From 6ac41da7a9816f1324af9f2286f68054c67dc37d Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Mon, 19 Dec 2022 22:55:45 +0100
Subject: [PATCH 01/13] WP/AlternativeFunctions: order lists alphabetically

Orders function name lists alphabetically. The group ordering, while not in alphabetic order, is left as-is for now.

This commit does not add or delete any functions from the lists.
---
 .../Sniffs/WP/AlternativeFunctionsSniff.php   | 26 +++++++++----------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index dbca31c0a4..ad8b422eec 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -152,20 +152,20 @@ public function getGroups() {
 					'chgrp',
 					'chmod',
 					'chown',
-					'is_writable',
-					'is_writeable',
-					'mkdir',
-					'rmdir',
-					'touch',
-					'readfile',
 					'fclose',
+					'file_put_contents',
 					'fopen',
+					'fputs',
 					'fread',
-					'fwrite',
-					'file_put_contents',
 					'fsockopen',
+					'fwrite',
+					'is_writable',
+					'is_writeable',
+					'mkdir',
 					'pfsockopen',
-					'fputs',
+					'readfile',
+					'rmdir',
+					'touch',
 				),
 			),
 
@@ -183,8 +183,8 @@ public function getGroups() {
 				'message'   => '%s() is discouraged. Rand seeding is not necessary when using the wp_rand() function (as you should).',
 				'since'     => '2.6.2',
 				'functions' => array(
-					'srand',
 					'mt_srand',
+					'srand',
 				),
 			),
 
@@ -193,8 +193,8 @@ public function getGroups() {
 				'message'   => '%s() is discouraged. Use the far less predictable wp_rand() instead.',
 				'since'     => '2.6.2',
 				'functions' => array(
-					'rand',
 					'mt_rand',
+					'rand',
 				),
 			),
 		);
@@ -287,9 +287,9 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 
 				break;
 
-			case 'readfile':
-			case 'fopen':
 			case 'file_put_contents':
+			case 'fopen':
+			case 'readfile':
 				/*
 				 * Allow for handling raw data streams from the request body.
 				 */

From 56a8cc9c61ef3599eff88d92961acb8ae21c6518 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Wed, 14 Dec 2022 17:33:30 +0100
Subject: [PATCH 02/13] WP/AlternativeFunctions: add missing `@since` tags

... for properties which were added to the sniff after the initial conception.
---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index ad8b422eec..4fa5fa0d59 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -35,6 +35,8 @@ class AlternativeFunctionsSniff extends AbstractFunctionRestrictionsSniff {
 	 *
 	 * @link https://www.php.net/wrappers.php
 	 *
+	 * @since 2.1.0
+	 *
 	 * @var array
 	 */
 	protected $allowed_local_streams = array(
@@ -51,6 +53,8 @@ class AlternativeFunctionsSniff extends AbstractFunctionRestrictionsSniff {
 	 *
 	 * @link https://www.php.net/wrappers.php
 	 *
+	 * @since 2.1.0
+	 *
 	 * @var array
 	 */
 	protected $allowed_local_stream_partials = array(
@@ -63,6 +67,8 @@ class AlternativeFunctionsSniff extends AbstractFunctionRestrictionsSniff {
 	 *
 	 * @link https://www.php.net/wrappers.php
 	 *
+	 * @since 2.1.0
+	 *
 	 * @var array
 	 */
 	protected $allowed_local_stream_constants = array(

From 70154e55e2473a6f3b4eb95e76232939deb5e116 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Wed, 14 Dec 2022 17:37:32 +0100
Subject: [PATCH 03/13] WP/AlternativeFunctions: change property visibility

... from `protected` to `private` for properties which are only intended to be used by the sniff itself anyway.
---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index 4fa5fa0d59..82bf8950a1 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -36,10 +36,11 @@ class AlternativeFunctionsSniff extends AbstractFunctionRestrictionsSniff {
 	 * @link https://www.php.net/wrappers.php
 	 *
 	 * @since 2.1.0
+	 * @since 3.0.0 The visibility was changed from `protected` to `private`.
 	 *
 	 * @var array
 	 */
-	protected $allowed_local_streams = array(
+	private $allowed_local_streams = array(
 		'php://input'  => true,
 		'php://output' => true,
 		'php://stdin'  => true,
@@ -54,10 +55,11 @@ class AlternativeFunctionsSniff extends AbstractFunctionRestrictionsSniff {
 	 * @link https://www.php.net/wrappers.php
 	 *
 	 * @since 2.1.0
+	 * @since 3.0.0 The visibility was changed from `protected` to `private`.
 	 *
 	 * @var array
 	 */
-	protected $allowed_local_stream_partials = array(
+	private $allowed_local_stream_partials = array(
 		'php://temp/',
 		'php://fd/',
 	);
@@ -68,10 +70,11 @@ class AlternativeFunctionsSniff extends AbstractFunctionRestrictionsSniff {
 	 * @link https://www.php.net/wrappers.php
 	 *
 	 * @since 2.1.0
+	 * @since 3.0.0 The visibility was changed from `protected` to `private`.
 	 *
 	 * @var array
 	 */
-	protected $allowed_local_stream_constants = array(
+	private $allowed_local_stream_constants = array(
 		'STDIN'  => true,
 		'STDOUT' => true,
 		'STDERR' => true,

