[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fE2omRohXtKBKje15-KsmbzMYjJJLySzP0BftcfvztsE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":21,"download_link":22,"security_score":23,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":37,"fingerprints":62},"wp-unicode","WP Unicode","1.0","Abiral Neupane","https:\u002F\u002Fprofiles.wordpress.org\u002Fabiralneupane\u002F","\u003Cp>Converts the typed input into Indic Unicode.\u003C\u002Fp>\n\u003Cp>Just activate the plugin, and you will see the effect in your comment box in front end\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>It do not have any admin end interface. You just need to go ahead and look over the comment box.\u003Cbr \u002F>\nStart typing and see the changes.\u003C\u002Fp>\n\u003Cp>Note that the changes can only be seen after you give a space and it requires internet connection.\u003C\u002Fp>\n","Converts the typed input into Indic Unicode.",10,3202,100,1,"2015-12-23T14:44:00.000Z","4.4.34","2.8","",[20],"wp-nepali-unicode","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-unicode","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-unicode.1.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"abiralneupane",5,1040,88,30,86,"2026-04-04T14:37:25.442Z",[],{"attackSurface":38,"codeSignals":50,"taintFlows":57,"riskAssessment":58,"analyzedAt":61},{"hooks":39,"ajaxHandlers":46,"restRoutes":47,"shortcodes":48,"cronEvents":49,"entryPointCount":24,"unprotectedCount":24},[40],{"type":41,"name":42,"callback":43,"file":44,"line":45},"action","wp_enqueue_scripts","wpnu_add_script","wp-unicode.php",11,[],[],[],[],{"dangerousFunctions":51,"sqlUsage":52,"outputEscaping":54,"fileOperations":24,"externalRequests":24,"nonceChecks":24,"capabilityChecks":24,"bundledLibraries":56},[],{"prepared":24,"raw":24,"locations":53},[],{"escaped":24,"rawEcho":24,"locations":55},[],[],[],{"summary":59,"deductions":60},"The static analysis of the 'wp-unicode' v1.0 plugin indicates a strong security posture, with no identified dangerous functions, SQL queries, file operations, or external HTTP requests. All SQL queries are properly prepared, and all output is correctly escaped, which are excellent security practices. The absence of identified taint flows also suggests that the plugin does not appear to be susceptible to common injection vulnerabilities. Furthermore, the vulnerability history is clean, with no known CVEs ever recorded for this plugin, further reinforcing its apparent security. The plugin's attack surface is also zero across all identified entry points (AJAX, REST API, shortcodes, cron events), meaning there are no direct ways for external input to reach the plugin's logic without proper WordPress security mechanisms in place. This comprehensive lack of identified weaknesses in both static analysis and historical data points to a very secure plugin. However, the absence of any capability checks or nonce checks on potential entry points (even though there are zero entry points) could be a minor area for future consideration if the plugin were to evolve and introduce such features. Despite this, the current state of the plugin is highly secure.",[],"2026-03-17T00:27:45.893Z",{"wat":63,"direct":70},{"assetPaths":64,"generatorPatterns":66,"scriptPaths":67,"versionParams":69},[65],"\u002Fwp-content\u002Fplugins\u002Fwp-unicode\u002Fjs\u002Funicode-init.js",[],[68],"https:\u002F\u002Fwww.google.com\u002Fjsapi",[],{"cssClasses":71,"htmlComments":72,"htmlAttributes":73,"restEndpoints":74,"jsGlobals":75,"shortcodeOutput":76},[],[],[],[],[],[]]