Cstrong>RationalWP\u003C\u002Fstrong> menu in your admin sidebar containing links to all installed RationalWP plugins.\u003C\u002Fp>\n","Clean up legacy WordPress bloat, improve security, and optimize performance with toggleable, opinionated defaults.",147,"2026-02-06T20:58:00.000Z","6.9.4","5.0",[53,54,20,21,22],"cleanup","disable-xmlrpc","https:\u002F\u002Frationalwp.com\u002Fplugins\u002Fcleanup\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frationalcleanup.1.1.0.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":16,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":75,"download_link":76,"security_score":67,"vuln_count":33,"unpatched_count":27,"last_vuln_date":77,"fetched_at":29},"wp-extra","WP EXtra – One Click Optimize","8.6.5","COP","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpvncom\u002F","\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FH5vXwe5nyiQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>🚀 Boost your website’s functionality, security and SEO with WP EXtra – the all-in-one tool for WordPress users!\u003C\u002Fp>\n\u003Cp>Unlock all features with \u003Ca href=\"https:\u002F\u002Fwpvnteam.com\u002Fwp-extra\u002F\" rel=\"nofollow ugc\">WP EXtra Pro\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>FEATURES & MODULES\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>16 group (140 modules)\u003C\u002Fstrong> in total: 100 free modules | 40 Pro modules\u003C\u002Fp>\n\u003Cp>Many of the WP EXtra’s options can be applied by simply toggling them on. Here’s a quick look at a few we recommend utilizing:\u003C\u002Fp>\n\u003Ch3>🌟 Module Dashboard\u003C\u002Fh3>\n\u003Cp>Replace the default WordPress dashboard widgets with your own and give the WordPress dashboard a more meaningful use.\u003C\u002Fp>\n\u003Cp>WP EXtra is a clean & lightweight plugin that was made to optimize the user experience for clients inside the WordPress admin area.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Remove dashboard widgets\u003C\u002Fli>\n\u003Cli>Create your own widgets\u003C\u002Fli>\n\u003Cli>Remove “Help” tab\u003C\u002Fli>\n\u003Cli>Remove “Screen Options” tab\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Posts\u003C\u002Fh3>\n\u003Cp>This plugin is intended for more advanced users that would like to change the default TinyMCE configuration in WordPress.\u003Cbr \u002F>\nIt makes it very easy to add, remove or change all TinyMCE settings for the classic editor and for the classic block in the block editor.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Justify\u003C\u002Fli>\n\u003Cli>Unlinks\u003C\u002Fli>\n\u003Cli>[VA] Letter Spacing\u003C\u002Fli>\n\u003Cli>[Aa] Change Case\u003C\u002Fli>\n\u003Cli>Table\u003C\u002Fli>\n\u003Cli>Visual Blocks\u003C\u002Fli>\n\u003Cli>Search Replace\u003C\u002Fli>\n\u003Cli>Add rel=nofollow & sponsored\u003C\u002Fli>\n\u003Cli>Clean HTML\u003C\u002Fli>\n\u003Cli>Table of Contents\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Media\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Automatically keep the all remote picture to the local media libary when you publishing posts, and automatically set featured image.\u003C\u002Fli>\n\u003Cli>Automatically add Image attributes such as Image Title, Image Caption, Description And Alt Text from Image Filename.\u003C\u002Fli>\n\u003Cli>Automatically resizes uploaded images (JPEG, GIF, and PNG)\u003C\u002Fli>\n\u003Cli>Disable thumbnail sizes, default WordPress sizes and theme\u002Fplugins image size and others image advanced control.\u003C\u002Fli>\n\u003Cli>And more powerful functional is waiting for you.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Comments\u003C\u002Fh3>\n\u003Cp>WP EXtra plugin blocks 100% of automatic spam messages in comments section and also blocks all trackbacks. No captcha required.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Hide all comments\u003C\u002Fli>\n\u003Cli>Hide comments media\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Branding\u003C\u002Fh3>\n\u003Cp>Make your client’s experience better when you use WP EXtra to rebrand the WordPress login page. Our plugin lets web developers and agencies make a custom login page for their clients to use every time they use WordPress.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Customizes Admin URL\u003C\u002Fli>\n\u003Cli>Custom background image\u003C\u002Fli>\n\u003Cli>Custom branding logo\u003C\u002Fli>\n\u003Cli>Login box on the left or right\u003C\u002Fli>\n\u003Cli>Transparent login box\u003C\u002Fli>\n\u003Cli>Rounded corners\u003C\u002Fli>\n\u003Cli>Hide\u002Fchange WordPress links\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Site Admin\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Hide \u002F Auto-hide admin bar on the frontend for all or some user roles. \u003C\u002Fli>\n\u003Cli>Customize the order of the admin menu and optionally change menu item title or hide some items. \u003C\u002Fli>\n\u003Cli>Hide plugins from the Plugins screen in the admin\u003C\u002Fli>\n\u003Cli>Add custom branding image above the admin menu\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Security\u003C\u002Fh3>\n\u003Cp>Safeguard your WordPress application using our powerful site security toolset. Our comprehensive features are specifically designed to strengthen your website’s defenses against malware, exploits, and various malicious activities. With these tools at your disposal, you can ensure the utmost bot, malware and brute force protection for your website:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Lock and Protect System Folders\u003C\u002Fli>\n\u003Cli>Hide WordPress Version\u003C\u002Fli>\n\u003Cli>Disable Themes & Plugins Editor\u003C\u002Fli>\n\u003Cli>Disable REST API access\u003C\u002Fli>\n\u003Cli>Disable XML-RPC access\u003C\u002Fli>\n\u003Cli>Disable Embed scripts\u003C\u002Fli>\n\u003Cli>Disable WLW Manifest scripts\u003C\u002Fli>\n\u003Cli>Disable Right Click\u003C\u002Fli>\n\u003Cli>Disable Image Dragging by Mouse\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Cookie\u003C\u002Fh3>\n\u003Cp>WP EXtra is a simple that helps to display cookie notice on your WordPress website. It helps to show your complies with EU GDPR cookie law and CCPA regulations. It is a lightweight plugin that comes with three different layouts.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple & light-weight.