Merge branch 'develop' into feature/plugin-check #483
Annotations
10 errors and 10 warnings
Run plugin check:
includes/class-plugin.php#L1087
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.
|
Run plugin check:
includes/class-plugin.php#L1087
The $text parameter must be a single text string literal. Found: $message
|
Run plugin check:
includes/ui/tabs/diagnostics.php#L19
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
|
Run plugin check:
includes/ui/tabs/diagnostics.php#L21
Missing $domain parameter in function call to _e().
|
Run plugin check:
includes/ui/tabs/diagnostics.php#L21
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
|
Run plugin check:
.editorconfig#L1
Hidden files are not permitted.
|
Run plugin check:
.gitattributes#L1
Hidden files are not permitted.
|
Run plugin check:
.gitignore#L1
Hidden files are not permitted.
|
Run plugin check:
phpunit.xml.dist#L1
Application files are not permitted.
|
Run plugin check:
tests/setup-test.sh#L1
Application files are not permitted.
|
Run plugin check:
includes/class-plugin.php#L1079
Detected usage of a possibly undefined superglobal array index: $_POST['nonce']. Use isset() or empty() to check the index exists before using it
|
Run plugin check:
includes/class-plugin.php#L1079
$_POST['nonce'] not unslashed before sanitization. Use wp_unslash() or similar
|
Run plugin check:
includes/class-plugin.php#L1079
Detected usage of a non-sanitized input variable: $_POST['nonce']
|
Run plugin check:
includes/class-plugin.php#L1603
Processing form data without nonce verification.
|
Run plugin check:
includes/class-plugin.php#L1603
Processing form data without nonce verification.
|
Run plugin check:
includes/class-plugin.php#L1603
Processing form data without nonce verification.
|
Run plugin check:
redis-cache.php#L1
The "Plugin URI" header in the plugin file is not valid.
|
Run plugin check:
tests/PHPStan/bootstrap.php#L6
error_log() found. Debug code should not normally be used in production.
|
Run plugin check:
tests/bootstrap.php#L3
error_reporting() can lead to full path disclosure.
|
Run plugin check:
tests/bootstrap.php#L5
The use of function ini_set() is discouraged
|
Loading