Sant Chat AI

1.0.14 – 2026-04-06

• Feature: AI-driven lead capture now available on all plans (previously listed as Pro+)
• Documentation: Updated feature descriptions to match actual availability

1.0.13 – 2026-04-06

• Compliance: Switched from phpcs:ignore to phpcs:disable/enable blocks for database queries
• Compliance: All InterpolatedNotPrepared warnings now properly suppressed with block-level directives
• Code quality: Cleaner code without inline phpcs:ignore comments on every SQL line

1.0.12 – 2026-04-06

• Compliance: Restructured all $wpdb->prepare() calls with phpcs:ignore on $wpdb->prepare() line
• Compliance: InterpolatedNotPrepared ignores now correctly positioned for all SQL queries
• Compliance: Fixed SlowDBQuery ignore placement for tax_query in WP_Query
• Code quality: All database queries follow consistent pattern with proper ignore placement

1.0.11 – 2026-04-06

• Compliance: Fixed phpcs:ignore placement for DirectDatabaseQuery warnings
• Compliance: Added SlowDBQuery ignore for legitimate tax_query usage
• Code quality: Consolidated phpcs:ignore comments to be immediately before target lines

1.0.10 – 2026-04-06

• Compliance: Added InterpolatedNotPrepared ignores for custom table name variables
• Compliance: Added PluginCheck.Security.DirectDB.UnescapedDBParameter ignores where appropriate
• Compliance: Added SchemaChange ignores for DDL migration and uninstall operations
• Compliance: Prefixed all template variables in chat-widget.php with $sant_ prefix
• Compliance: Full phpcs:ignore coverage for all remaining Plugin Check warnings
• Code quality: Fixed all PHP warnings in template file

1.0.9 – 2026-04-06

• Compliance: Added phpcs:ignore comments for DirectDatabaseQuery on all custom plugin tables
• Compliance: Added phpcs:ignore comments for NonceVerification.Recommended on URL routing parameters
• Compliance: Added phpcs:ignore comments for error_log usage (wrapped in WP_DEBUG)
• Compliance: Prefixed variables in uninstall.php with $sant_ prefix
• Code quality: Improved code documentation for PHPCS compliance

1.0.8 – 2026-04-06

• Compliance: Sanitized all $_GET and $_POST comparisons using sanitize_text_field() and wp_unslash()
• Compliance: Added phpcs:ignore comment for hardcoded SVG output in wizard

1.0.7 – 2026-04-06

• Compliance: Removed all inline styles – now using wp_enqueue_style() exclusively
• Compliance: Fixed unsanitized $_POST values in several locations
• Compliance: Removed leading underscore from function name
• Compliance: Added phpcs:ignore comments with explanations for legitimate suppressions
• Code quality: Improved setup wizard step rendering

1.0.6 – 2026-04-01

• Security: Added session ownership validation for message rating endpoint
• Security: Added validate_callback for rating values (1 or -1 only)
• Security: Added validate_callback for voice audio base64 format
• Security: Field-aware sanitization in settings (URL/email/textarea fields)
• Security: Fixed JSON sanitization pattern (decode first, then sanitize)
• Updated: Chart.js library to v4.5.1 (latest stable)
• Compliance: Unlocked all sync frequencies for all users
• Compliance: Unlocked all lead capture modes for all users
• Compliance: Email notification default changed to opt-in (off by default)

1.0.0 – 2026-03-10

• Initial release.