Feature Request: Configurable SPAM threshold for ReCAPTCHA

I second this. I had a quick look at how the feature is implemented (https://github.com/wp-plugins/contact-form-7/blob/master/modules/recaptcha.php#L95) and unless I am looking at the wrong place, I don’t think the script is even checking the score.

That line seems to check the site verify response for the ‘success’ property. However, acccording to the docs (and my own experience with implementing v3), the ‘success’ property indicates whether the token was valid, not the result of the verification (which would be the ‘score’ property).

Seeing the changelog though, this should be possible now:

5.1.2
Constant Contact: Introduces the contact list selector.
Constant Contact: Introduces the constant_contact additional setting.
reCAPTCHA: Introduces the wpcf7_recaptcha_actions and wpcf7_recaptcha_threshold filter hooks.

Ok, I now checked the files of the latest version after updating the plugin – the code is not in the GitHub repository, but there is now a new function which sets the score:

public function get_threshold() {
   return apply_filters( 'wpcf7_recaptcha_threshold', 0.50 );
}

I suppose you can edit the threshold here manually, but it will get overwritten during the next upgrade. You can find it in wp-content/plugins/contact-form-7/modules/recaptcha.php.

• This reply was modified 5 years, 6 months ago by Joná? Jan?a?ík.

Thanks Jonas, I too spotted that bit of code but didn’t want to have to manually update each time there was an update.

At the moment, I have disabled recaptcha as it’s too unreliable. I’ve used a quiz instead which seems quite effective for blocking the spam bots.