Feat/social fields implementation (TWITTER) -X

[arifulhoque7]

Twitter Icon (X) Field Implementation - Full Description

Overview

This implementation provides a comprehensive Twitter field component for the WP User Frontend plugin, featuring seamless icon integration, robust URL validation, and flexible user input handling. The field is designed to accept both Twitter usernames and full URLs while maintaining a consistent data storage format and providing an enhanced user experience through visual icons.

Architecture & Design

Class Hierarchy

The Twitter field follows an object-oriented design pattern with a three-tier inheritance structure. The main Twitter field class extends a base social media field class, which in turn extends a URL field foundation. This hierarchical approach ensures code reusability across different social media platforms while maintaining platform-specific customizations.

Component Structure

The implementation consists of a main field class that handles Twitter-specific functionality, supported by frontend JavaScript components for form building and validation, CSS styling for visual presentation, and PHP templates for rendering. The system also includes legacy compatibility wrappers to maintain backward compatibility with older plugin versions.

Core Features

Icon Integration System

The field incorporates a sophisticated icon system featuring the official Twitter/X logo rendered as scalable SVG graphics. The icon appears in Twitter's signature blue color and can be conditionally displayed based on field configuration settings. Icons are strategically placed in multiple locations including field labels, clickable links, and form elements to provide visual consistency throughout the user interface.

Advanced Input Validation

The validation system supports multiple input formats while ensuring data integrity. Users can enter Twitter usernames with or without the @ symbol, complete Twitter URLs from both twitter.com and x.com domains, or partial URLs. The system automatically validates username format according to Twitter's specifications, ensuring usernames contain only alphanumeric characters and underscores, with a maximum length of 15 characters.

Intelligent Data Processing

The field employs smart data processing that automatically converts various input formats into standardized full URLs for storage while displaying user-friendly formats in forms. When users enter just a username, the system automatically prepends the Twitter base URL. For display purposes, full URLs are converted back to username format with @ symbols for better readability.

Flexible Configuration Options

Administrators have granular control over field behavior through various configuration options. They can enable or disable icon display, choose whether links open in new windows or the same window, set custom placeholders and help text, and configure validation requirements. The field also supports standardized meta key formatting for consistent database storage.

User Experience Enhancements

Frontend Interaction

The field provides real-time validation feedback, highlighting invalid entries and providing helpful error messages. HTML5 pattern validation ensures immediate client-side feedback, while JavaScript validation provides additional user guidance. The interface supports autocomplete functionality for improved usability.

Visual Design

The styling system ensures consistent appearance across different themes and devices. Icons are properly aligned and sized for optimal visual impact, while maintaining accessibility standards. The field wrapper includes specialized CSS classes for precise control over layout and spacing.

Form Builder Integration

The field seamlessly integrates with the WordPress form builder interface, providing drag-and-drop functionality and real-time preview capabilities. Administrators can configure field properties through an intuitive interface with immediate visual feedback.

Technical Implementation

Data Management

The system uses a standardized meta key format for database storage, ensuring consistency across all social media fields. Data is stored as complete URLs but can be retrieved and displayed in various formats depending on context. The implementation includes proper sanitization and escaping to prevent security vulnerabilities.

Security Measures

Comprehensive security features include CSRF protection through WordPress nonces, input sanitization and validation at multiple levels, XSS prevention through proper output escaping, and URL validation for external links to prevent malicious redirects.

Performance Optimization

The implementation is optimized for performance with efficient database queries, minimal DOM manipulation, and lightweight CSS and JavaScript assets. SVG icons are embedded inline to reduce HTTP requests while maintaining scalability.

Integration Points

WordPress Ecosystem

The field integrates seamlessly with WordPress user profiles, custom post types, and meta fields. It supports WordPress hooks and filters for extensibility and follows WordPress coding standards for consistency and maintainability.

Form Builder Compatibility

The implementation includes Vue.js components for modern form building interfaces, providing drag-and-drop functionality and real-time configuration options. The system maintains backward compatibility with legacy form builders while supporting modern development practices.

Theme Integration

The field is designed to work with any WordPress theme through careful CSS implementation and responsive design principles. Custom styling hooks allow theme developers to modify appearance while maintaining core functionality.

Administrative Features

Field Configuration

Administrators can configure numerous aspects of the field including validation rules, display options, icon preferences, and link behavior. The configuration interface provides helpful tooltips and examples to guide proper setup.

