I look after quite a few websites and have used the plugin on 20+ currently – (all updated) thanks for all you hard work on this.

More generally the security risks from plugins or other systems (cpanel) & Apache make it complicated to keep ahead of the security risks.

I would think – best to take out that inherited code – it has to be safer for everyone then.