From b503057cf88fa90c0f1b070454762a9c8f5db7a3 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 07:26:45 +0100
Subject: [PATCH 04/13] WP/AlternativeFunctions: remove stray blank lines at
 top of test file

---
 .../Tests/WP/AlternativeFunctionsUnitTest.inc |  2 --
 .../Tests/WP/AlternativeFunctionsUnitTest.php | 25 +++++++++----------
 2 files changed, 12 insertions(+), 15 deletions(-)

diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index ea9baea449..a2e8c0489b 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -1,7 +1,5 @@
 <?php
 
-
-
 curl_init(); // Warning.
 curl_close( $ch ); // Warning.
 CURL_getinfo(); // Warning.
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index 44db0131b2..f005a40b27 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -37,12 +37,14 @@ public function getErrorList() {
 	 */
 	public function getWarningList() {
 		return array(
+			3  => 1,
+			4  => 1,
 			5  => 1,
-			6  => 1,
-			7  => 1,
+			8  => 1,
 			10 => 1,
 			12 => 1,
 			14 => 1,
+			15 => 1,
 			16 => 1,
 			17 => 1,
 			18 => 1,
@@ -54,17 +56,17 @@ public function getWarningList() {
 			24 => 1,
 			25 => 1,
 			26 => 1,
-			27 => 1,
-			28 => 1,
-			40 => 1,
+			38 => 1,
+			42 => 1,
 			44 => 1,
-			46 => 1,
+			45 => 1,
 			47 => 1,
-			49 => 1,
-			67 => 1,
-			68 => 1,
-			73 => 1,
+			65 => 1,
+			66 => 1,
+			71 => 1,
+			78 => 1,
 			80 => 1,
+			81 => 1,
 			82 => 1,
 			83 => 1,
 			84 => 1,
@@ -74,9 +76,6 @@ public function getWarningList() {
 			88 => 1,
 			89 => 1,
 			90 => 1,
-			91 => 1,
-			92 => 1,
 		);
 	}
-
 }

From 744e83bb363b0d46fe19b835100674d2afd424f7 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 07:31:57 +0100
Subject: [PATCH 05/13] WP/AlternativeFunctions: move parse_url related tests
 down

---
 .../Tests/WP/AlternativeFunctionsUnitTest.inc | 20 ++++++------
 .../Tests/WP/AlternativeFunctionsUnitTest.php | 32 +++++++++----------
 2 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index a2e8c0489b..dcc220034b 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -26,18 +26,8 @@ srand(); // Warning.
 mt_srand(); // Warning.
 wp_rand(); // OK.
 
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.0
-parse_url( 'http://example.com/' ); // OK.
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.6
-
 strip_tags( $something, '<iframe>' ); // OK.
 
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.0
-parse_url($url, PHP_URL_QUERY); // OK.
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.7
-parse_url($url, PHP_URL_SCHEME); // Warning.
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.6
-
 file_get_contents( $local_file, true ); // OK.
 file_get_contents( $url, false ); // Warning.
 file_get_contents(); // OK - no params, so nothing to do.
@@ -88,3 +78,13 @@ mkdir(); // Warning.
 rmdir(); // Warning.
 touch(); // Warning.
 fputs(); // Warning.
+
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.0
+parse_url( 'http://example.com/' ); // OK.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.6
+
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.0
+parse_url($url, PHP_URL_QUERY); // OK.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.7
+parse_url($url, PHP_URL_SCHEME); // Warning.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.6
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index f005a40b27..f845022650 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -56,26 +56,26 @@ public function getWarningList() {
 			24 => 1,
 			25 => 1,
 			26 => 1,
-			38 => 1,
-			42 => 1,
-			44 => 1,
-			45 => 1,
-			47 => 1,
-			65 => 1,
-			66 => 1,
+			32 => 1,
+			34 => 1,
+			35 => 1,
+			37 => 1,
+			55 => 1,
+			56 => 1,
+			61 => 1,
+			68 => 1,
+			70 => 1,
 			71 => 1,
+			72 => 1,
+			73 => 1,
+			74 => 1,
+			75 => 1,
+			76 => 1,
+			77 => 1,
 			78 => 1,
+			79 => 1,
 			80 => 1,
-			81 => 1,
-			82 => 1,
-			83 => 1,
-			84 => 1,
-			85 => 1,
-			86 => 1,
-			87 => 1,
-			88 => 1,
 			89 => 1,
-			90 => 1,
 		);
 	}
 }

