PluginScore

Simple Revision Control

Easily control and limit post revisions per post type to keep your WordPress database clean and optimized—no coding required!

v2.2.4Marcin PietrzakUpdated Added 1k+ installs76% rating
custom post typepagepostrevisionrevisions
41
Score
34
Errors
43
Warnings
+0
Change

Category Scores

Security0
Repo94
Performance100
Maintainability82

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

77 findings

Maintainability

38

7 issue groups

Security

38

7 issue groups

Repo Compliance

1

1 issue group

WARNINGMaintainabilityDynamic hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$filter_name . '_content'".18
Category
Maintainability
Occurrences
18
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$filter_name . '_content'".

WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound
ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $query14
Category
Security
Occurrences
14
Severity
error

Sample message

Use placeholders and $wpdb->prepare(); found $query

WordPress.DB.PreparedSQL.NotPrepared
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$args'.12
Category
Security
Occurrences
12
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$args'.

WordPress.Security.EscapeOutput.OutputNotEscapedReference
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.7
Category
Maintainability
Occurrences
7
Severity
warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().7
Category
Maintainability
Occurrences
7
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching
ERRORSecurityDatabase parameter is not escapedUnescaped parameter $query used in $wpdb->get_col()\n$query assigned unsafely at line 521.5
Category
Security
Occurrences
5
Severity
error

Sample message

Unescaped parameter $query used in $wpdb->get_col()\n$query assigned unsafely at line 521.

PluginCheck.Security.DirectDB.UnescapedDBParameter
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.4
Category
Security
Occurrences
4
Severity
warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$base".3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$base".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound
WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "get_simple_revision_control_options".1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "get_simple_revision_control_options".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['_wpnonce']1
Category
Security
Occurrences
1
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['_wpnonce']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized
Show 5 more
WARNINGSecurityInput is not validated1
Category
Security
Occurrences
1
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_REQUEST[$nonce_value]. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated
WARNINGSecurityRequest data is not unslashed1
Category
Security
Occurrences
1
Severity
warning

Sample message

$_POST['_wpnonce'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash
ERRORMaintainabilityrand mt rand1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

mt_rand() is discouraged. Use the far less predictable wp_rand() instead.

WordPress.WP.AlternativeFunctions.rand_mt_rand
ERRORMaintainabilityMissing direct file access protection1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protectionReference
ERRORRepo Complianceoutdated tested upto header1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Tested up to: 6.8 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_headerReference

Score History

First score snapshot

v2.2.4

41

Latest

Findings
77
Errors
34
Warnings
43
Check
2.0.0

Related Plugins

Pages with category and tag

60k+ active installs

100
Custom Post Exporter

3k+ active installs

99
Custom Post Type Widgets

10k+ active installs

99
Disable Gutenberg Autosave

2k+ active installs

99
Display Featured Image In Post List

3k+ active installs

99
Header and Footer Scripts

200k+ active installs

99