\u003C\u002Fli>\n\u003Cli>Choose placement to display notice.\u003C\u002Fli>\n\u003Cli>Custom message support.\u003C\u002Fli>\n\u003Cli>Color options for notice.\u003C\u002Fli>\n\u003Cli>Display\u002FHide close button.\u003C\u002Fli>\n\u003Cli>Set cookie expiration date.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module SMTP\u003C\u002Fh3>\n\u003Cp>To access all the mail services you need professional mail addresses. The mail services you can use through this plug-in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>MailGun SMTP [5,000 free email \u002Fper month for 3 months]\u003C\u002Fli>\n\u003Cli>Gmail SMTP [10000 free email\u002Fper month]\u003C\u002Fli>\n\u003Cli>Hotmail\u003C\u002Fli>\n\u003Cli>Yahoo\u003C\u002Fli>\n\u003Cli>AWS SES\u003C\u002Fli>\n\u003Cli>ZOHO Mail\u003C\u002Fli>\n\u003Cli>Sendgrid\u003C\u002Fli>\n\u003Cli>Sendinblue\u003C\u002Fli>\n\u003Cli>Outlook\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Optimize\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Minify HTML will help in Compacting HTML code, including any inline JavaScript and CSS contained in it,can save many bytes of data.\u003C\u002Fli>\n\u003Cli>Instead of reloading the full page every time a user navigates your site, enable Turbolinks! Turbolinks will reload only the necessary parts of the site and even pull in additional JavaScipt and CSS.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Code\u003C\u002Fh3>\n\u003Cp>Customize your WordPress site’s appearance by easily adding custom CSS and JS code without even having to modify your theme or plugin files. This is perfect for adding custom CSS tweaks to your site.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Text editor with syntax highlighting\u003C\u002Fli>\n\u003Cli>Print the code inline or included into an external file\u003C\u002Fli>\n\u003Cli>Print the code in the header or the footer\u003C\u002Fli>\n\u003Cli>Add CSS or JS to the frontend or the admin side\u003C\u002Fli>\n\u003Cli>Add as many codes as you want\u003C\u002Fli>\n\u003Cli>Keep your changes also when you change the theme\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 Module Tools\u003C\u002Fh3>\n\u003Cp>You can transfer the saved options data between different installs by copying the text inside the text box. To import data from another install, replace the data in the text box with the one from another install and click “Import”.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Duplicate Post Type\u003C\u002Fli>\n\u003Cli>Duplicate Taxonomy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔥 WP EXtra Pro\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Lifetime Deal (LTD)\u003C\u002Fstrong> is available at \u003Ca href=\"https:\u002F\u002Fwpvnteam.com\u002Fwp-extra\u002F\" rel=\"nofollow ugc\">WP EXtra Pro\u003C\u002Fa>.\u003C\u002Fp>\n","Optimize your site instantly with one-click activation. WP Extra offers easy fixes and features for WordPress.",7000,103919,98,40,"2025-10-31T15:10:00.000Z","6.8",[72,73,74,22,23],"extra","functions","optimizations","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-extra\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-extra.zip","2023-11-16 00:00:00",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":13,"num_ratings":14,"last_updated":88,"tested_up_to":16,"requires_at_least":89,"requires_php":18,"tags":90,"homepage":93,"download_link":94,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"jethost-total-care","JetHost Total Care – Security & Enhancements","2.3.1","JetHost","https:\u002F\u002Fprofiles.wordpress.org\u002Fjethost\u002F","\u003Cp>JetHost Total Care simplifies your WordPress management by consolidating essential features like security, site enhancements and performance into a single, user-friendly plugin. This eliminates the need for multiple plugins, reducing conflicts, improving performance, and streamlining your workflow.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Ch4>Optimize WordPress Core:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Configure AutoSave intervals.\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable WordPress revisions.\u003C\u002Fli>\n\u003Cli>Limit revisions number.\u003C\u002Fli>\n\u003Cli>Media Trash control.\u003C\u002Fli>\n\u003Cli>Adjust memory limits for improved performance.\u003C\u002Fli>\n\u003Cli>Enhance security by hiding your WordPress version, disabling directory listing, and controlling error reporting.\u003C\u002Fli>\n\u003Cli>Protect core WordPress files and directories from unauthorized access.\u003C\u002Fli>\n\u003Cli>Disable WordPress emojis to improve frontend performance.\u003C\u002Fli>\n\u003Cli>Remove default Dashicons on the frontend for faster load times.\u003C\u002Fli>\n\u003Cli>Disable WordPress embeds to reduce unnecessary scripts and requests.\u003C\u002Fli>\n\u003Cli>Remove the jQuery Migrate library from the frontend if not needed by the theme or plugins.\u003C\u002Fli>\n\u003Cli>Limit login attempts to block brute-force attacks and protect user accounts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress Heartbeat API Control:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Manage the frequency of the WordPress Heartbeat API to optimize performance and reduce server load.\u003C\u002Fli>\n\u003Cli>Set different heartbeat intervals or disable it completely for:\n\u003Cul>\n\u003Cli>Admin Dashboard – Maintain responsive experience for admins and editors.\u003C\u002Fli>\n\u003Cli>Post\u002FPage Editor – Ensure autosave works efficiently without overloading the server.\u003C\u002Fli>\n\u003Cli>Website Frontend – Minimize unnecessary background requests for visitors.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Author Security:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Prevent user enumeration for enhanced security.\u003C\u002Fli>\n\u003Cli>Disable “List Users” functionality.\u003C\u002Fli>\n\u003Cli>Customize author slugs and base URLs for better control.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Admin Enhancements:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Duplicate any post or page with one click.\u003C\u002Fli>\n\u003Cli>Hide the admin bar on the frontend for all or selected user roles.\u003C\u002Fli>\n\u003Cli>Replace the default WordPress logo with your own on the login screen.