From 1dffa3a624be13ebf4736b5f9f71f0a05de3d3e2 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 07:41:24 +0100
Subject: [PATCH 06/13] WP/AlternativeFunctions: bug fix - special casing for
 parse_url was not applied

The `wp_parse_url()` alternative to `parse_url()` was introduced in WP 4.4.0, but didn't have support for the `$component` parameter until WP 4.7.0.

For that reason, special casing was put in place in PR 1369 (WPCS 1.0.0) to examine whether the `$component` parameter was passed to `parse_url()` or not and to only advise the switch to `wp_parse_url()`:
1. If the `$component` parameter was _not_ used and the `minimum_wp_version` was `4.4` or higher.
2. If the `$component` parameter **_was_** used and the `minimum_wp_version` was `4.7` or higher.

Unfortunately, the special casing was looking for the wrong function name match, so has never worked.

The additional tests now added demonstrate the bug.

This PR, combined with the previously pulled `version_compare()` related fix from 2149, fix the bug.

---

Includes a follow up to 2121

The "final" `// phpcs:set` annotations in the test case file should always reset to the default value for the property. The default value which was being used, however, was out of date.

Fixed now.
---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php  |  2 +-
 .../Tests/WP/AlternativeFunctionsUnitTest.inc      | 14 +++++++++-----
 .../Tests/WP/AlternativeFunctionsUnitTest.php      |  3 ++-
 3 files changed, 12 insertions(+), 7 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index 82bf8950a1..01e345b623 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -238,7 +238,7 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 
 				break;
 
-			case 'wp_parse_url':
+			case 'parse_url':
 				/*
 				 * Before WP 4.7.0, the function `wp_parse_url()` was only a valid alternative
 				 * if no second param was passed to `parse_url()`.
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index dcc220034b..61a01eff87 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -80,11 +80,15 @@ touch(); // Warning.
 fputs(); // Warning.
 
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.0
-parse_url( 'http://example.com/' ); // OK.
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.6
+parse_url( 'http://example.com/' ); // OK, alternative was not yet available.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.4
+parse_url( 'http://example.com/' ); // Warning, not using $component param, so can switch over.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 5.8
 
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.0
-parse_url($url, PHP_URL_QUERY); // OK.
+parse_url($url, PHP_URL_QUERY); // OK, alternative was not yet available.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.5
+parse_url($url, PHP_URL_QUERY); // OK, $component param not yet available.
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.7
-parse_url($url, PHP_URL_SCHEME); // Warning.
-// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.6
+parse_url($url, PHP_URL_SCHEME); // Warning, using $component param, but also using WP 4.7+, so can switch over.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 5.8
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index f845022650..4866937d09 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -75,7 +75,8 @@ public function getWarningList() {
 			78 => 1,
 			79 => 1,
 			80 => 1,
-			89 => 1,
+			85 => 1,
+			93 => 1,
 		);
 	}
 }

From 4f57da1bdbb76bc06a6f99cd0b93310802c09ded Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Wed, 14 Dec 2022 17:49:33 +0100
Subject: [PATCH 07/13] WP/AlternativeFunctions: add support for PHP 8.0+ named
 parameters [1] / strip_tags()

1. Adjusted the way it is determined whether the PHP native function can be replaced with the WP version of the same using the updated PHPCSUtils 1.0.0-alpha4 `PassedParameters` functionality.
2. Verified the parameter name used is in line with the name as per the PHP 8.0 release.
    PHP itself renamed a lot of parameters in PHP 8.0. As named parameters did not exist before PHP 8.0, the parameter name as per PHP 8.0 (or above) is the only relevant name.
    Ref: https://www.php.net/manual/en/function.strip-tags

Includes additional unit tests.
---
 .../Sniffs/WP/AlternativeFunctionsSniff.php   |  6 +-
 .../Tests/WP/AlternativeFunctionsUnitTest.inc |  8 ++
 .../Tests/WP/AlternativeFunctionsUnitTest.php | 81 ++++++++++---------
 3 files changed, 53 insertions(+), 42 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index 01e345b623..5815c2026e 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -230,12 +230,14 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 			case 'strip_tags':
 				/*
 				 * The function `wp_strip_all_tags()` is only a valid alternative when
-				 * only the first parameter is passed to `strip_tags()`.
+				 * only the first parameter, `$string`, is passed to `strip_tags()`.
 				 */
-				if ( PassedParameters::getParameterCount( $this->phpcsFile, $stackPtr ) !== 1 ) {
+				$has_allowed_tags = PassedParameters::getParameter( $this->phpcsFile, $stackPtr, 2, 'allowed_tags' );
+				if ( false !== $has_allowed_tags ) {
 					return;
 				}
 
