Recognyze.AI

Changelog

1.3.47

• Security: WordPress.org compliance — callback return values must be escaped. the_title filter callback wprc_add_icon_to_title now escapes date_i18n() output with esc_html(), sanitizes tooltip fragment with wp_kses_post(), and returns icon/tooltip HTML through wp_kses_post() for safe output.
• Security: Data must be sanitized before use. Debug log calls no longer pass raw $_POST, $_GET, or $_REQUEST. Added wprc_sanitize_for_debug_log() in utilities; admin.php now logs sanitized copies (and sanitized array_keys for $_REQUEST).
• Security: Variables must be escaped when echoed. Access logs table pagination now escapes $output at echo time with wp_kses_post() (escape late) in class-wprc-access-logs-table.php.

1.3.46

• Enhancement: Moved wprc_ensure_admin_footer() to use current_screen hook instead of admin_init for proper screen object availability.

1.3.45

• Compliance: Added admin opt-in control for «Powered by Recognyze» attribution on protection page.
• Enhancement: Attribution is now hidden by default and only displays when admin explicitly opts in via settings checkbox.
• Enhancement: Added «Show attribution» setting in Functionality section of settings page.
• Fix: Fixed PHP 8.1+ deprecation warning in wprc_sanitize_api_key() function (null parameter handling).
• Compliance: Now fully compliant with WordPress.org Guideline 12 (attribution requires explicit opt-in).

1.3.44

• Security: Fixed callback escaping issues for WordPress.org compliance.
• Security: Added esc_html() to wprc_add_icon_to_title filter callback to escape title parameter.
• Security: Added sanitize_text_field() and sanitize_html_class() to wprc_http_post_shortcode.
• Security: Added sanitization to wprc_render_http_post_block attribute extraction.

1.3.43

• Compliance: Fixed CSS enqueue issue in protection page for WordPress.org compliance.
• Enhancement: Converted external CSS link to use wp_enqueue_style() in wprc_render_protection_page().
• Enhancement: Added wprc_enqueue_protection_page_styles() function for proper asset loading.
• Enhancement: Added wp_head() and wp_footer() hooks to protection page template.

1.3.42

• Security: Comprehensive output escaping improvements for WordPress.org compliance.
• Security: Applied esc_html() to pagination display sprintf() results.
• Security: Replaced () with esc_attr() for all HTML title attributes
• Security: Replaced () with esc_html() for all text content in HTML tags.

1.3.41

• Compliance: Improved admin notice behavior to comply with WordPress.org Guideline 11.
• Enhancement: Limited admin notices to plugin pages and dashboard only (no more notice spam on unrelated pages).
• Enhancement: Made OpenSSL extension notice dismissible with persistent user preference.
• Enhancement: Added wprc_should_show_admin_notice() helper function for consistent notice scope checking.
• UX: Improved admin experience by reducing intrusive notices while maintaining critical error visibility.

1.3.40

• Fix: Resolved ‘Offloaded Content’ issue by bundling remote assets (logo image).
• Refactor: Renamed text domain from wp-recognyze-client to recognyze-client.
• Fix: Added missing text domain to internationalization functions in post-meta.php for WordPress.org compliance.

1.3.39.0

• Refactor: Renamed admin menu slug wp-manage-objects to wp-recognyze-client.
• Refactor: Renamed settings page slug wp-manage-objects-settings to recognyze-client-settings.

1.3.38.0

• Code: Applied WordPress code conventions and style updates across the plugin.
• Code: Removed unneeded code and aligned with WordPress coding standards.
• Code: WordPress plug and code conventions update.

1.3.37.0

• Auth UX: Automatically disconnect and prompt to reconnect when the API key fails (401/403) during sync or connection tests.
• Auth UX: Added a clear \»Recognyze: Connection lost\» admin notice with a direct \»Reconnect Recognyze\» button.
• Auth UX: Improved \»Test Connection\» to update connection status when the key is invalid, not just show a warning.
• Compatibility: When activating this plugin, automatically deactivate any other active \»Recognyze.AI\» plugin instance (old folder) to avoid conflicts.

1.3.36.0

• Migration: Run migration automatically on plugin update (version check on admin load), not only on activation
• Migration: Show migration status after update (admin notice with link to Migration Diagnostic)

1.3.35.0

• Migration: Added admin-only migration diagnostic page for monitoring migration status
• Migration: Added on-demand migration functionality accessible from diagnostic page
• Migration: Fixed migration function to correctly handle already-migrated post meta (prevents false error reports)
• Migration: Improved migration error handling and verification logic
• Admin: Added migration actions section with force re-run option for administrators

1.3.34.0

• Code Maintenance: Removed 4 unused/dead functions to improve code quality
• Code Maintenance: Removed wprc_show_recognyze_url_info (never called)
• Code Maintenance: Removed wprc_register_unsigned_access_logs_menu (backward compatibility stub)
• Code Maintenance: Removed wprc_bot_wall_testing_notice (moved to settings, not cleaned up)
• Code Maintenance: Removed wprc_test_next_export_functions (debug function not in use)

1.3.33.0

• Security: Fixed all unescaped output issues to meet WordPress.org security standards
• Security: Added proper escaping to pagination display (absint for integers)
• Security: Added proper escaping to URLs in sortable column headers (esc_url)
• Security: Added proper escaping to dashboard metrics (esc_html, absint, esc_attr)
• Security: Added proper escaping to access log file information display

1.3.31.0

• Initial public release
• Content signature management
• AI bot detection and tracking
• Access logging with event-based export and cleanup
• Encrypted credential storage
• Bulk signing operations
• Export functionality for logs
• Comprehensive settings panel
• WordPress Coding Standards compliance