\u003C\u002Fli>\n\u003Cli>Disable Theme and Plugin file editors for better security.\u003C\u002Fli>\n\u003Cli>Switch entirely to the Classic Editor by disabling Gutenberg.\u003C\u002Fli>\n\u003Cli>Password protect the entire website from unauthorized access.\u003C\u002Fli>\n\u003Cli>Set custom redirects after login and logout.\u003C\u002Fli>\n\u003Cli>Change the default WordPress login URL to protect against brute-force attacks.\u003C\u002Fli>\n\u003Cli>Under Maintenance Mode – When activated, visitors who are not logged in will see a maintenance notice on the site’s frontend. Logged-in users can continue working in the website without interruptions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Comment Management:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable future comments on posts, pages, and media attachments.\u003C\u002Fli>\n\u003Cli>Optionally hide existing comments for a cleaner frontend and improved performance.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Database Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Check Database Health – Scan your database to see the number of optimizable items.\u003C\u002Fli>\n\u003Cli>One-Click Optimization – Select the items you want to clean and optimize instantly.\n\u003Cul>\n\u003Cli>Optimize Database Tables\u003C\u002Fli>\n\u003Cli>Clean Post Revisions\u003C\u002Fli>\n\u003Cli>Clean Auto-draft Posts\u003C\u002Fli>\n\u003Cli>Clean Trashed Posts\u003C\u002Fli>\n\u003Cli>Delete Comments Marked as Spam\u003C\u002Fli>\n\u003Cli>Delete Unapproved Comments\u003C\u002Fli>\n\u003Cli>Delete Trashed Comments\u003C\u002Fli>\n\u003Cli>Clean Expired Transients\u003C\u002Fli>\n\u003Cli>Clean All Transients\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Scheduled Optimization – Automate cleanups by setting optimization frequency (Daily, Weekly, Monthly).\u003C\u002Fli>\n\u003Cli>Last Optimization Log – Quickly view the last optimization date and time.\u003C\u002Fli>\n\u003C\u002Ful>\n","JetHost Total Care simplifies WordPress management by consolidating features like security, site enhancements and performance into a single plugin.",500,1889,"2025-12-03T08:02:00.000Z","5.5",[91,20,21,92,22],"enhancements","protection","https:\u002F\u002Fwww.jethost.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjethost-total-care.2.3.1.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":117,"download_link":118,"security_score":119,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wp-safely-disable-directory-browsing","WP safely disable directory browsing","0.1","Maurisource","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaurisource\u002F","\u003Cp>This essential .htaccess rules plugin allow you to improve security of your wordpress blog.\u003C\u002Fp>\n\u003Cp>More info:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>More info on \u003Ca href=\"http:\u002F\u002Fwww.maurisource.com\u002Fblog\u002Fwp-safely-disable-directory-browsing\u002F\" rel=\"nofollow ugc\">WP safely disable directory browsing\u003C\u002Fa>, with info on how to configure it.\u003C\u002Fli>\n\u003Cli>Special Thanks to \u003Ca href=\"http:\u002F\u002Fwww.maurisource.com\u002F\" rel=\"nofollow ugc\">Agence web Montreal\u003C\u002Fa> for support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Changelog\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>0.1\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>first release\u003C\u002Fli>\n\u003C\u002Ful>\n","This essential .htaccess rules plugin allow you to improve security of your wordpress blog.",300,5850,82,8,"2012-10-05T18:03:00.000Z","2.9.2","2.6","",[112,113,114,115,116],"directory-browsing","htaccess","web-performance-optimization","wordpress-security","wp-content","http:\u002F\u002Fwww.maurisource.com\u002Fblog\u002Fwp-safely-disable-directory-browsing\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-safely-disable-directory-browsing.zip",85,{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":11,"downloaded":128,"rating":13,"num_ratings":129,"last_updated":130,"tested_up_to":50,"requires_at_least":70,"requires_php":131,"tags":132,"homepage":137,"download_link":138,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"divewp-boost-site-performance","DiveWP – Boost Site Performance with Clear, Actionable Steps","2.3.3","Oleg Petrov","https:\u002F\u002Fprofiles.wordpress.org\u002Freplikon\u002F","\u003Ch4>🔌 NEW: Plugins Management\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Monitor and manage all installed plugins from one place.\u003C\u002Fstrong> DiveWP’s \u003Cstrong>Plugins Management\u003C\u002Fstrong> feature shows every plugin with active\u002Finactive status, update availability, and “Up to date” state. View details and changelog from WordPress.org, and activate or deactivate plugins without leaving the dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Plugins Management & Abilities API:\u003C\u002Fstrong> Use the \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode> ability so AI assistants can list plugins, fetch description and changelog for a plugin, or activate\u002Fdeactivate a plugin by file path.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What Plugins Management Delivers:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Unified plugin list\u003C\u002Fstrong> – All installed plugins with status pills (Active, Inactive, Update Available, Up to date)\u003Cbr \u002F>\n* \u003Cstrong>Dashboard overview\u003C\u002Fstrong> – Green and red pill counts on the main dashboard for quick health overview\u003Cbr \u002F>\n* \u003Cstrong>Details drawer\u003C\u002Fstrong> – Overview, full description, and changelog from WordPress.org\u003Cbr \u002F>\n* \u003Cstrong>Toggle activation\u003C\u002Fstrong> – Activate or deactivate plugins from the card or drawer\u003Cbr \u002F>\n* \u003Cstrong>Search\u003C\u002Fstrong> – Filter plugins by name, author, or description\u003Cbr \u002F>\n* \u003Cstrong>Abilities API\u003C\u002Fstrong> – Operations: list (all plugins), details (wp.org info for one plugin), toggle (activate\u002Fdeactivate)\u003C\u002Fp>\n\u003Ch4>🤖 NEW: AI Capabilities & WordPress Abilities API\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Talk to your WordPress site through AI!