+				unset( $has_allowed_tags );
 				break;
 
 			case 'parse_url':
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index 61a01eff87..1e31fb8e7b 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -92,3 +92,11 @@ parse_url($url, PHP_URL_QUERY); // OK, $component param not yet available.
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.7
 parse_url($url, PHP_URL_SCHEME); // Warning, using $component param, but also using WP 4.7+, so can switch over.
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 5.8
+
+/*
+ * Tests for support for PHP 8.0+ named parameters.
+ */
+// Safeguard support for PHP 8.0+ named parameters for the custom logic related to strip_tags().
+strip_tags( allowed_tags: '<iframe>' ); // OK. Well not really, missing required param, but that's not the concern of this sniff.
+strip_tags( allowed_tags: '<iframe>', string: $something ); // OK.
+strip_tags( string: $something ); // Warning.
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index 4866937d09..073495525b 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -37,46 +37,47 @@ public function getErrorList() {
 	 */
 	public function getWarningList() {
 		return array(
-			3  => 1,
-			4  => 1,
-			5  => 1,
-			8  => 1,
-			10 => 1,
-			12 => 1,
-			14 => 1,
-			15 => 1,
-			16 => 1,
-			17 => 1,
-			18 => 1,
-			19 => 1,
-			20 => 1,
-			21 => 1,
-			22 => 1,
-			23 => 1,
-			24 => 1,
-			25 => 1,
-			26 => 1,
-			32 => 1,
-			34 => 1,
-			35 => 1,
-			37 => 1,
-			55 => 1,
-			56 => 1,
-			61 => 1,
-			68 => 1,
-			70 => 1,
-			71 => 1,
-			72 => 1,
-			73 => 1,
-			74 => 1,
-			75 => 1,
-			76 => 1,
-			77 => 1,
-			78 => 1,
-			79 => 1,
-			80 => 1,
-			85 => 1,
-			93 => 1,
+			3   => 1,
+			4   => 1,
+			5   => 1,
+			8   => 1,
+			10  => 1,
+			12  => 1,
+			14  => 1,
+			15  => 1,
+			16  => 1,
+			17  => 1,
+			18  => 1,
+			19  => 1,
+			20  => 1,
+			21  => 1,
+			22  => 1,
+			23  => 1,
+			24  => 1,
+			25  => 1,
+			26  => 1,
+			32  => 1,
+			34  => 1,
+			35  => 1,
+			37  => 1,
+			55  => 1,
+			56  => 1,
+			61  => 1,
+			68  => 1,
+			70  => 1,
+			71  => 1,
+			72  => 1,
+			73  => 1,
+			74  => 1,
+			75  => 1,
+			76  => 1,
+			77  => 1,
+			78  => 1,
+			79  => 1,
+			80  => 1,
+			85  => 1,
+			93  => 1,
+			102 => 1,
 		);
 	}
 }

From 28e64e715733a0d6a91c93eb8baf9f80792212de Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Mon, 19 Dec 2022 23:10:48 +0100
Subject: [PATCH 08/13] WP/AlternativeFunctions: add support for PHP 8.0+ named
 parameters [2] / parse_url()

1. Adjusted the way it is determined whether the PHP native function can be replaced with the WP version of the same using the updated PHPCSUtils 1.0.0-alpha4 `PassedParameters` functionality.
2. Verified the parameter name used is in line with the name as per the PHP 8.0 release.
    PHP itself renamed a lot of parameters in PHP 8.0. As named parameters did not exist before PHP 8.0, the parameter name as per PHP 8.0 (or above) is the only relevant name.
    Ref: https://www.php.net/manual/en/function.parse-url

Includes additional unit tests.
---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php   | 6 ++++--
 WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc | 9 +++++++++
 WordPress/Tests/WP/AlternativeFunctionsUnitTest.php | 2 ++
 3 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index 5815c2026e..c05e1e3378 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -243,16 +243,18 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 			case 'parse_url':
 				/*
 				 * Before WP 4.7.0, the function `wp_parse_url()` was only a valid alternative
-				 * if no second param was passed to `parse_url()`.
+				 * if the second param - `$component` - was not passed to `parse_url()`.
 				 *
 				 * @see https://developer.wordpress.org/reference/functions/wp_parse_url/#changelog
 				 */
-				if ( PassedParameters::getParameterCount( $this->phpcsFile, $stackPtr ) !== 1
+				$has_component = PassedParameters::getParameter( $this->phpcsFile, $stackPtr, 2, 'component' );
+				if ( false !== $has_component
 					&& $this->wp_version_compare( $this->minimum_wp_version, '4.7.0', '<' )
 				) {
 					return;
 				}
 
