Plugin Notes Plus

Adds a column to the Plugins page where you can add, edit, or delete notes about a plugin.

v1.2.10jamiebergenUpdated 1 year agoAdded 8 years ago9k+ installs100% rating

memo plugin notes plugins

Score

Errors

Warnings

Change

Category Scores

Security60

Repo94

Performance100

Maintainability84

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

44 findings

Maintainability

7 issue groups

Security

3 issue groups

I18n

1 issue group

Repo Compliance

1 issue group

WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "plugin-notes-plus_allowed_html".7

Category: Maintainability
Occurrences: 7
Severity: warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "plugin-notes-plus_allowed_html".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.6

Category: Maintainability
Occurrences: 6
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_REQUEST['icon']5

Category: Security
Occurrences: 5
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_REQUEST['icon']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_REQUEST['icon']. Check that the array index exists before using it.5

Category: Security
Occurrences: 5
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_REQUEST['icon']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

WARNINGSecurityMissing Unslash$_REQUEST['icon'] not unslashed before sanitization. Use wp_unslash() or similar5

Category: Security
Occurrences: 5
Severity: warning

Sample message

$_REQUEST['icon'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$icon_class".4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$icon_class".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

WARNINGMaintainabilitytrademarked termThe plugin name includes a restricted term. Your chosen plugin name - "Plugin Notes Plus" - contains the restricted term "plugin" which cannot be used at all in your plugin name.3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

The plugin name includes a restricted term. Your chosen plugin name - "Plugin Notes Plus" - contains the restricted term "plugin" which cannot be used at all in your plugin name.

trademarked_term

WARNINGMaintainabilityNon Prefixed Function FoundFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "activate_plugin_notes_plus".2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "activate_plugin_notes_plus".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

WARNINGI18nload plugin textdomain Foundload_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.1

Category: I18n
Occurrences: 1
Severity: warning

Sample message

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

PluginCheck.CodeAnalysis.DiscouragedFunctions.load_plugin_textdomainFound Reference

Show 2 more

ERRORMaintainabilitymissing direct file access protection1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

ERRORRepo Complianceoutdated tested upto header1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.7 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

Score History

First score snapshot

yesterday

v1.2.10

Latest

Findings: 44
Errors: 2
Warnings: 42
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	74	44	2	42	v1.2.10	2.0.0

Related Plugins

KP Zip Downloader

3k+ active installs

WP Rollback – Rollback Plugins and Themes

300k+ active installs

Comment Form Js Validation

2k+ active installs

Advanced Automatic Updates

20k+ active installs

WP Fingerprint

9k+ active installs

WPCore Plugin Manager

10k+ active installs