\u003C\u002Fstrong> DiveWP integrates with the \u003Cstrong>WordPress Abilities API\u003C\u002Fstrong> and Model Context Protocol (MCP), so AI tools like Cursor, Claude, and ChatGPT can query your site’s health and diagnostics directly—no copy-paste needed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Abilities API & MCP:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>11 Diagnostic Abilities\u003C\u002Fstrong> – Server insights, cron monitoring, plugins management, database health, security audits, and more via the Abilities API\u003Cbr \u002F>\n* \u003Cstrong>Zero Copy-Paste\u003C\u002Fstrong> – AI agents run diagnostics through MCP without manual log sharing\u003Cbr \u002F>\n* \u003Cstrong>Secure Authentication\u003C\u002Fstrong> – WordPress Application Passwords for safe, controlled access\u003Cbr \u002F>\n* \u003Cstrong>Step-by-Step Setup\u003C\u002Fstrong> – “AI Capabilities” tab guides you through 3-step configuration for Abilities API and MCP clients\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Available Abilities:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fserver-insights\u003C\u002Fcode> – Full server health & config check\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> – Monitor WP-Cron and Action Scheduler; background tasks & overdue jobs\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fdb-insights\u003C\u002Fcode> – Database size & optimization status\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fsecurity-insights\u003C\u002Fcode> – Vulnerability & configuration audit\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fperformance-checks\u003C\u002Fcode> – Caching & optimization discovery\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Ftheme-builder-insights\u003C\u002Fcode> – Theme and page builder health\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fwoocommerce-best-practices\u003C\u002Fcode> – WooCommerce optimization\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fseo-optimization\u003C\u002Fcode> – SEO configuration audit\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Femail-communications\u003C\u002Fcode> – Email delivery & SMTP status\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fhosting-benchmark-latest\u003C\u002Fcode> – Latest benchmark results\u003Cbr \u002F>\n* \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode> – List installed plugins, fetch wp.org details\u002Fchangelog, or toggle plugin activation (operations: list, details, toggle)\u003C\u002Fp>\n\u003Ch4>⏰ NEW: Cron Job Manager & WP-Cron Monitoring\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Take control of WordPress cron jobs and scheduled tasks.\u003C\u002Fstrong> DiveWP’s \u003Cstrong>Cron Job Manager\u003C\u002Fstrong> gives you a clear view of WP-Cron and Action Scheduler so you can spot overdue jobs, slow hooks, and misconfigured cron setups.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cron Jobs & Abilities API:\u003C\u002Fstrong> Use the \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> ability so AI assistants can inspect your cron status, overdue tasks, and recommendations without opening the admin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What the Cron Job Manager Delivers:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Real-time cron monitoring\u003C\u002Fstrong> – WP-Cron and Action Scheduler in one dashboard\u003Cbr \u002F>\n* \u003Cstrong>Hook performance\u003C\u002Fstrong> – Execution time and memory per cron hook\u003Cbr \u002F>\n* \u003Cstrong>Overdue & orphan detection\u003C\u002Fstrong> – Find stuck or orphaned scheduled tasks\u003Cbr \u002F>\n* \u003Cstrong>Execution history\u003C\u002Fstrong> – Filterable, paginated cron run history\u003Cbr \u002F>\n* \u003Cstrong>Health guidance\u003C\u002Fstrong> – System health and cron configuration tips\u003C\u002Fp>\n\u003Ch4>🚀 Hosting Performance Benchmark – Know If You Need to Upgrade!\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Measure how your hosting handles your WordPress site!\u003C\u002Fstrong> DiveWP’s comprehensive Hosting Performance Benchmark is a powerful enterprise-grade testing system that evaluates your hosting environment through real-world performance tests.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What It Tests:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Database Performance\u003C\u002Fstrong> – Tests INSERT, SELECT, UPDATE operations, datetime functions, and aggregate operations (8 comprehensive tests)\u003Cbr \u002F>\n* \u003Cstrong>Server Resources\u003C\u002Fstrong> – Evaluates CPU, memory, I\u002FO, and network capabilities (5 resource tests)\u003Cbr \u002F>\n* \u003Cstrong>Concurrency Handling\u003C\u002Fstrong> – Measures how your hosting performs under multiple simultaneous requests (4 concurrency tests)\u003Cbr \u002F>\n* \u003Cstrong>E-commerce Performance\u003C\u002Fstrong> – Tests WooCommerce-like operations including price calculations, shipping, and inventory checks (3 performance tests)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Benefits:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>20+ Individual Tests\u003C\u002Fstrong> – Comprehensive evaluation across 4 major categories\u003Cbr \u002F>\n* \u003Cstrong>Real-World Simulation\u003C\u002Fstrong> – Tests simulate actual WordPress operations, not synthetic benchmarks\u003Cbr \u002F>\n* \u003Cstrong>6-Minute Complete Analysis\u003C\u002Fstrong> – Get detailed insights in approximately 6 minutes\u003Cbr \u002F>\n* \u003Cstrong>Actionable Results\u003C\u002Fstrong> – Understand if your current hosting is sufficient or if you need to upgrade\u003Cbr \u002F>\n* \u003Cstrong>Cross-Database Compatible\u003C\u002Fstrong> – Works with MySQL, MariaDB, PostgreSQL, SQLite, and SQL Server\u003Cbr \u002F>\n* \u003Cstrong>Optimized for Shared Hosting\u003C\u002Fstrong> – Designed to work efficiently even on shared hosting environments\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect For:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Site owners wondering if their hosting plan is sufficient\u003Cbr \u002F>\n* Users experiencing slow performance and wanting to identify bottlenecks\u003Cbr \u002F>\n* Anyone considering upgrading their hosting plan\u003Cbr \u002F>\n* Developers evaluating hosting performance for client sites\u003C\u002Fp>\n\u003Ch4>🎯 Transform Your WP Journey\u003C\u002Fh4>\n\u003Cp>Discover your site’s true potential by understanding exactly what’s happening under the hood. DiveWP provides clear insights about Performance, Security, and Best Practices – all explained in plain English. Take control of your digital presence by learning as you optimize!