Recently I was approached and told that I may be misleading users by a message that was being displayed in the free version of WP OAuth Server (https://wordpress.org/plugins/oauth2-provider/). I was told that the message was being used to funnel users to purchase WP OAuth Server. I can assure your that this was not the case.
The basic premise behind this message was based on the simple fact that using software that is behind the current version is a security risk. Ok, let me explain a bit more. Running and older version of WordPress is considered a security risk. Even if there is no known exploits, it is! Anyone that tells you different is wrong.
When a person starts using a method to allowing access to their data via an API, it is important that the software that they are using is up-to-date. For me, security is the most overlooked part of running a website. The message that was being displayed in the free version of WP OAuth Server was a reminder that, if you want better security than WP OAuth Server provides it.
I agree that the message could be taken as a “push” to purchase WP OAuth Server but it was never intended to be a scam or unethical practice. After all, WP OAuth Server is a project that aims for the most secure method to use WP REST API but it is still a business that provide unprecedented features and services.
I apologize if anyone felt like this was an unethical practice and since, I have remove the message. Make no mistake, that running the free version of WP OAuth Server is not insecure but if you are wanting to take the extra step in being more secure, WP OAuth Server is here to help.