Release #392
Annotations
10 errors and 10 warnings
|
Run wordpress/plugin-check-action@v1:
inc/patterns/cafe-menu.php#L12
Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.
|
|
Run wordpress/plugin-check-action@v1:
inc/patterns/cafe-menu.php#L12
Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.
|
|
Run wordpress/plugin-check-action@v1:
inc/patterns/cafe-menu.php#L0
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
|
|
Run wordpress/plugin-check-action@v1:
inc/patterns/travel-contact.php#L12
Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.
|
|
Run wordpress/plugin-check-action@v1:
inc/patterns/travel-contact.php#L0
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
|
|
Run wordpress/plugin-check-action@v1:
inc/plugins/class-atomic-wind-blocks.php#L486
Scripts must be registered/enqueued via wp_enqueue_script()
|
|
Run wordpress/plugin-check-action@v1:
inc/plugins/class-atomic-wind-blocks.php#L485
Scripts must be registered/enqueued via wp_enqueue_script()
|
|
Run wordpress/plugin-check-action@v1:
inc/server/class-dynamic-content-server.php#L274
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: readfile().
|
|
Run wordpress/plugin-check-action@v1:
inc/server/class-dynamic-content-server.php#L264
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: readfile().
|
|
Run wordpress/plugin-check-action@v1:
phpcs.xml.dist#L0
Application files are not permitted.
|
|
Run wordpress/plugin-check-action@v1:
inc/plugins/class-stripe-api.php#L300
$_COOKIE['o_stripe_data'] not unslashed before sanitization. Use wp_unslash() or similar
|
|
Run wordpress/plugin-check-action@v1:
inc/plugins/class-stripe-api.php#L278
$_SERVER['HTTPS'] not unslashed before sanitization. Use wp_unslash() or similar
|
|
Run wordpress/plugin-check-action@v1:
inc/plugins/class-stripe-api.php#L77
$_GET['stripe_session_id'] not unslashed before sanitization. Use wp_unslash() or similar
|
|
Run wordpress/plugin-check-action@v1:
inc/class-pro.php#L124
Short URL detected (bit.ly). Use full URLs instead of URL shorteners.
|
|
Run wordpress/plugin-check-action@v1:
inc/render/class-stripe-checkout-block.php#L118
$_GET['stripe_session_id'] not unslashed before sanitization. Use wp_unslash() or similar
|
|
Run wordpress/plugin-check-action@v1:
inc/class-main.php#L64
load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.
|
|
Run wordpress/plugin-check-action@v1:
otter-blocks.php#L0
The plugin name includes a restricted term. Your chosen plugin name - "Otter – Page Builder Blocks & Extensions for Gutenberg" - contains the restricted term "gutenberg" which cannot be used at all in your plugin name.
|
|
Run wordpress/plugin-check-action@v1:
otter-blocks.php#L0
The "Domain Path" header in the plugin file must point to an existing folder. Found: "languages"
|
|
Run wordpress/plugin-check-action@v1:
AGENTS.md#L0
Unexpected markdown file "AGENTS.md" detected in plugin root. Only specific markdown files are expected in production plugins.
|
|
Run wordpress/plugin-check-action@v1:
plugins/otter-pro/inc/class-main.php#L214
$_GET['post_type'] not unslashed before sanitization. Use wp_unslash() or similar
|
background
wait
wait-all
cancel
parallel
Loading