Not too hard to parse. If you are looking for the change log notes for version X, you can scrape the wp.org plugin source and search for that version number and it will appear in the changelog section inside an H4 tag. Can continue to include release notes until you hit the current installed version (in another H4 tag) to show all release notes relevant if you're multiple versions behind.
Security concerns: Attacker could inject into the release notes to be included in alert email, but you're probably more screwed if the attacker can do this. Email is already unauthenticated plaintext and can be modified in transit.
Not too hard to parse. If you are looking for the change log notes for version X, you can scrape the wp.org plugin source and search for that version number and it will appear in the changelog section inside an H4 tag. Can continue to include release notes until you hit the current installed version (in another H4 tag) to show all release notes relevant if you're multiple versions behind.
Security concerns: Attacker could inject into the release notes to be included in alert email, but you're probably more screwed if the attacker can do this. Email is already unauthenticated plaintext and can be modified in transit.