Authorizer limits login attempts, restricts access to specific users, and authenticates against external sources (OAuth2, Google, LDAP, or CAS).
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
40
3 issue groups
Maintainability
16
5 issue groups
I18n
1
1 issue group
WARNINGSecurityRecommendedProcessing form data without nonce verification.30
- Category
- Security
- Occurrences
- 30
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "editable_roles".12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "editable_roles".
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_REQUEST['code']6
- Category
- Security
- Occurrences
- 6
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_REQUEST['code']
WARNINGSecurityMissing Unslash$_REQUEST['code'] not unslashed before sanitization. Use wp_unslash() or similar4
- Category
- Security
- Occurrences
- 4
- Severity
- warning
Sample message
$_REQUEST['code'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGI18nload plugin textdomain Foundload_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.1
- Category
- I18n
- Occurrences
- 1
- Severity
- warning
Sample message
load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.
WARNINGMaintainabilityNon Prefixed Function FoundFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "my_authorizer_add_branding_option".1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "my_authorizer_add_branding_option".
ERRORMaintainabilityNon Enqueued ScriptScripts must be registered/enqueued via wp_enqueue_script()1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Scripts must be registered/enqueued via wp_enqueue_script()
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
ERRORMaintainabilitywp function not compatible with requires wpFunction "str_starts_with()" requires WordPress 5.9.0, but your plugin minimum supported version is WordPress 5.5.0.1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Function "str_starts_with()" requires WordPress 5.9.0, but your plugin minimum supported version is WordPress 5.5.0.
Score History
First score snapshot
v3.14.4
65
Latest
- Findings
- 57
- Errors
- 3
- Warnings
- 54
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 65 | 57 | 3 | 54 | v3.14.4 | 2.0.0 |
Related Plugins
4k+ active installs
10k+ active installs
5k+ active installs
2k+ active installs
4k+ active installs
1k+ active installs