+				unset( $has_component );
 				break;
 
 			case 'file_get_contents':
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index 1e31fb8e7b..2b49a1691b 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -100,3 +100,12 @@ parse_url($url, PHP_URL_SCHEME); // Warning, using $component param, but also us
 strip_tags( allowed_tags: '<iframe>' ); // OK. Well not really, missing required param, but that's not the concern of this sniff.
 strip_tags( allowed_tags: '<iframe>', string: $something ); // OK.
 strip_tags( string: $something ); // Warning.
+
+// Safeguard support for PHP 8.0+ named parameters for the custom logic related to parse_url().
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.4
+parse_url(component : PHP_URL_QUERY); // OK. Well, not really, missing required parameter, but that's not the concern of this sniff.
+parse_url(component : PHP_URL_QUERY, url : $url); // OK.
+parse_url(url : $url); // Warning.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.7
+parse_url(component: PHP_URL_SCHEME, url: $url, ); // Warning.
+// phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 5.8
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index 073495525b..6f61bec960 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -78,6 +78,8 @@ public function getWarningList() {
 			85  => 1,
 			93  => 1,
 			102 => 1,
+			108 => 1,
+			110 => 1,
 		);
 	}
 }

From f3b0c1bf0672f21bcedca5516d26ea9f81e0f214 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 08:13:05 +0100
Subject: [PATCH 09/13] WP/AlternativeFunctions: add support for PHP 8.0+ named
 parameters [3] / file_get_contents()

1. Adjusted the way it is determined whether the PHP native function can be replaced with the WP version of the same using the updated PHPCSUtils 1.0.0-alpha4 `PassedParameters` functionality.
2. Verified the parameter names used are in line with the names as per the PHP 8.0 release.
    PHP itself renamed a lot of parameters in PHP 8.0. As named parameters did not exist before PHP 8.0, the parameter name as per PHP 8.0 (or above) is the only relevant name.
    Ref: https://www.php.net/manual/en/function.file-get-contents

Includes additional unit tests.
---
 .../Sniffs/WP/AlternativeFunctionsSniff.php   | 19 ++++++++++---------
 .../Tests/WP/AlternativeFunctionsUnitTest.inc | 12 ++++++++++++
 .../Tests/WP/AlternativeFunctionsUnitTest.php |  4 ++++
 3 files changed, 26 insertions(+), 9 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index c05e1e3378..2a489aa166 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -264,40 +264,41 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 				 */
 				$params = PassedParameters::getParameters( $this->phpcsFile, $stackPtr );
 
-				if ( isset( $params[2] ) && 'true' === $params[2]['raw'] ) {
+				$use_include_path_param = PassedParameters::getParameterFromStack( $params, 2, 'use_include_path' );
+				if ( false !== $use_include_path_param && 'true' === $use_include_path_param['raw'] ) {
 					// Setting `$use_include_path` to `true` is only relevant for local files.
 					return;
 				}
 
-				if ( isset( $params[1] ) === false ) {
+				$filename_param = PassedParameters::getParameterFromStack( $params, 1, 'filename' );
+				if ( false === $filename_param ) {
 					// If the file to get is not set, this is a non-issue anyway.
 					return;
 				}
 
-				if ( strpos( $params[1]['raw'], 'http:' ) !== false
-					|| strpos( $params[1]['raw'], 'https:' ) !== false
+				if ( strpos( $filename_param['raw'], 'http:' ) !== false
+					|| strpos( $filename_param['raw'], 'https:' ) !== false
 				) {
 					// Definitely a URL, throw notice.
 					break;
 				}
 
-				if ( preg_match( '`\b(?:ABSPATH|WP_(?:CONTENT|PLUGIN)_DIR|WPMU_PLUGIN_DIR|TEMPLATEPATH|STYLESHEETPATH|(?:MU)?PLUGINDIR)\b`', $params[1]['raw'] ) === 1 ) {
+				if ( preg_match( '`\b(?:ABSPATH|WP_(?:CONTENT|PLUGIN)_DIR|WPMU_PLUGIN_DIR|TEMPLATEPATH|STYLESHEETPATH|(?:MU)?PLUGINDIR)\b`', $filename_param['raw'] ) === 1 ) {
 					// Using any of the constants matched in this regex is an indicator of a local file.
 					return;
 				}
 