\u003C\u002Fp>\n\u003Ch4>🔍 Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>🔌 NEW: Plugins Management\u003C\u002Fstrong>\u003Cbr \u002F>\n* Unified list of all installed plugins with status (Active, Inactive, Update Available, Up to date)\u003Cbr \u002F>\n* Dashboard counts green (up to date) and red (updates available) pills for quick overview\u003Cbr \u002F>\n* Details drawer with overview, WordPress.org description, and changelog\u003Cbr \u002F>\n* Toggle plugin activation from card or drawer; search by name, author, or description\u003Cbr \u002F>\n* Abilities API: \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode> (list, details, toggle) for AI-assisted plugin management\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⏰ NEW: Cron Job Manager & WP-Cron Monitoring\u003C\u002Fstrong>\u003Cbr \u002F>\n* Real-time WP-Cron and Action Scheduler tracking\u003Cbr \u002F>\n* Monitor hook performance and execution time\u003Cbr \u002F>\n* Detect orphaned and overdue tasks\u003Cbr \u002F>\n* Identify problematic cron hooks affecting performance\u003Cbr \u002F>\n* Complete execution history with filtering and pagination\u003Cbr \u002F>\n* Integrates with Abilities API via \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> for AI-assisted cron diagnostics\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🤖 NEW: AI Capabilities & WordPress Abilities API\u003C\u002Fstrong>\u003Cbr \u002F>\n* WordPress Abilities API and MCP let AI assistants query your site for diagnostics\u003Cbr \u002F>\n* 11 abilities for server, cron jobs, plugins, security, database, and performance insights\u003Cbr \u002F>\n* Works with Cursor, Claude Desktop, ChatGPT, and other MCP clients\u003Cbr \u002F>\n* Secure access via WordPress Application Passwords\u003Cbr \u002F>\n* Step-by-step setup guide in “AI Capabilities” tab\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🚀 Hosting Performance Benchmark\u003C\u002Fstrong>\u003Cbr \u002F>\n* Comprehensive hosting evaluation with 20+ real-world performance tests\u003Cbr \u002F>\n* Database, resource, concurrency, and e-commerce performance analysis\u003Cbr \u002F>\n* Determine if your hosting plan is sufficient for your site\u003Cbr \u002F>\n* Cross-database compatibility (MySQL, MariaDB, PostgreSQL, SQLite, SQL Server)\u003Cbr \u002F>\n* Optimized for shared hosting environments\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Deep Site Insights\u003C\u002Fstrong>\u003Cbr \u002F>\n* Understand your site inside out\u003Cbr \u002F>\n* Comprehensive analysis of core functions\u003Cbr \u002F>\n* Database health monitoring\u003Cbr \u002F>\n* User activity tracking\u003Cbr \u002F>\n* Everything explained in plain English\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚡ Performance & Speed\u003C\u002Fstrong>\u003Cbr \u002F>\n* Clear performance insights\u003Cbr \u002F>\n* Actionable optimization steps\u003Cbr \u002F>\n* Speed improvement recommendations\u003Cbr \u002F>\n* Learn what affects your site’s performance\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛡️ Security & Best Practices\u003C\u002Fstrong>\u003Cbr \u002F>\n* Proactive security checks\u003Cbr \u002F>\n* Easy-to-follow hardening recommendations\u003Cbr \u002F>\n* Learn WordPress security best practices\u003Cbr \u002F>\n* Implement as you learn\u003C\u002Fp>\n\u003Cp>\u003Cstrong>📊 Database Health\u003C\u002Fstrong>\u003Cbr \u002F>\n* Optimize database performance\u003Cbr \u002F>\n* Clear insights into tables and structure\u003Cbr \u002F>\n* Cleanup recommendations\u003Cbr \u002F>\n* Learn database management without being a tech expert\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🎯 SEO & Visibility\u003C\u002Fstrong>\u003Cbr \u002F>\n* Practical SEO recommendations\u003Cbr \u002F>\n* Essential optimization techniques\u003Cbr \u002F>\n* Improve search engine rankings\u003Cbr \u002F>\n* Learn while implementing\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛍️ WooCommerce Optimization\u003C\u002Fstrong>\u003Cbr \u002F>\n* Specialized store insights\u003Cbr \u002F>\n* Performance optimization\u003Cbr \u002F>\n* Checkout process analysis\u003Cbr \u002F>\n* Shopping experience improvements\u003C\u002Fp>\n\u003Cp>\u003Cstrong>📧 Email System Monitor\u003C\u002Fstrong>\u003Cbr \u002F>\n* Detailed logging and diagnostics\u003Cbr \u002F>\n* Track email system performance\u003Cbr \u002F>\n* Ensure reliable communication\u003Cbr \u002F>\n* Monitor delivery status\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🎨 Theme & Builder Analysis\u003C\u002Fstrong>\u003Cbr \u002F>\n* Theme performance insights\u003Cbr \u002F>\n* Page builder optimization\u003Cbr \u002F>\n* Visual elements analysis\u003Cbr \u002F>\n* Speed optimization guidance\u003C\u002Fp>\n\u003Ch4>💡 How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Install & Scan:\u003C\u002Fstrong> Quick installation and automatic site analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Get Clear Insights:\u003C\u002Fstrong> Receive easy-to-understand explanations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Learn Best Practices:\u003C\u002Fstrong> Understand WordPress through your own site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Implement Changes:\u003C\u002Fstrong> Follow actionable recommendations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Monitor Progress:\u003C\u002Fstrong> Track improvements and keep learning\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>🎯 Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress Beginners:\u003C\u002Fstrong> Finally understand what’s happening on your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Store Owners:\u003C\u002Fstrong> Optimize WooCommerce performance and boost sales\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Agency Teams:\u003C\u002Fstrong> Maintain multiple sites while learning best practices\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Creators:\u003C\u002Fstrong> Improve site visibility while mastering WordPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🌟 What’s New in 2.3.