Meta Key Management

The system automatically manages meta key naming conventions to prevent conflicts and ensure consistency. Meta keys follow a standardized format that allows for easy querying and data retrieval across different contexts.

Validation Rules

Comprehensive validation rules ensure data integrity while providing flexibility for different use cases. Administrators can customize validation messages and error handling to match their site's tone and branding.

This implementation represents a complete, production-ready solution for Twitter field integration in WordPress forms, combining robust functionality with excellent user experience and administrative flexibility.

Summary by CodeRabbit

• New Features

  • Introduced a new Twitter URL field for forms, allowing users to add and validate Twitter/X handles or URLs.
  • Added a dedicated "Social Fields" group in the form builder for easier access to social media fields.
  • Included customizable options for displaying platform icons and setting link behavior for social fields.
  • Added a Twitter URL input component with icon support and validation pattern in the form builder UI.

• Style

  • Updated form and admin styles to support the new Twitter field, including icon display, input alignment, and platform-specific colors.
  • Enhanced error styling for social media fields.
  • Added hover and focus background color utilities for amber tones used in admin styles.

• Bug Fixes

  • Fixed a minor CSS syntax issue in frontend form styles.

• Documentation

  • Improved inline help and placeholder texts for new social media fields.

[coderabbitai]

"""

Walkthrough

A new Twitter (X) social media URL field is introduced across the form builder system. This includes backend PHP classes for field registration, Vue.js components and templates for the form builder UI, and new CSS for both admin and frontend styling. Existing systems are updated to support this new field type.

Changes

Files/Paths	Change Summary
admin/form-builder/assets/js/components/form-twitter_url/index.js assets/js/wpuf-form-builder-components.js	Added a new Vue component form-twitter_url utilizing a new template and mixin for Twitter URL input handling in the form builder.
assets/js-templates/form-components.php	Added strict typing, new template for Twitter URL field, updated form builder stage to display Twitter icon, and formatting improvements.
assets/css/admin/form-builder.css	Updated amber color palette and added hover/focus utility classes for consistent background styling.
assets/css/frontend-forms.css	Appended new CSS rules for Twitter social media field styling, including icon positioning and Twitter link display; removed an extraneous closing brace.
assets/css/wpuf.css	Reformatted for consistency; added new CSS for social media field wrappers, platform-specific focus states, icon alignment, and error styling for social fields.
includes/Admin/Forms/Field_Manager.php	Declared strict types; registered twitter_url field type and group; added method to return social fields; updated field group logic.
includes/Fields/Form_Field_Social.php	Introduced new abstract class encapsulating logic for social media URL fields, including rendering, validation, icon display, and data preparation.
includes/Fields/Form_Field_Twitter.php	Added new class for Twitter/X field, extending social field base, with platform-specific validation, icon, and enforced meta key convention.
includes/Fields/class-field-twitter.php	Added legacy wrapper class for backward compatibility with previous field manager systems.
includes/class-field-manager.php	Enabled strict types; registered new Twitter URL field type and included it in custom fields list.
admin/form-builder/assets/js/components/field-text-meta/template.php	Extended input element attributes with dynamic bindings for CSS class, readonly, style, and disabled properties.

Possibly related issues

• weDevsOfficial/wpuf-pro#776: This PR directly implements the requested "X (formerly Twitter)" social field for registration forms, matching the issue's requirements for backend, UI, and configuration.

Suggested labels

QA Approved, Ready to Merge

Poem

In fields of forms where data flows,
A Twitter bird now proudly shows.
With icons bright and colors new,
Your handle’s safe, your links are true.
🐦✨
Forms tweet with style—
This rabbit hops with a smile!

"""

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 5ef38e8 and f5ff5b3.

⛔ Files ignored due to path filters (4)

• assets/js/forms-list.min.js is excluded by !**/*.min.js
• assets/js/forms-list.min.js.map is excluded by !**/*.map, !**/*.min.js.map
• assets/js/subscriptions.min.js is excluded by !**/*.min.js
• assets/js/subscriptions.min.js.map is excluded by !**/*.map, !**/*.min.js.map

📒 Files selected for processing (1)

• includes/Fields/Form_Field_Twitter.php (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• includes/Fields/Form_Field_Twitter.php

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: test
• GitHub Check: Run PHPCS inspection

✨ Finishing Touches

• 📝 Generate Docstrings

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Explain this complex logic.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai explain this code block.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and explain its main purpose.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 3

🧹 Nitpick comments (7)

admin/form-builder/assets/js/components/form-twitter_url/index.js (1)

4-8: Register Twitter URL field component with consistent quoting

The component registration and mixin integration look correct. To align with the project's existing style, please use single quotes for the component name and template.

