All posts by Takayuki Miyoshi

Opinions on plugins, install other plugins

I’m writing this as feedback to the WordPress Plugin Review Team’s blog post on September 10. In it, they point out there are plugins in the plugin directory that install other plugins to the user site. In this feedback, I’ll take a plugin called “Redirection for Contact Form 7” (I refer to it as “wpcf7-redirect”) for example, look closely at where problems lie, and express my opinions.

Continue reading Opinions on plugins, install other plugins

Say no to malicious add-ons

Twelve years ago, I posted to my personal blog an article titled Free Plugin Declaration: Contact Form 7 is Free. In that post, I praised the WordPress community and its open-source spirit, and swore that I would keep the Contact Form 7 plugin available free forever. Since then, my faith in the belief that WordPress plugins should be available for free has not wavered at all.

Continue reading Say no to malicious add-ons

Avast false alarm again

Today I saw a lot of Contact Form 7 users reporting that the security software they use had detected a Trojan Horse in a script file in the Contact Form 7 package. I scanned the reported file on the WordPress.org plugin directory and found no problem, so I concluded that this is a false alarm.

The security software is provided by Avast Software. According to the reports from users, several other security applications from Avast’s group of companies showed the same alert. Avast is known to have caused a similar false alarm case that happened in 2021.