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: Plugins Management\u003C\u002Fli>\n\u003Cli>New “Plugins Management” feature: view all installed plugins with status pills (Active, Inactive, Update Available, Up to date)\u003C\u002Fli>\n\u003Cli>Dashboard overview counts green (up to date) and red (updates available) pills alongside other feature statuses\u003C\u002Fli>\n\u003Cli>Details drawer with overview, full description, and changelog from WordPress.org\u003C\u002Fli>\n\u003Cli>Activate\u002Fdeactivate plugins from the card or drawer; search by name, author, or description\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: Abilities API – \u003Ccode>divewp\u002Fplugins-management\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Operations: list (all plugins with status), details (wp.org description and changelog for one plugin), toggle (activate\u002Fdeactivate by plugin file)\u003C\u002Fli>\n\u003Cli>AI assistants can list plugins, fetch plugin info, or change activation state via MCP\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🌟 What’s New in 2.2.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: AI Capabilities & WordPress Abilities API\u003C\u002Fli>\n\u003Cli>New “AI Capabilities” tab with step-by-step setup guide\u003C\u002Fli>\n\u003Cli>10 diagnostic abilities for AI agents (server, cron jobs, database, security, performance, and more)\u003C\u002Fli>\n\u003Cli>Support for Cursor, Claude Desktop, ChatGPT via Model Context Protocol (MCP)\u003C\u002Fli>\n\u003Cli>Secure access using WordPress Application Passwords\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: Cron Job Manager & WP-Cron Monitoring\u003C\u002Fli>\n\u003Cli>Full cron jobs dashboard: WP-Cron and Action Scheduler in one place\u003C\u002Fli>\n\u003Cli>Hook performance, overdue and orphan detection, execution history\u003C\u002Fli>\n\u003Cli>Abilities API integration: \u003Ccode>divewp\u002Fcron-insights\u003C\u002Fcode> for AI-driven cron diagnostics\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW\u003C\u002Fstrong>: REST API Access Logging in User Events\u003C\u002Fli>\n\u003Cli>Track API access via Application Passwords in the event log\u003C\u002Fli>\n\u003Cli>Monitor AI agent activity and external integrations\u003C\u002Fli>\n\u003Cli>Throttled logging to prevent flood from MCP bursts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IMPROVED\u003C\u002Fstrong>: Cron Jobs Feature Enhancements\u003C\u002Fli>\n\u003Cli>Aligned AJAX and server health calculations for consistent status display\u003C\u002Fli>\n\u003Cli>“Potential orphan” terminology for clearer task identification\u003C\u002Fli>\n\u003Cli>Added Alternate Cron explanation footnote\u003C\u002Fli>\n\u003Cli>Visual accent pills for Important\u002FRecommendation notes in task modals\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Need help? We’re here for you!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>📚 \u003Ca href=\"https:\u002F\u002Fdivewp.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>💬 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fdivewp\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>🐞 \u003Ca href=\"https:\u002F\u002Fdivewp.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Bug Reports and Contact\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>DiveWP respects your privacy and that of your users. We do not collect any personal data. All analysis is performed locally on your server.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>DiveWP is proudly created and maintained by Oleg Petrov.\u003C\u002Fp>\n","Learn WP Best Practices Through Your Own Site! Get clear insights about Performance, Security, and Best Practices – explained in plain English.",1884,6,"2026-02-26T08:16:00.000Z","7.2",[133,134,135,22,136],"abilities-api","cron-jobs","performance-optimization","site-health","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdivewp-boost-site-performance\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdivewp-boost-site-performance.2.3.3.zip",{"attackSurface":140,"codeSignals":394,"taintFlows":480,"riskAssessment":507,"analyzedAt":517},{"hooks":141,"ajaxHandlers":390,"restRoutes":391,"shortcodes":392,"cronEvents":393,"entryPointCount":27,"unprotectedCount":27},[142,148,153,156,162,166,172,176,181,185,189,193,197,200,206,210,214,219,222,227,231,235,239,243,246,249,251,253,256,259,263,266,268,272,276,280,282,284,288,291,295,299,303,306,310,314,318,321,324,328,332,335,338,341,345,349,352,355,358,362,365,369,371,374,378,381,384,387],{"type":143,"name":144,"callback":144,"priority":145,"file":146,"line":147},"action","init",1,"classes\\Settings.php",19,{"type":149,"name":150,"callback":151,"file":146,"line":152},"filter","prepare_field","render_markdown",38,{"type":149,"name":154,"callback":154,"file":146,"line":155},"prepare_field_content_editor",42,{"type":143,"name":157,"callback":158,"priority":159,"file":160,"line":161},"after_update_options","add_settings_saved_notice",10,"dependencies\\WP_Options_Page.php",279,{"type":149,"name":163,"callback":164,"file":160,"line":165},"posted_value","wp_unslash",282,{"type":143,"name":167,"callback":168,"priority":169,"file":170,"line":171},"admin_notices","wp_tweaks_add_debug_warning",5,"includes\\debug-warning.php",9,{"type":143,"name":173,"callback":174,"file":175,"line":171},"admin_menu","wp_tweaks_change_menu_posts","includes\\tweaks\\change-posts-menu-name.php",{"type":149,"name":177,"callback":178,"file":179,"line":180},"sanitize_file_name","wp_tweaks_clear_file_name","includes\\tweaks\\clear-file-name.php",13,{"type":149,"name":182,"callback":183,"file":184,"line":171},"admin_footer_text","wp_tweaks_custom_admin_footer_text","includes\\tweaks\\custom-admin-footer-text.php",{"type":149,"name":186,"callback":187,"file":188,"line":171},"screen_layout_columns","wp_tweaks_dashboard_single_column","includes\\tweaks\\dashboard-single-column-layout.php",{"type":149,"name":190,"callback":191,"file":188,"line":192},"get_user_option_screen_layout_dashboard","wp_tweaks_dashboard_layout_avaliable",15,{"type":143,"name":194,"callback":195,"file":196,"line":171},"wp","wp_tweaks_disable_author_pages","includes\\tweaks\\disable-author-pages.php",{"type":143,"name":194,"callback":198,"file":199,"line":171},"wp_tweaks_disable_author_query","includes\\tweaks\\disable-author-query.php",{"type":149,"name":201,"callback":202,"priority":203,"file":204,"line":205},"comments_template","wp_tweaks_dummy_comments_template",9999,"includes\\tweaks\\disable-comments.php",23,{"type":149,"name":207,"callback":208,"priority":203,"file":204,"line":209},"comments_open","wp_tweaks_disable_comments",31,{"type":149,"name":211,"callback":212,"priority":203,"file":204,"line":213},"get_default_comment_status","wp_tweaks_default_comment_status",39,{"type":149,"name":215,"callback":216,"file":217,"line":218},"tiny_mce_plugins","wp_tweaks_disable_emojicons_tinymce","includes\\tweaks\\disable-emojis.php",18,{"type":149,"name":220,"callback":221,"file":217,"line":147},"emoji_svg_url","__return_false",{"type":143,"name":223,"callback":224,"file":225,"line":226},"wp_print_scripts","wp_tweaks_dequeue_jquery_migrate","includes\\tweaks\\disable-jquery-migrate.php",11,{"type":149,"name":228,"callback":229,"file":230,"line":171},"rest_authentication_errors","wp_tweaks_disable_rest_api","includes\\tweaks\\disable-public-rest-api.php",{"type":149,"name":232,"callback":233,"file":234,"line":171},"rest_endpoints","wp_tweaks_disable_rest_api_users_endpoint","includes\\tweaks\\disable-rest-api-users-endpoint.php",{"type":143,"name":236,"callback":237,"file":238,"line":159},"wp_enqueue_scripts","wp_tweaks_disable_right_click_scripts","includes\\tweaks\\disable-right-click.php",{"type":143,"name":240,"callback":241,"priority":27,"file":242,"line":192},"do_feed","wp_tweaks_disable_rss_feed","includes\\tweaks\\disable-rss.php",{"type":143,"name":244,"callback":241,"priority":27,"file":242,"line":245},"do_feed_rdf",16,{"type":143,"name":247,"callback":241,"priority":27,"file":242,"line":248},"do_feed_rss",17,{"type":143,"name":250,"callback":241,"priority":27,"file":242,"line":218},"do_feed_rss2",{"type":143,"name":252,"callback":241,"priority":27,"file":242,"line":147},"do_feed_atom",{"type":143,"name":254,"callback":241,"priority":27,"file":242,"line":255},"do_feed_rss2_comments",20,{"type":143,"name":257,"callback":241,"priority":27,"file":242,"line":258},"do_feed_atom_comments",21,{"type":149,"name":260,"callback":261,"file":262,"line":171},"comment_form_default_fields","wp_tweaks_disable_website_field","includes\\tweaks\\disable-website-field.php",{"type":149,"name":264,"callback":221,"file":265,"line":180},"embed_oembed_discover","includes\\tweaks\\disable-wp-embed.php",{"type":149,"name":215,"callback":267,"file":265,"line":205},"wp_tweaks_disable_embeds_tiny_mce_plugin",{"type":149,"name":269,"callback":270,"file":265,"line":271},"rewrite_rules_array","wp_tweaks_disable_embeds_rewrites",29,{"type":143,"name":273,"callback":274,"file":265,"line":275},"wp_footer","wp_tweaks_disable_wp_embed_js",43,{"type":149,"name":277,"callback":221,"priority":278,"file":279,"line":171},"xmlrpc_enabled",99,"includes\\tweaks\\disable-xmlrpc.php",{"type":149,"name":281,"callback":221,"priority":278,"file":279,"line":159},"pings_open",{"type":149,"name":283,"callback":221,"priority":278,"file":279,"line":226},"pre_update_option_enable_xmlrpc",{"type":149,"name":285,"callback":286,"priority":278,"file":279,"line":287},"pre_option_enable_xmlrpc","__return_zero",12,{"type":149,"name":289,"callback":290,"priority":278,"file":279,"line":248},"xmlrpc_methods","wp_tweaks_unset_pingback_methods",{"type":149,"name":292,"callback":293,"priority":278,"file":279,"line":294},"wp_headers","wp_tweaks_remove_pingback_headers",22,{"type":149,"name":296,"callback":297,"priority":278,"file":279,"line":298},"bloginfo_url","wp_tweaks_remove_pingback_url",28,{"type":149,"name":300,"callback":301,"file":279,"line":302},"xmlrpc_call","wp_tweaks_remove_pingback_xmlrpc",33,{"type":149,"name":269,"callback":304,"file":279,"line":305},"wp_tweaks_remove_trackback_rewrite_rules",44,{"type":143,"name":307,"callback":308,"file":279,"line":309},"admin_init","wp_tweaks_remove_trackbacks_support",54,{"type":149,"name":311,"callback":312,"file":313,"line":171},"update_footer","wp_tweaks_show_php_version","includes\\tweaks\\display-php-version.php",{"type":149,"name":315,"callback":316,"priority":278,"file":317,"line":171},"wp_login_errors","wp_tweaks_login_error","includes\\tweaks\\generic-login-errors.php",{"type":143,"name":144,"callback":319,"file":320,"line":226},"wp_tweaks_disable_heartbeat","includes\\tweaks\\heartbeat.php",{"type":149,"name":322,"callback":323,"priority":13,"file":320,"line":248},"heartbeat_settings","wp_tweaks_heartbeat_settings",{"type":149,"name":325,"callback":326,"file":327,"line":171},"show_admin_bar","wp_tweaks_hide_admin_bar_for_nonadmin_users","includes\\tweaks\\hide-admin-bar.php",{"type":143,"name":329,"callback":330,"priority":255,"file":331,"line":106},"admin_head","wp_tweaks_hide_admin_notices","includes\\tweaks\\hide-admin-notices.php",{"type":149,"name":333,"callback":334,"file":331,"line":309},"wp_tweaks_hide_admin_notices_css_rules","closure",{"type":143,"name":329,"callback":336,"priority":145,"file":337,"line":171},"wp_tweaks_hide_update_notice","includes\\tweaks\\hide-update-notice.php",{"type":143,"name":173,"callback":339,"file":340,"line":171},"wp_tweaks_hide_version_in_admin_footer","includes\\tweaks\\hide-wp-version-in-admin-footer.php",{"type":149,"name":342,"callback":343,"file":344,"line":287},"wp_revisions_to_keep","wp_tweaks_post_revisions_to_keep","includes\\tweaks\\post-revisions.php",{"type":143,"name":346,"callback":347,"priority":255,"file":348,"line":171},"wp_before_admin_bar_render","wp_tweaks_remove_admin_bar_comments","includes\\tweaks\\remove-admin-bar-comments.php",{"type":143,"name":346,"callback":350,"priority":255,"file":351,"line":171},"wp_tweaks_remove_admin_bar_wp_logo","includes\\tweaks\\remove-admin-bar-logo.php",{"type":143,"name":346,"callback":353,"priority":255,"file":354,"line":171},"wp_tweaks_remove_admin_bar_new_content","includes\\tweaks\\remove-admin-bar-new-content.php",{"type":143,"name":307,"callback":356,"file":357,"line":159},"wp_tweaks_remove_dashboard_widgets","includes\\tweaks\\remove-dashboard-widgets.php",{"type":143,"name":359,"callback":360,"priority":226,"file":361,"line":171},"admin_bar_menu","wp_tweaks_remove_howdy","includes\\tweaks\\remove-howdy.php",{"type":149,"name":363,"callback":221,"file":364,"line":159},"login_display_language_dropdown","includes\\tweaks\\remove-lang-switcher.php",{"type":149,"name":366,"callback":367,"priority