Diff:

-Vue.component("form-twitter_url", {
+Vue.component('form-twitter_url', {
-    template: "#tmpl-wpuf-form-twitter_url",
+    template: '#tmpl-wpuf-form-twitter_url',

assets/js/wpuf-form-builder-components.js (1)

2163-2171: Consistent component registration for Twitter URL field

The form-twitter_url component is correctly added. For consistency with other global components, switch to single quotes for the component name and template.

Diff:

-Vue.component("form-twitter_url", {
+Vue.component('form-twitter_url', {
-    template: "#tmpl-wpuf-form-twitter_url",
+    template: '#tmpl-wpuf-form-twitter_url',

assets/css/admin/form-builder.css (2)

3727-3729: Update amber-500 background color
The .wpuf-bg-amber-500 color has been adjusted to rgb(245 158 11), matching Tailwind’s standard amber-500.

Consider verifying this new shade meets WCAG contrast requirements against your default text/icon colors to ensure accessibility.

---

5320-5323: Introduce hover state for amber-600 utility
The addition of .hover\:wpuf-bg-amber-600:hover { background-color: rgb(217 119 6); } delivers a clear hover feedback.

For maintainability, you may want to group this hover rule immediately after the .wpuf-bg-amber-600 definition so that all amber variants remain contiguous.

includes/Fields/Form_Field_Social.php (2)

60-64: Consider making max_username_length more flexible.

The default value of 15 is Twitter-specific. Other platforms have different limits (e.g., Instagram allows 30 characters). Consider not setting a default here and requiring child classes to define their own limits.

-    protected $max_username_length = 15;
+    protected $max_username_length;

Then add validation in the constructor or an abstract method to ensure child classes set this value.

---

201-217: Use builder_class_names() for consistent styling.

The input field uses a hardcoded 'textfield' class. For consistency with other fields in the plugin, consider using the builder_class_names() helper method.

-class="textfield wpuf-<?php echo esc_attr( $this->platform ); ?>-field <?php echo esc_attr( ' wpuf_' . $field_settings['name'] . '_' . $form_id ); ?>"
+class="<?php echo esc_attr( $this->builder_class_names( 'textfield' ) ); ?> wpuf-<?php echo esc_attr( $this->platform ); ?>-field <?php echo esc_attr( ' wpuf_' . $field_settings['name'] . '_' . $form_id ); ?>"

assets/css/wpuf.css (1)

516-526: Define Scalable SVG Icon Dimensions
Locking SVG icons to 20×20 px ensures uniform visuals for social and Twitter icons. Consider defining these values as CSS variables for easier future adjustments.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0018a59 and c9c33e7.

⛔ Files ignored due to path filters (1)

• assets/images/twitter.svg is excluded by !**/*.svg

📒 Files selected for processing (11)

• admin/form-builder/assets/js/components/form-twitter_url/index.js (1 hunks)
• assets/css/admin/form-builder.css (3 hunks)
• assets/css/frontend-forms.css (2 hunks)
• assets/css/wpuf.css (16 hunks)
• assets/js-templates/form-components.php (6 hunks)
• assets/js/wpuf-form-builder-components.js (1 hunks)
• includes/Admin/Forms/Field_Manager.php (5 hunks)
• includes/Fields/Form_Field_Social.php (1 hunks)
• includes/Fields/Form_Field_Twitter.php (1 hunks)
• includes/Fields/class-field-twitter.php (1 hunks)
• includes/class-field-manager.php (4 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (5)

includes/Fields/class-field-twitter.php (1)

includes/Fields/Form_Field_Twitter.php (1)

• Form_Field_Twitter (20-92)

includes/class-field-manager.php (1)

includes/Fields/class-field-twitter.php (1)

• WPUF_Form_Field_Twitter (12-15)

includes/Admin/Forms/Field_Manager.php (1)

includes/Fields/Form_Field_Twitter.php (1)

• Form_Field_Twitter (20-92)

includes/Fields/Form_Field_Twitter.php (1)

includes/Fields/Form_Field_Social.php (3)

