PluginScore

Ajaxify Comments – Ajax and Lazy Loading Comments

Ajaxify Comments speeds up your comment section, allowing for lazy loading comments, instant comment posting, and seamless success and error messages.

v3.2.2Ronald HuerecaUpdated Added 3k+ installs96% rating
ajaxcommentserrorslazy loadrefresh
65
Score
20
Errors
38
Warnings
+0
Change

Category Scores

Security44
Repo100
Performance100
Maintainability79

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

58 findings

Maintainability

35

7 issue groups

Security

17

4 issue groups

I18n

6

2 issue groups

WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "ajaxify/comments/theme_color_palette".16
Category
Maintainability
Occurrences
16
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "ajaxify/comments/theme_color_palette".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.10
Category
Security
Occurrences
10
Severity
warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;7
Category
Maintainability
Occurrences
7
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protectionReference
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$baseDir".6
Category
Maintainability
Occurrences
6
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$baseDir".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound
ERRORSecurityException output is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$packageName'.5
Category
Security
Occurrences
5
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$packageName'.

WordPress.Security.EscapeOutput.ExceptionNotEscapedReference
ERRORI18nText Domain MismatchMismatched text domain. Expected 'wp-ajaxify-comments' but got 'comment-edit-pro'.5
Category
I18n
Occurrences
5
Severity
error

Sample message

Mismatched text domain. Expected 'wp-ajaxify-comments' but got 'comment-edit-pro'.

WordPress.WP.I18n.TextDomainMismatchReference
ERRORMaintainabilityparse url parse urlparse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

WordPress.WP.AlternativeFunctions.parse_url_parse_url
WARNINGI18nDiscouraged text-domain loadingload_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.1
Category
I18n
Occurrences
1
Severity
warning

Sample message

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

PluginCheck.CodeAnalysis.DiscouragedFunctions.load_plugin_textdomainFoundReference
WARNINGMaintainabilityDynamic hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$do_action".1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$do_action".

WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound
WARNINGMaintainabilityerror log trigger errortrigger_error() found. Debug code should not normally be used in production.1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

trigger_error() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_trigger_error
Show 3 more
WARNINGSecurityInput is not sanitized1
Category
Security
Occurrences
1
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_SERVER['HTTP_X_WPAC_REQUEST']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized
WARNINGSecurityRequest data is not unslashed1
Category
Security
Occurrences
1
Severity
warning

Sample message

$_SERVER['HTTP_X_WPAC_REQUEST'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash
WARNINGMaintainabilitytrademarked term1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

The plugin slug includes a restricted term. Your plugin slug - "wp-ajaxify-comments" - contains the restricted term "wp" which cannot be used at all in your plugin slug.

trademarked_term

External Connections

Not analyzed yet.

Score History

First score snapshot

v3.2.2

65

Latest

Findings
58
Errors
20
Warnings
38
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Related Plugins

Disable Lazy Load

10k+ active installs

100
Simply Disable Comments

6k+ active installs

100
Turn Comments Off

1k+ active installs

100
Block List Updater

4k+ active installs

99
Lazy Load for Comments

2k+ active installs

99
One Click Close Comments

4k+ active installs

99