":159,"file":368,"line":171},"style_loader_src","wp_tweaks_remove_query_string_from_scripts","includes\\tweaks\\remove-query-strings.php",{"type":149,"name":370,"callback":367,"priority":159,"file":368,"line":159},"script_loader_src",{"type":143,"name":307,"callback":372,"file":373,"line":171},"wp_tweaks_remove_welcome_panel","includes\\tweaks\\remove-welcome-panel.php",{"type":149,"name":375,"callback":376,"file":377,"line":171},"the_generator","__return_empty_string","includes\\tweaks\\remove-wordpress-version.php",{"type":143,"name":292,"callback":379,"file":380,"line":171},"wp_tweaks_security_headers","includes\\tweaks\\security-headers.php",{"type":143,"name":167,"callback":334,"file":382,"line":383},"wp-tweaks.php",36,{"type":143,"name":144,"callback":385,"priority":27,"file":382,"line":386},"load_plugin_translations",51,{"type":143,"name":144,"callback":388,"priority":169,"file":382,"line":389},"load_tweaks",52,[],[],[],[],{"dangerousFunctions":395,"sqlUsage":396,"outputEscaping":401,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":169,"bundledLibraries":479},[],{"prepared":27,"raw":145,"locations":397},[398],{"file":399,"line":106,"context":400},"uninstall.php","$wpdb->query() with variable interpolation",{"escaped":129,"rawEcho":275,"locations":402},[403,406,408,410,412,414,415,417,419,420,422,423,425,426,428,430,431,433,434,436,438,440,441,442,444,446,448,450,452,454,456,458,460,462,463,464,465,467,469,471,473,475,477],{"file":146,"line":404,"context":405},387,"raw output",{"file":160,"line":407,"context":405},667,{"file":160,"line":409,"context":405},820,{"file":160,"line":411,"context":405},826,{"file":160,"line":413,"context":405},848,{"file":160,"line":413,"context":405},{"file":160,"line":416,"context":405},886,{"file":160,"line":418,"context":405},891,{"file":160,"line":418,"context":405},{"file":160,"line":421,"context":405},914,{"file":160,"line":421,"context":405},{"file":160,"line":424,"context":405},919,{"file":160,"line":424,"context":405},{"file":160,"line":427,"context":405},941,{"file":160,"line":429,"context":405},943,{"file":160,"line":429,"context":405},{"file":160,"line":432,"context":405},950,{"file":160,"line":432,"context":405},{"file":160,"line":435,"context":405},978,{"file":160,"line":437,"context":405},982,{"file":160,"line":439,"context":405},983,{"file":160,"line":439,"context":405},{"file":160,"line":439,"context":405},{"file":160,"line":443,"context":405},984,{"file":160,"line":445,"context":405},992,{"file":160,"line":447,"context":405},1025,{"file":160,"line":449,"context":405},1027,{"file":160,"line":451,"context":405},1028,{"file":160,"line":453,"context":405},1029,{"file":160,"line":455,"context":405},1035,{"file":160,"line":457,"context":405},1066,{"file":160,"line":459,"context":405},1071,{"file":160,"line":461,"context":405},1072,{"file":160,"line":461,"context":405},{"file":160,"line":461,"context":405},{"file":160,"line":461,"context":405},{"file":160,"line":466,"context":405},1073,{"file":160,"line":468,"context":405},1081,{"file":160,"line":470,"context":405},1102,{"file":160,"line":472,"context":405},1104,{"file":160,"line":474,"context":405},1128,{"file":160,"line":476,"context":405},1129,{"file":331,"line":478,"context":405},47,[],[481],{"entryPoint":482,"graph":483,"unsanitizedCount":27,"severity":506},"\u003CWP_Options_Page> (dependencies\\WP_Options_Page.php:0)",{"nodes":484,"edges":502},[485,490,495,497],{"id":486,"type":487,"label":488,"file":160,"line":489},"n0","source","$_POST",556,{"id":491,"type":492,"label":493,"file":160,"line":421,"wp_function":494},"n1","sink","echo() [XSS]","echo",{"id":496,"type":487,"label":488,"file":160,"line":489},"n2",{"id":498,"type":492,"label":499,"file":160,"line":500,"wp_function":501},"n3","call_user_func() [RCE]",1203,"call_user_func",[503,505],{"from":486,"to":491,"sanitized":504},true,{"from":496,"to":498,"sanitized":504},"low",{"summary":508,"deductions":509},"The \"wp-tweaks\" v2.4.1 plugin exhibits a generally positive security posture based on the provided static analysis. The absence of any known CVEs, coupled with the plugin's negligible attack surface, suggests a mature and well-maintained codebase. The static analysis also indicates a lack of dangerous functions, file operations, and external HTTP requests, further contributing to its secure profile. The presence of capability checks, even if limited, is a good practice. However, there are notable areas for concern. The 100% of SQL queries not using prepared statements is a significant risk, as it exposes the plugin to SQL injection vulnerabilities, especially if user-supplied data is ever incorporated into these queries, even with the current lack of exposed entry points. Furthermore, a low percentage of properly escaped output (12%) indicates a high likelihood of cross-site scripting (XSS) vulnerabilities, particularly if the plugin's functionality evolves to include user-facing output that isn't meticulously sanitized. The absence of nonce checks on potential AJAX handlers (though none exist currently) is also a weakness that could be exploited if new AJAX endpoints are added without proper security considerations. In conclusion, while the plugin benefits from a minimal attack surface and a clean vulnerability history, the identified SQL and output escaping issues represent critical security weaknesses that require immediate attention to prevent potential exploitation, especially if the plugin's functionality is ever expanded.",[510,512,515],{"reason":511,"points":106},"SQL queries not using prepared statements",{"reason":513,"points":514},"Low percentage of properly escaped output",7,{"reason":516,"points":169},"No nonce checks on entry points","2026-03-16T20:08:57.677Z",{"wat":519,"direct":528},{"assetPaths":520,"generatorPatterns":523,"scriptPaths":524,"versionParams":525},[521,522],"\u002Fwp-content\u002Fplugins\u002Fwp-tweaks\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fwp-tweaks\u002Fassets\u002Fjs\u002Fadmin.js",[],[],[526,527],"wp-tweaks\u002Fassets\u002Fcss\u002Fadmin.css?ver=","wp-tweaks\u002Fassets\u002Fjs\u002Fadmin.js?ver=",{"cssClasses":529,"htmlComments":531,"htmlAttributes":532,"restEndpoints":534,"jsGlobals":535,"shortcodeOutput":537},[530],"wp-tweaks-settings-page",[],[533],"data-wp-tweaks-settings-page",[],[536],"wp_tweaks_ajax_object",[]]