• Form_Field_Social (22-438)
• get_field_props (150-169)
• get_options_settings (77-143)

includes/Fields/Form_Field_Social.php (4)

includes/Fields/Form_Field_URL.php (1)

• Form_Field_URL (8-152)

includes/Fields/Form_Field_Twitter.php (2)

• get_options_settings (78-91)
• get_field_props (59-66)

includes/Fields/Field_Contract.php (6)

• get_default_option_settings (275-430)
• get_default_text_option_settings (579-619)
• default_attributes (248-266)
• field_print_label (723-733)
• after_field_print_label (735-745)
• print_list_attributes (755-763)

wpuf-functions.php (1)

• wpuf_validate_boolean (4072-4074)

🪛 Biome (1.9.4)

assets/css/frontend-forms.css

[error] 1845-1845: expected } but instead the file ends

the file ends here

(parse)

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: test
• GitHub Check: Run PHPCS inspection

🔇 Additional comments (27)

assets/css/admin/form-builder.css (1)

5495-5498: Add focus state for amber-600 utility
The .focus\:wpuf-bg-amber-600:focus { background-color: rgb(217 119 6); } class ensures keyboard-driven interactions have visual feedback—great for accessibility.

includes/Fields/class-field-twitter.php (1)

1-16: LGTM! Clean legacy compatibility wrapper.

This implementation follows the correct pattern for maintaining backward compatibility while leveraging the new namespaced architecture. The minimal approach is appropriate since all functionality is inherited from the new Form_Field_Twitter class.

includes/class-field-manager.php (4)

1-1: Good addition of strict types declaration.

Adding declare(strict_types=1) improves type safety and follows modern PHP best practices.

---

119-119: Twitter field properly included.

The inclusion of the Twitter field class file follows the established pattern used for other field types.

---

141-141: Twitter field correctly registered.

The twitter_url field is properly instantiated and registered in the fields array, making it available throughout the form system.

---

181-181: Twitter field added to custom fields list.

The field is correctly included in the custom fields list, ensuring it appears in the form builder UI.

assets/css/frontend-forms.css (1)

1802-1845: Well-structured Twitter field styles.

The CSS implementation follows good practices:

• Proper use of relative/absolute positioning for icon placement
• Consistent naming conventions with wpuf-twitter- prefix
• Good separation between field input styling and data display styling
• Appropriate use of flexbox for alignment

The styles provide comprehensive coverage for both form input and data display scenarios.

🧰 Tools

🪛 Biome (1.9.4)

[error] 1845-1845: expected } but instead the file ends

the file ends here

(parse)

includes/Admin/Forms/Field_Manager.php (5)

1-1: Excellent addition of strict types declaration.

Adding declare(strict_types=1) at the top improves type safety and follows modern PHP best practices.

---

26-26: Proper import of Twitter field class.

The import statement correctly references the new namespaced Form_Field_Twitter class.

---

100-100: Twitter field correctly registered.

The twitter_url field is properly instantiated and registered, making it available in the admin form builder.

---

121-121: Smart architectural decision: dedicated social fields group.

Adding a separate "Social Fields" group provides better organization and makes it easier to add future social media fields. This is a good architectural improvement over putting social fields in the generic "Custom Fields" group.

---

163-185: Well-implemented social fields group method.

The get_social_fields() method follows the established pattern used by other field group methods:

• Proper filterable implementation with wpuf_form_fields_social_fields hook
• Consistent return structure with title, id, and fields
• Good version annotation with @since 3.6.0
• Extensible design for future social media fields

This provides a clean foundation for expanding social media field support.

includes/Fields/Form_Field_Twitter.php (2)

1-20: Well-structured file header and class documentation.

The file follows WordPress coding standards with proper namespace declaration, security check, and comprehensive PHPDoc comments that appropriately reference both Twitter and X platforms.

---

49-91: Excellent implementation of standardized meta key handling.

The overridden methods ensure consistent meta key naming (wpuf_social_twitter) across all installations and prevent accidental changes by making the field readonly with clear explanatory text.

assets/js-templates/form-components.php (2)

1-1: Good addition of strict types declaration.

Enforcing strict types improves code reliability and helps catch type-related bugs early.

---

1515-1528: Well-implemented Twitter URL field template.

The Vue.js template correctly implements the Twitter field with:

• Proper pattern validation matching the backend regex
• Consistent use of builder class names
• Appropriate data attributes for field identification
• Standard help text support

includes/Fields/Form_Field_Social.php (3)

77-169: Excellent implementation of social field options and properties.

