WPGatsby

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Sample message

Use of a direct database call is discouraged.

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

Sample message

Use placeholders and $wpdb->prepare(); found $query

Sample message

Processing form data without nonce verification.

Sample message

Unescaped parameter $post_types used in $wpdb->get_col()\n$post_types assigned unsafely at line 162.

Sample message

Detected usage of tax_query, possible slow query.

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

Sample message

Detected usage of a non-sanitized input variable: $_GET['preview_id']

Sample message

$_GET['preview_id'] not unslashed before sanitization. Use wp_unslash() or similar

Sample message

The plugin name includes a restricted term. Your chosen plugin name - "WP Gatsby" - contains the restricted term "wp" which cannot be used at all in your plugin name.

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $post_types at "SELECT ID FROM $wpdb->posts WHERE post_author = %d AND post_status = 'publish' AND post_type IN ('$post_types')"

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "GRAPHQL_DEBUG".

Sample message

Plugin name "WPGatsby" is different from the name declared in plugin header "WP Gatsby".