Off-Canvas Sidebars & Menus (Slidebars)

Add off-canvas sidebars (Slidebars) containing widgets, menus or other content using the Slidebars jQuery plugin.

v0.5.9Jory HogeveenUpdated Added 1k+ installs96% rating
37
Score
457
Errors
12
Warnings
+0
Change

Category Scores

Security0
Repo83
Performance100
Maintainability72

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

469 findings

I18n

292

3 issue groups

Security

155

5 issue groups

Maintainability

18

6 issue groups

Repo Compliance

4

4 issue groups

ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: OCS_DOMAIN281
Category
I18n
Occurrences
281
Severity
error

Sample message

The $domain parameter must be a single text string literal. Found: OCS_DOMAIN

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"$id\t"'.146
Category
Security
Occurrences
146
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"$id\t"'.

ERRORMaintainabilityShort PHP open tag foundShort PHP opening tag used with echo; expected "<?php echo $ns ..." but found "<?= $ns ..."13
Category
Maintainability
Occurrences
13
Severity
error

Sample message

Short PHP opening tag used with echo; expected "<?php echo $ns ..." but found "<?= $ns ..."

ERRORI18nMissing Arg DomainMissing $domain parameter in function call to esc_attr_e().7
Category
I18n
Occurrences
7
Severity
error

Sample message

Missing $domain parameter in function call to esc_attr_e().

ERRORI18nNon Singular String Literal TextThe $text parameter must be a single text string literal. Found: $form_action4
Category
I18n
Occurrences
4
Severity
error

Sample message

The $text parameter must be a single text string literal. Found: $form_action

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST[&#039;menu-item-off-canvas-control&#039;][$menu_item_db_id]3
Category
Security
Occurrences
3
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_POST[&#039;menu-item-off-canvas-control&#039;][$menu_item_db_id]

WARNINGSecurityRequest data is not unslashed$_POST[&#039;menu-item-off-canvas-control&#039;][$menu_item_db_id] not unslashed before sanitization. Use wp_unslash() or similar3
Category
Security
Occurrences
3
Severity
warning

Sample message

$_POST[&#039;menu-item-off-canvas-control&#039;][$menu_item_db_id] not unslashed before sanitization. Use wp_unslash() or similar

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST[&#039;menu-item-title&#039;][$menu_item_db_id]. Check that the array index exists before using it.2
Category
Security
Occurrences
2
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST[&#039;menu-item-title&#039;][$menu_item_db_id]. Check that the array index exists before using it.

ERRORMaintainabilityForbidden PHP function foundThe use of function wp_get_sidebars_widgets() is forbidden1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

The use of function wp_get_sidebars_widgets() is forbidden

ERRORMaintainabilityOffloaded ContentOffloading images, js, css, and other scripts to your servers or any remote service is disallowed.1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.

Show 8 more
WARNINGMaintainabilityslow db query meta key1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Detected usage of meta_key, possible slow query.

WARNINGSecuritywp redirect wp redirect1
Category
Security
Occurrences
1
Severity
warning

Sample message

wp_redirect() found. Using wp_safe_redirect(), along with the &quot;allowed_redirect_hosts&quot; filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

ERRORMaintainabilitystrip tags strip tags1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

ERRORRepo Complianceno license1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Missing "License". Please update your readme with a valid GPLv2 (or later) compatible license.

ERRORRepo Complianceoutdated tested upto header1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Tested up to: 6.8 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

WARNINGRepo Complianceplugin header nonexistent domain path1
Category
Repo Compliance
Occurrences
1
Severity
warning

Sample message

The "Domain Path" header in the plugin file must point to an existing folder. Found: "languages"

WARNINGRepo Compliancereadme parser warnings too many tags1
Category
Repo Compliance
Occurrences
1
Severity
warning

Sample message

One or more tags were ignored. Please limit your plugin to 5 tags.

ERRORMaintainabilitywp function not compatible with requires wp1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

Function "get_sites()" requires WordPress 4.6.0, but your plugin minimum supported version is WordPress 4.1.0.

External Connections

Potential connections found in static code analysis.

18 domains

Outbound calls

47

External assets

1

Incoming endpoints

0

Notable Domains

adchsm.com12 · outbound
generatewp.com2 · outbound
keraweb.nl2 · outbound
keraweb.slack.com1 · outbound

Platform / Reference Domains

github.com13 · platform/reference
wordpress.org4 · platform/reference
developer.wordpress.org2 · platform/reference
profiles.wordpress.org2 · platform/reference
codex.wordpress.org1 · platform/reference
gnu.org1 · platform/reference
translate.wordpress.org1 · platform/reference
w3.org1 · platform/reference

External Asset Domains

Incoming Endpoints

No public endpoints detected.

Score History

First score snapshot

v0.5.9

37

Latest

Findings
469
Errors
457
Warnings
12
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

37 nodes

Related Plugins

Hide Drafts in Menus

1k+ active installs

100
Better Aria Label Support

5k+ active installs

99
99
Responsive Navigation Block

1k+ active installs

99
Admin Toolbar Menus

1k+ active installs

98
Shortcode in Menus

50k+ active installs

98