The methods provide comprehensive configuration options with:

• Proper internationalization using sprintf for dynamic platform names
• Sensible defaults (icon hidden, new window, strict validation)
• Clear help texts for each option
• Proper priority ordering for form builder display

---

304-391: Robust input handling and validation implementation.

The validation and conversion methods excellently handle:

• CSRF protection with nonce verification
• Proper input sanitization
• Flexible input formats (username, @username, full URLs)
• Pattern-based validation delegated to child classes
• Safe URL validation using PHP's filter_var

---

403-437: Well-implemented field data rendering.

The method properly handles all display scenarios with:

• Secure output escaping
• Proper link attributes including rel="noreferrer noopener" for security
• Icon display support
• Username extraction for user-friendly display
• Consistent HTML structure

assets/css/wpuf.css (8)

507-513: Add Social Media Field Wrapper Styling
The new .wpuf-social-field-wrapper and .wpuf-twitter-field-wrapper flex containers provide proper alignment for icons and inputs, establishing a consistent layout foundation for all social media fields.

---

529-536: Icon Margin Utility: Before Text
The .wpuf-mr-2 class applying an 8 px right margin is a clear and reusable utility for icons placed before labels or text.

---

539-546: Icon Margin Utility: After Text
The .wpuf-ml-2 class applying an 8 px left margin complements the before-text utility, maintaining consistent spacing patterns.

---

549-552: Ensure Alignment in Form Builder Blocks
Selectors targeting .wpuf-block svg and adjusted 6 px margins for .wpuf-mr-2/.wpuf-ml-2 ensure icons render correctly within the Vue-based form builder canvas.

Also applies to: 554-557, 559-562

---

565-572: Social Media Input Base Styles
Applying a 50% width, consistent padding, border, and border-radius aligns these inputs with existing form fields, preserving visual consistency across the plugin.

---

574-578: Twitter Field Focus State
Highlighting the input with Twitter’s signature blue #1da1f2 on focus offers clear user feedback and distinguishes this field type appropriately.

---

597-603: Add General Form Validation Error Styles
The red border, box-shadow, error messages, and error container styles provide comprehensive feedback on validation failures. Verify these don’t clash with theme-level CSS overrides.

Also applies to: 605-610, 612-618

---

620-625: Add Specific Error Styles for Social Fields
Extending the validation styling to the social and Twitter wrappers ensures error states are uniformly handled across all field types.

[coderabbitai]

⚠️ Potential issue

Fix syntax error: missing closing brace.

The static analysis tool correctly identified that the file is missing a closing brace. This will cause CSS parsing issues.

Add the missing closing brace at the end of the file:

 .wpuf-twitter-link svg {
     width: 16px;
     height: 16px;
     flex-shrink: 0;
 }
+}

🤖 Prompt for AI Agents

In assets/css/frontend-forms.css at line 1194, there is a missing closing brace
causing a CSS syntax error. Add the missing closing brace '}' at the appropriate
position to properly close the last CSS rule and fix the parsing issue.

[coderabbitai]

⚠️ Potential issue

Icon inconsistency between form builder and field rendering.

The form builder displays a green X logo while the PHP class (Form_Field_Twitter) defines a blue Twitter bird icon. This creates visual inconsistency. Consider using the same icon in both places for a consistent user experience.

Either update this to use the blue Twitter bird icon:

