Thin Out Revisions

Enables flexible revision management for you.

v1.8.3blogger323Updated 11 years agoAdded 14 years ago800 installs94% rating

admin posts revision revisions

Score

Errors

Warnings

Change

Category Scores

Security0

Repo94

Performance100

Maintainability81

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

128 findings

Security

8 issue groups

I18n

3 issue groups

Maintainability

7 issue groups

Repo Compliance

1 issue group

ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: self::I18N_DOMAIN50

Category: I18n
Occurrences: 50
Severity: error

Sample message

The $domain parameter must be a single text string literal. Found: self::I18N_DOMAIN

WordPress.WP.I18n.NonSingularStringLiteralDomain Reference

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"'$latest_revision': '"'.31

Category: Security
Occurrences: 31
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"'$latest_revision': '"'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityRequest data is not unslashed$_POST['hm_tor_memo'] not unslashed before sanitization. Use wp_unslash() or similar11

Category: Security
Occurrences: 11
Severity: warning

Sample message

$_POST['hm_tor_memo'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_REQUEST['days']. Check that the array index exists before using it.8

Category: Security
Occurrences: 8
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_REQUEST['days']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['hm_tor_nonce']6

Category: Security
Occurrences: 6
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['hm_tor_nonce']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().4

Category: I18n
Occurrences: 4
Severity: error

Sample message

Missing $domain parameter in function call to __().

WordPress.WP.I18n.MissingArgDomain Reference

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.2

Category: I18n
Occurrences: 2
Severity: error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

WordPress.WP.I18n.MissingTranslatorsComment Reference

ERRORMaintainabilityForbidden PHP function foundThe use of function _wp_post_revision_fields() is forbidden1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

The use of function _wp_post_revision_fields() is forbidden

Generic.PHP.ForbiddenFunctions.Found

Show 9 more

ERRORSecurityDatabase parameter is not escaped1

Category: Security
Occurrences: 1
Severity: error

Sample message

Unescaped parameter $post->ID used in $wpdb->get_results()\n$post->ID used without escaping.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGSecurityInterpolated SQL is not prepared1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $post->ID at WHERE post_parent = $post->ID\n

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

WARNINGSecurityMissing nonce verification1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

WARNINGSecurityNonce verification recommended1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGMaintainabilityDeprecated function: screen_icon1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

screen_icon() has been deprecated since WordPress version 3.8.0.

WordPress.WP.DeprecatedFunctions.screen_iconFound

ERRORMaintainabilityNo Explicit Version1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_enqueue_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.

WordPress.WP.EnqueuedResourceParameters.NoExplicitVersion

ERRORMaintainabilityinvalid plugin name1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

Plugin name header in your readme is missing or invalid. Please update your readme with a valid plugin name header. Eg: "=== Example Name ==="

invalid_plugin_name Reference

ERRORMaintainabilityMissing direct file access protection1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

ERRORRepo Complianceoutdated tested upto header1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 4.2 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

External Connections

Potential connections found in static code analysis.

2 domains

Outbound calls

External assets

Incoming endpoints

Notable Domains

en.hetarena.com2 · outbound

Platform / Reference Domains

wordpress.org1 · platform/reference

External Asset Domains

No external asset domains detected.

Incoming Endpoints

No public endpoints detected.

Admin AJAX endpoints3

wp_ajax_hm_tor_do_ajaxauthenticated

wp_ajax

wp_ajax_hm_tor_do_ajax_start_delete_old_revisionsauthenticated

wp_ajax

wp_ajax_hm_tor_do_ajax_update_memoauthenticated

wp_ajax

Score History

First score snapshot

yesterday

v1.8.3

Latest

Findings: 128
Errors: 93
Warnings: 35
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	40	128	93	35	v1.8.3	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Loading map

PluginAuthorCategoryIssueDomainRelated

Relationship links

Issue

Domain

en.hetarena.com2 signals

Related Plugins

Default Admin Color Scheme

800 active installs

100

PufferDesk

0 active installs

100

Redux Framework

900k+ active installs

100

Simply Show Hooks

2k+ active installs

100

Add Dashboard Columns

400 active installs

Admin Robots.txt Editor

400 active installs