-				if ( preg_match( '`(?:get_home_path|plugin_dir_path|get_(?:stylesheet|template)_directory|wp_upload_dir)\s*\(`i', $params[1]['raw'] ) === 1 ) {
+				if ( preg_match( '`(?:get_home_path|plugin_dir_path|get_(?:stylesheet|template)_directory|wp_upload_dir)\s*\(`i', $filename_param['raw'] ) === 1 ) {
 					// Using any of the functions matched in the regex is an indicator of a local file.
 					return;
 				}
 
-				if ( $this->is_local_data_stream( $params[1]['raw'] ) === true ) {
+				if ( $this->is_local_data_stream( $filename_param['raw'] ) === true ) {
 					// Local data stream.
 					return;
 				}
 
-				unset( $params );
-
+				unset( $params, $use_include_path_param, $filename_param );
 				break;
 
 			case 'file_put_contents':
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index 2b49a1691b..037be81838 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -109,3 +109,15 @@ parse_url(url : $url); // Warning.
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 4.7
 parse_url(component: PHP_URL_SCHEME, url: $url, ); // Warning.
 // phpcs:set WordPress.WP.AlternativeFunctions minimum_wp_version 5.8
+
+// Safeguard support for PHP 8.0+ named parameters for the custom logic related to file_get_contents().
+file_get_contents( use_include_path: true, filename: $local_file, ); // OK.
+file_get_contents( use_include_path: false, filename: $url, ); // Warning.
+
+file_get_contents( use_include_path: false ); // OK, well not really, missing required param, but that's not the concern of this sniff.
+
+file_get_contents( use_include_path: false, filename: 'http://remoteurl.com/file/?w=1' ); // Warning.
+file_get_contents( use_include_path: false, filename: 'https://wordpress.org' ); // Warning.
+file_get_contents( use_include_path: false, filename: ABSPATH . 'wp-admin/css/some-file.css'); // OK.
+file_get_contents( use_include_path: false, filename: 'php://input' ); // OK.
+file_get_contents(use_include_path: false, filename: MYABSPATH . 'plugin-file.json'); // Warning.
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index 6f61bec960..13be535583 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -80,6 +80,10 @@ public function getWarningList() {
 			102 => 1,
 			108 => 1,
 			110 => 1,
+			115 => 1,
+			119 => 1,
+			120 => 1,
+			123 => 1,
 		);
 	}
 }

From 9bed8042b97aad8da13761bc4e2a03a344b20fee Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 08:33:46 +0100
Subject: [PATCH 10/13] WP/AlternativeFunctions: minor code readability
 improvements

---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index 2a489aa166..e2342849fa 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -283,12 +283,20 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 					break;
 				}
 
-				if ( preg_match( '`\b(?:ABSPATH|WP_(?:CONTENT|PLUGIN)_DIR|WPMU_PLUGIN_DIR|TEMPLATEPATH|STYLESHEETPATH|(?:MU)?PLUGINDIR)\b`', $filename_param['raw'] ) === 1 ) {
+				$contains_wp_path_constant = preg_match(
+					'`\b(?:ABSPATH|WP_(?:CONTENT|PLUGIN)_DIR|WPMU_PLUGIN_DIR|TEMPLATEPATH|STYLESHEETPATH|(?:MU)?PLUGINDIR)\b`',
+					$filename_param['raw']
+				);
+				if ( 1 === $contains_wp_path_constant ) {
 					// Using any of the constants matched in this regex is an indicator of a local file.
 					return;
 				}
 
-				if ( preg_match( '`(?:get_home_path|plugin_dir_path|get_(?:stylesheet|template)_directory|wp_upload_dir)\s*\(`i', $filename_param['raw'] ) === 1 ) {
+				$contains_wp_path_function_call = preg_match(
+					'`(?:get_home_path|plugin_dir_path|get_(?:stylesheet|template)_directory|wp_upload_dir)\s*\(`i',
+					$filename_param['raw']
+				);
+				if ( 1 === $contains_wp_path_function_call ) {
 					// Using any of the functions matched in the regex is an indicator of a local file.
 					return;
 				}
@@ -298,7 +306,7 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 					return;
 				}
 
-				unset( $params, $use_include_path_param, $filename_param );
+				unset( $params, $use_include_path_param, $filename_param, $contains_wp_path_constant, $contains_wp_path_function_call );
 				break;
 
 			case 'file_put_contents':

From b58f15c28ef6835175969e28feebab76554219ae Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 10:23:57 +0100
Subject: [PATCH 11/13] WP/AlternativeFunctions: add support for PHP 8.0+ named
 parameters [4] / readfile/fopen/file_put_contents()