-<svg class="wpuf-social-svg wpuf-twitter-svg wpuf-inline wpuf-ml-2" width="20" height="20" viewBox="0 0 22 22" fill="none" xmlns="http://www.w3.org/2000/svg">
-    <path d="M6 16L10.1936 11.8065M10.1936 11.8065L6 6H8.77778L11.8065 10.1935M10.1936 11.8065L13.2222 16H16L11.8065 10.1935M16 6L11.8065 10.1935M1.5 11C1.5 6.52166 1.5 4.28249 2.89124 2.89124C4.28249 1.5 6.52166 1.5 11 1.5C15.4784 1.5 17.7175 1.5 19.1088 2.89124C20.5 4.28249 20.5 6.52166 20.5 11C20.5 15.4783 20.5 17.7175 19.1088 19.1088C17.7175 20.5 15.4784 20.5 11 20.5C6.52166 20.5 4.28249 20.5 2.89124 19.1088C1.5 17.7175 1.5 15.4783 1.5 11Z" stroke="#16A34A" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round"/>
-</svg>
+<svg class="wpuf-social-svg wpuf-twitter-svg wpuf-inline wpuf-ml-2" width="20" height="20" viewBox="0 0 24 24" fill="#1da1f2" xmlns="http://www.w3.org/2000/svg">
+    <path d="M23.953 4.57a10 10 0 01-2.825.775 4.958 4.958 0 002.163-2.723c-.951.555-2.005.959-3.127 1.184a4.92 4.92 0 00-8.384 4.482C7.69 8.095 4.067 6.13 1.64 3.162a4.822 4.822 0 00-.666 2.475c0 1.71.87 3.213 2.188 4.096a4.904 4.904 0 01-2.228-.616v.06a4.923 4.923 0 003.946 4.827 4.996 4.996 0 01-2.212.085 4.936 4.936 0 004.604 3.417 9.867 9.867 0 01-6.102 2.105c-.39 0-.779-.023-1.17-.067a13.995 13.995 0 007.557 2.209c9.053 0 13.998-7.496 13.998-13.985 0-.21 0-.42-.015-.63A9.935 9.935 0 0024 4.59z"/>
+</svg>

Or standardize both to use the X logo if that's the intended branding direction.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	<template v-if="field.show_icon === 'yes' && field.template && field.template.endsWith('_url')">
	<template v-if="field.template === 'twitter_url'">
	<svg class="wpuf-social-svg wpuf-twitter-svg wpuf-inline wpuf-ml-2" width="20" height="20" viewBox="0 0 22 22" fill="none" xmlns="http://www.w3.org/2000/svg">
	<path d="M6 16L10.1936 11.8065M10.1936 11.8065L6 6H8.77778L11.8065 10.1935M10.1936 11.8065L13.2222 16H16L11.8065 10.1935M16 6L11.8065 10.1935M1.5 11C1.5 6.52166 1.5 4.28249 2.89124 2.89124C4.28249 1.5 6.52166 1.5 11 1.5C15.4784 1.5 17.7175 1.5 19.1088 2.89124C20.5 4.28249 20.5 6.52166 20.5 11C20.5 15.4783 20.5 17.7175 19.1088 19.1088C17.7175 20.5 15.4784 20.5 11 20.5C6.52166 20.5 4.28249 20.5 2.89124 19.1088C1.5 17.7175 1.5 15.4783 1.5 11Z" stroke="#16A34A" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round"/>
	</svg>
	</template>
	</template>
	<template v-if="field.show_icon === 'yes' && field.template && field.template.endsWith('_url')">
	<template v-if="field.template === 'twitter_url'">
	<svg class="wpuf-social-svg wpuf-twitter-svg wpuf-inline wpuf-ml-2" width="20" height="20" viewBox="0 0 24 24" fill="#1da1f2" xmlns="http://www.w3.org/2000/svg">
	<path d="M23.953 4.57a10 10 0 01-2.825.775 4.958 4.958 0 002.163-2.723c-.951.555-2.005.959-3.127 1.184a4.92 4.92 0 00-8.384 4.482C7.69 8.095 4.067 6.13 1.64 3.162a4.822 4.822 0 00-.666 2.475c0 1.71.87 3.213 2.188 4.096a4.904 4.904 0 01-2.228-.616v.06a4.923 4.923 0 003.946 4.827 4.996 4.996 0 01-2.212.085 4.936 4.936 0 004.604 3.417 9.867 9.867 0 01-6.102 2.105c-.39 0-.779-.023-1.17-.067a13.995 13.995 0 007.557 2.209c9.053 0 13.998-7.496 13.998-13.985 0-.21 0-.42-.015-.63A9.935 9.935 0 0024 4.59z"/>
	</svg>
	</template>
	</template>

🤖 Prompt for AI Agents

In assets/js-templates/form-components.php around lines 120 to 126, the SVG icon
for the Twitter URL field currently shows a green X logo, which conflicts with
the blue Twitter bird icon defined in the PHP Form_Field_Twitter class. To fix
this inconsistency, replace the current SVG markup with the blue Twitter bird
icon SVG used in the PHP class, or alternatively update the PHP class to use the
green X logo if that is the preferred branding. Ensure both the form builder and
field rendering use the exact same icon SVG for visual consistency.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (1)

admin/form-builder/assets/js/components/field-text-meta/template.php (1)

12-12: Consider trimming the CSS class to handle edge cases.

