Some plugins are less reliable than others, often times wordpress users fail to check out a plugin for complaints or lack of support. In my view, this is a real hole in the wordpress system. It would be REALLY great if wordpress could come up with an warning of breech. For example, I found a phpmyadmin script running today on one of my websites and it's searching for places where people store phpmyadmin, one of the checks it made was for a plugin called 'portable-phpmyadmin' which seems to have been compromised. Having a reliable wordpress place where compromised plugins are documented would be helpful.