Import products to WooCommerce from external suppliers, dropshipping APIs. Automatically sync products and inventory details into your WooCommerce to …
Prioritized issue groups from the latest Plugin Check scan
Maintainability
236
13 issue groups
Security
193
10 issue groups
I18n
90
2 issue groups
Sample message
Use of a direct database call is discouraged.
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable $col at "$col = {$allowed_fields[$col]}"
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "Plugin_Filters::ACTION_SUPPLIER_SETUP_COMPLETE".
Sample message
The $domain parameter must be a single text string literal. Found: Constants::PLUGIN_TEXT_DOMAIN
Sample message
Unescaped parameter $connections_table used in $wpdb->get_var()\n$connections_table assigned unsafely at line 711.
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
Sample message
Use placeholders and $wpdb->prepare(); found $placeholders
Sample message
Mismatched text domain. Expected 'products-sync-for-woocommerce' but got 'woocommerce'.
Sample message
Replacement variables found, but no valid placeholders found in the query.
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().
Sample message
The use of function ini_set() is discouraged
Sample message
var_export() found. Debug code should not normally be used in production.
Sample message
Processing form data without nonce verification.
Sample message
Processing form data without nonce verification.
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fread().
Sample message
unlink() is discouraged. Use wp_delete_file() to delete a file.
Sample message
Unescaped parameter $values used in $wpdb->query()\n$values used without escaping.
Sample message
Incorrect number of replacements passed to $wpdb->prepare(). Found 1 replacement parameters, expected 0.
Sample message
Complex placeholders used for values in the query string in $wpdb->prepare() will NOT be quoted automagically. Found: %1s.
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$wc_product_attributes".
Sample message
error_log() found. Debug code should not normally be used in production.
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$protocol_name'.
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().
Sample message
rename() is discouraged. Use WP_Filesystem::move() to rename a file.
Potential connections found in static code analysis.
Outbound calls
300
External assets
0
Incoming endpoints
0
No external asset domains detected.
No public endpoints detected.
First score snapshot
v2.6.0
28
Latest
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 28 | 533 | 158 | 375 | v2.6.0 | 2.0.0 |
Author, categories, issues, domains, and nearby plugins.