The CSS class concatenation logic is correct, but consider trimming to handle cases where css_class might be an empty string.

-            :class="builder_class_names('text') + (option_field.css_class ? ' ' + option_field.css_class : '')"
+            :class="builder_class_names('text') + (option_field.css_class ? ' ' + option_field.css_class.trim() : '')"

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 5c1d419 and 432b85e.

📒 Files selected for processing (3)

• admin/form-builder/assets/js/components/field-text-meta/template.php (1 hunks)
• assets/js-templates/form-components.php (5 hunks)
• includes/Fields/Form_Field_Twitter.php (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (2)

• includes/Fields/Form_Field_Twitter.php
• assets/js-templates/form-components.php

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: Run PHPCS inspection
• GitHub Check: test

🔇 Additional comments (2)

admin/form-builder/assets/js/components/field-text-meta/template.php (2)

13-13: LGTM! Proper boolean attribute binding.

The explicit boolean comparison ensures the readonly attribute is only applied when explicitly set to true, following Vue.js best practices.

---

15-15: LGTM! Consistent boolean attribute binding pattern.

The disabled binding follows the same pattern as the readonly binding with explicit boolean comparison, ensuring consistency and proper attribute application.

[coderabbitai]

💡 Verification agent

🧩 Analysis chain

Verify style content is properly sanitized to prevent CSS injection.

The dynamic style binding directly applies user-provided CSS content, which could be a security vulnerability if not properly sanitized on the backend.

Ensure that option_field.custom_attrs.style is properly sanitized before reaching this component to prevent CSS injection attacks.

---

🏁 Script executed:

#!/bin/bash
# Description: Search for sanitization of custom_attrs.style in the codebase
# Expected: Find sanitization functions applied to style attributes

rg -A 5 -B 5 "custom_attrs.*style|style.*custom_attrs"

Length of output: 1989

---

Sanitize style input to prevent CSS injection

The dynamic :style bindings below apply raw option_field.custom_attrs.style without any sanitization, allowing potential CSS injection:

• admin/form-builder/assets/js/components/field-text-meta/template.php (around line 14)
• assets/js-templates/form-components.php (around the :style binding)

Please implement a sanitization step—either server-side (e.g., parse and whitelist allowed CSS properties/values) or front-end (e.g., a utility like sanitizeStyle() or DOMPurify)—before binding user-provided style content.

🤖 Prompt for AI Agents

In admin/form-builder/assets/js/components/field-text-meta/template.php at line
14, the dynamic :style binding uses option_field.custom_attrs.style directly
without sanitization, which risks CSS injection. To fix this, implement a
sanitization step before binding the style attribute by either sanitizing the
style string on the server side to whitelist allowed CSS properties and values
or by creating a front-end utility function (e.g., sanitizeStyle()) that cleans
the style string before it is applied. Replace the direct binding with the
sanitized output to ensure no unsafe CSS is injected.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (1)

includes/Fields/Form_Field_Twitter.php (1)

30-47: Consider domain consistency for X rebrand

The constructor correctly sets up Twitter-specific properties, but there's a potential inconsistency: the platform name is "X (Twitter)" while the base URL uses twitter.com. Since X is now the primary brand and x.com is the preferred domain, consider updating the base URL for consistency.

-        $this->base_url             = 'https://twitter.com/';
+        $this->base_url             = 'https://x.com/';

Note: Both domains work due to redirects, so this is primarily for brand consistency.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 432b85e and 2270f7d.

📒 Files selected for processing (1)

• includes/Fields/Form_Field_Twitter.php (1 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (1)

includes/Fields/Form_Field_Twitter.php (2)

includes/Fields/Form_Field_Social.php (4)

• Form_Field_Social (22-438)
• get_field_props (150-169)
• get_options_settings (77-143)
• get_platform_icon (263-268)

includes/Fields/Field_Contract.php (2)

• get_default_option_settings (275-430)
• get_default_text_option_settings (579-619)

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: test
• GitHub Check: Run PHPCS inspection

🔇 Additional comments (2)

includes/Fields/Form_Field_Twitter.php (2)

1-9: LGTM - Good file structure and security practices

The file header follows proper PHP standards with strict typing, namespace declaration, and direct access prevention.

---

172-174: LGTM - Platform icon override correctly implemented

The get_platform_icon() method properly overrides the parent's default icon and returns the Twitter-specific icon defined in the constructor. This addresses the previous review comment.