Title: Plugin Closed?
Last modified: July 15, 2024

---

# Plugin Closed?

 *  Resolved [ashes00](https://wordpress.org/support/users/ashes00/)
 * (@ashes00)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/)
 * Dear Mailgun,
 * As a long time user can; you please provide some details on why the plugin was
   closed? I like many others around the world heavily rely on this plugin for email.
   Closing with minimum information sends the signal there was a data breach. Please
   address your users, so they know whats going on. Thank you for understanding 
   the severity of you actions.
 * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fplugin-closed-39%2F%3Foutput_format%3Dmd&locale=en_US)
   to see the link]_

Viewing 13 replies - 1 through 13 (of 13 total)

 *  Thread Starter [ashes00](https://wordpress.org/support/users/ashes00/)
 * (@ashes00)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17883444)
 * I’m giving them 48 hours from initial discovery to respond here or on X with 
   something meaningful. If not, then we must assume the worst from an OpSec perspective.
   We will have to disable, and move the SMTP plugin functionality to Fluent-SMTP.
   Next will be moving to a new Transactional Email Provider such as Amazon SES,
   SendGrid, Postmark, etc. All of this could be avoided if MailGun would just communicate
   in a meaningful way to its users. Talk about shooting yourself in the foot.
 * 
   [https://wordpress.org/plugins/fluent-smtp/](https://wordpress.org/plugins/fluent-smtp/)
 * [@mailgun](https://wordpress.org/support/users/mailgun/), [@sivel](https://wordpress.org/support/users/sivel/),
   [@lookaheadio](https://wordpress.org/support/users/lookaheadio/), [@alanfuller](https://wordpress.org/support/users/alanfuller/),
   [@m35dev](https://wordpress.org/support/users/m35dev/) any idea whats going on?
 *  [Razorfrog Web Design](https://wordpress.org/support/users/razorfrog/)
 * (@razorfrog)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17883451)
 * Following. I’m getting tons of alerts from Wordfence.
 *  Plugin Contributor [Alan Fuller](https://wordpress.org/support/users/alanfuller/)
 * (@alanfuller)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17883472)
 * I am not a commiter, not related to Mailgun so I can’t help, you I just contributed
   a small fix once as it is open source software and they rightly acknowledged 
   my contribution.
 * Personally I not longer use this plugin for different reasons and use one of 
   the alternatives.
 * When a plugin is closed there can be many reasons, but at this time of year just
   before 6.6 release any plugin emails that bounce get their plugins closed. Whilst
   impossible to rule out other reasons such as security, the balance of probabilities
   is it is the commiter email bouncing. Ironic really.
 *  [gonebeta](https://wordpress.org/support/users/gonebeta/)
 * (@gonebeta)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17883856)
 * A lot of this seem to be going on lately (same thing happened to BunnyCDN). I
   think those other plugins were temporarily suspended in other to be complaint
   with an upcoming update.
 *  Plugin Contributor [Alan Fuller](https://wordpress.org/support/users/alanfuller/)
 * (@alanfuller)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17883878)
 * To be clear, when there is a new release plugin authors are emailed. If their
   email bounces their plugin is temporarily closed.
 * so yes this happens a lot about 2 weeks before a point release.
 *  [ssmithalignsoftcom](https://wordpress.org/support/users/ssmithalignsoftcom/)
 * (@ssmithalignsoftcom)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17884092)
 * Also a concern, and a tremendous amount of noise drowning out the signal as Wordfence
   emails about every single site this is installed on notifying of the issue, which
   creates the risk a more serious issue is going to get missed in all the static.
 * A quick note of acknowledgement would go a long way here.
 *  Plugin Contributor [Alan Fuller](https://wordpress.org/support/users/alanfuller/)
 * (@alanfuller)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17884151)
 * here is the issue, you can’t and shouldn’t acknowledge publicly.
 * Why, because if you acknowledge it is not a security issue this time, but next
   time it is a security issue and so you can’t acknowledge without giving hackers
   a heads up but deduction then not acknowledgement implies a security issue giving
   hackers heads up.
 * WordFence creating noise is a Wordfence issue.
 * If they are reporting things just because they are closed without a security 
   CVE then they are reporting something that means nothing.
 *  Thread Starter [ashes00](https://wordpress.org/support/users/ashes00/)
 * (@ashes00)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17884175)
 * Wordfence reports on closed Plugins as a means to alert of possibly abandoned
   plugins that can be hijacked by a 3rd party, and used for malicious purposes.
   This is an extremely useful security feature. Wordfence also reports when a plugin
   has a known CVE which is another extremely useful function. It would still be
   nice for the authors to provide some sort of calming communication. I’m hoping
   it was closed for a missed bounced email, and not something worse.
 *  Plugin Contributor [Alan Fuller](https://wordpress.org/support/users/alanfuller/)
 * (@alanfuller)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17884245)
 * Not sure closed plugins can be hijacked as the slug is never released.
 * Reporting on closed plugins 2 weeks before 6.6 is just noise. In other times 
   it is a low priority information that a plugin will no longer be actively supported.
 * As mentioned, authors can not comment on closure reasons. The plugin repo does
   not report the reason for security reasons as explained and authors are expected
   to do the same.
 * The only calming measure is for the plugin authors to work with the plugins team
   to get the plugin re opened as soon as they can.
 * I know that does not help much, but the free plugin directory is managed in that
   way to be on the best interests of the community that uses the plugin contributions.
 *  Thread Starter [ashes00](https://wordpress.org/support/users/ashes00/)
 * (@ashes00)
 * [1 year, 11 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17884297)
 * Good to know the as the slug is never released. Hopefully that stays the policy!
 *  [Razorfrog Web Design](https://wordpress.org/support/users/razorfrog/)
 * (@razorfrog)
 * [1 year, 10 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17890800)
 * Any updates? I see that 2.0 was released, but the changelog doesn’t have a listing
   for the latest version: [https://plugins.trac.wordpress.org/browser/mailgun/tags/2.0.0/CHANGELOG.md](https://plugins.trac.wordpress.org/browser/mailgun/tags/2.0.0/CHANGELOG.md)
 *  [Jon Fuller](https://wordpress.org/support/users/garconis/)
 * (@garconis)
 * [1 year, 10 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17890879)
 * [@razorfrog](https://wordpress.org/support/users/razorfrog/) , that’s classic
   Mailgun for ya. They don’t update the changelog. See: [https://wordpress.org/support/topic/1-9-9-is-out-but-changelog-only-shows-up-to-1-9-8/](https://wordpress.org/support/topic/1-9-9-is-out-but-changelog-only-shows-up-to-1-9-8/)
 *  Moderator [Support Moderator](https://wordpress.org/support/users/moderator/)
 * (@moderator)
 * [1 year, 10 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17890973)
 * Moderator note: It’s best not to speculate on what might be the issue here and
   allow the author(s) and the plugins team to resolve the security issue. I’m closing
   this topic.

Viewing 13 replies - 1 through 13 (of 13 total)

The topic ‘Plugin Closed?’ is closed to new replies.

 * ![](https://ps.w.org/mailgun/assets/icon-256x256.png?rev=2434524)
 * [Mailgun for WordPress](https://wordpress.org/plugins/mailgun/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/mailgun/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/mailgun/)
 * [Active Topics](https://wordpress.org/support/plugin/mailgun/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/mailgun/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/mailgun/reviews/)

 * 13 replies
 * 8 participants
 * Last reply from: [Support Moderator](https://wordpress.org/support/users/moderator/)
 * Last activity: [1 year, 10 months ago](https://wordpress.org/support/topic/plugin-closed-39/#post-17890973)
 * Status: resolved