1. Adjusted the way it is determined whether the PHP native function can be replaced with the WP version of the same using the updated PHPCSUtils 1.0.0-alpha4 `PassedParameters` functionality.
2. Verified the parameter names used are in line with the names as per the PHP 8.0 release.
    PHP itself renamed a lot of parameters in PHP 8.0. As named parameters did not exist before PHP 8.0, the parameter name as per PHP 8.0 (or above) is the only relevant name.
    Refs:
    * https://www.php.net/manual/en/function.readfile
    * https://www.php.net/manual/en/function.fopen
    * https://www.php.net/manual/en/function.file-put-contents

Includes additional unit tests.
---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php  | 14 ++++++++------
 .../Tests/WP/AlternativeFunctionsUnitTest.inc      |  8 ++++++++
 .../Tests/WP/AlternativeFunctionsUnitTest.php      |  2 ++
 3 files changed, 18 insertions(+), 6 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index e2342849fa..e18f4a6d9b 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -314,21 +314,23 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 			case 'readfile':
 				/*
 				 * Allow for handling raw data streams from the request body.
+				 *
+				 * Note: at this time (December 2022) these three functions use the same parameter name for their
+				 * first parameter. If this would change at any point in the future, this code will need to
+				 * be made more modular and will need to pass the parameter name based on the function call detected.
 				 */
-				$first_param = PassedParameters::getParameter( $this->phpcsFile, $stackPtr, 1 );
-
-				if ( false === $first_param ) {
+				$filename_param = PassedParameters::getParameter( $this->phpcsFile, $stackPtr, 1, 'filename' );
+				if ( false === $filename_param ) {
 					// If the file to work with is not set, local data streams don't come into play.
 					break;
 				}
 
-				if ( $this->is_local_data_stream( $first_param['raw'] ) === true ) {
+				if ( $this->is_local_data_stream( $filename_param['raw'] ) === true ) {
 					// Local data stream.
 					return;
 				}
 
-				unset( $first_param );
-
+				unset( $filename_param );
 				break;
 		}
 
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index 037be81838..918f9ae395 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -121,3 +121,11 @@ file_get_contents( use_include_path: false, filename: 'https://wordpress.org' );
 file_get_contents( use_include_path: false, filename: ABSPATH . 'wp-admin/css/some-file.css'); // OK.
 file_get_contents( use_include_path: false, filename: 'php://input' ); // OK.
 file_get_contents(use_include_path: false, filename: MYABSPATH . 'plugin-file.json'); // Warning.
+
+// Safeguard support for PHP 8.0+ named parameters for the custom logic related to fopen(), readfile() and file_put_contents().
+fopen (mode: 'w'); // Warning. Missing required param, but that's not the concern of this sniff.
+$output_stream = fopen( mode: 'w', filename: 'php://output', ); // OK.
+$output_stream = fopen( mode: 'w', context: $stream, filename: STDOUT ); // OK.
+$bytes = readfile( use_include_path: false, context: $stream, filename: 'php://fd/3' ); // OK.
+file_put_contents( data: $data, flags : LOCK_EX, filename: STDERR ); // OK.
+$output_stream = fopen( mode: 'r', filename: $url, ); // Warning.
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index 13be535583..8f2e446b75 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -84,6 +84,8 @@ public function getWarningList() {
 			119 => 1,
 			120 => 1,
 			123 => 1,
+			126 => 1,
+			131 => 1,
 		);
 	}
 }

From de723fbe1bd91404eb0d023b3d008b1a4a10c728 Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 09:13:11 +0100
Subject: [PATCH 12/13] WP/AlternativeFunctions: prevent some false positives /
 file_get_contents()

The `'raw'` key in the parameter arrays returned from the `PassedParameters` class contains - as per the name - the _raw_ contents of the parameter.

Since PHPCSUtils 1.0.0-alpha4, the return array also contain a `'clean'` index, which contains the contents of the parameter cleaned of comments.

By switching to using that key, some false negatives and false positives get fixed.

Includes unit tests demonstrating the issue and safeguarding the fix.
---
 .../Sniffs/WP/AlternativeFunctionsSniff.php    | 12 ++++++------
 .../Tests/WP/AlternativeFunctionsUnitTest.inc  | 18 ++++++++++++++++++
 .../Tests/WP/AlternativeFunctionsUnitTest.php  |  2 ++
 3 files changed, 26 insertions(+), 6 deletions(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index e18f4a6d9b..810d56423e 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -265,7 +265,7 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 				$params = PassedParameters::getParameters( $this->phpcsFile, $stackPtr );
 
 				$use_include_path_param = PassedParameters::getParameterFromStack( $params, 2, 'use_include_path' );
-				if ( false !== $use_include_path_param && 'true' === $use_include_path_param['raw'] ) {
+				if ( false !== $use_include_path_param && 'true' === $use_include_path_param['clean'] ) {
 					// Setting `$use_include_path` to `true` is only relevant for local files.
 					return;
 				}
@@ -276,8 +276,8 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 					return;
 				}
 
-				if ( strpos( $filename_param['raw'], 'http:' ) !== false
-					|| strpos( $filename_param['raw'], 'https:' ) !== false
+				if ( strpos( $filename_param['clean'], 'http:' ) !== false
+					|| strpos( $filename_param['clean'], 'https:' ) !== false
 				) {
 					// Definitely a URL, throw notice.
 					break;
@@ -285,7 +285,7 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 
 				$contains_wp_path_constant = preg_match(
 					'`\b(?:ABSPATH|WP_(?:CONTENT|PLUGIN)_DIR|WPMU_PLUGIN_DIR|TEMPLATEPATH|STYLESHEETPATH|(?:MU)?PLUGINDIR)\b`',
-					$filename_param['raw']
+					$filename_param['clean']
 				);
 				if ( 1 === $contains_wp_path_constant ) {
 					// Using any of the constants matched in this regex is an indicator of a local file.
@@ -294,14 +294,14 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 
 				$contains_wp_path_function_call = preg_match(
 					'`(?:get_home_path|plugin_dir_path|get_(?:stylesheet|template)_directory|wp_upload_dir)\s*\(`i',
-					$filename_param['raw']
+					$filename_param['clean']
 				);
 				if ( 1 === $contains_wp_path_function_call ) {
 					// Using any of the functions matched in the regex is an indicator of a local file.
 					return;
 				}
 
-				if ( $this->is_local_data_stream( $filename_param['raw'] ) === true ) {
+				if ( $this->is_local_data_stream( $filename_param['clean'] ) === true ) {
 					// Local data stream.
 					return;
 				}
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
index 918f9ae395..e5212cf5e0 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.inc
@@ -129,3 +129,21 @@ $output_stream = fopen( mode: 'w', context: $stream, filename: STDOUT ); // OK.
 $bytes = readfile( use_include_path: false, context: $stream, filename: 'php://fd/3' ); // OK.
 file_put_contents( data: $data, flags : LOCK_EX, filename: STDERR ); // OK.
 $output_stream = fopen( mode: 'r', filename: $url, ); // Warning.
+
+// Safeguard that comments in the parameters are ignored for the custom logic related to file_get_contents().
+file_get_contents(
+	$local_file,
+	true // Using local include path.
+); // OK.
+file_get_contents(
+	// Not using an https: URL for reasons.
+	ABSPATH . 'wp-admin/css/some-file.css'
+); // OK.
+file_get_contents(
+	// Not using ABSPATH for reasons.
+	$url
+); // Warning.
+file_get_contents(
+	// Not using plugin_dir_path() for reasons.
+	$url
+); // Warning.
diff --git a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
index 8f2e446b75..698e63bdd7 100644
--- a/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
+++ b/WordPress/Tests/WP/AlternativeFunctionsUnitTest.php
@@ -86,6 +86,8 @@ public function getWarningList() {
 			123 => 1,
 			126 => 1,
 			131 => 1,
+			142 => 1,
+			146 => 1,
 		);
 	}
 }

From 56a2ef767ab441d211c9b2d6af6de664b075f56f Mon Sep 17 00:00:00 2001
From: jrfnl <jrfnl@users.noreply.github.com>
Date: Thu, 15 Dec 2022 10:33:53 +0100
Subject: [PATCH 13/13] WP/AlternativeFunctions: minor code tweak /
 readfile/fopen/file_put_contents()

The `'raw'` key in the parameter arrays returned from the `PassedParameters` class contains - as per the name - the _raw_ contents of the parameter.

Since PHPCSUtils 1.0.0-alpha4, the return array also contain a `'clean'` index, which contains the contents of the parameter cleaned of comments.

While this doesn't make a difference functionally (no false positives/negatives), it may improve performance a tiny bit as there is less text for the `is_local_data_stream()` method to handle.
---
 WordPress/Sniffs/WP/AlternativeFunctionsSniff.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
index 810d56423e..e5d6b5893f 100644
--- a/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
+++ b/WordPress/Sniffs/WP/AlternativeFunctionsSniff.php
@@ -325,7 +325,7 @@ public function process_matched_token( $stackPtr, $group_name, $matched_content
 					break;
 				}
 
-				if ( $this->is_local_data_stream( $filename_param['raw'] ) === true ) {
+				if ( $this->is_local_data_stream( $filename_param['clean'] ) === true ) {
 					// Local data stream.
 					return;
 				}