Smush – Image Optimization, Compression, Lazy Load, WebP & CDN

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "WP_SHARED_UI_VERSION".

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$old_hook".

Sample message

Unescaped parameter $column used in $wpdb->query()\n$column assigned unsafely at line 154.

Sample message

Unescaped parameter $ignored_query used in $wpdb->get_col()\n$ignored_query assigned unsafely at line 943.

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$file['error']'.

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Could not find $_tests_dir/includes/functions.php, have you run bin/install-wp-tests.sh ?"'.

Sample message

$_GET['page'] not unslashed before sanitization. Use wp_unslash() or similar

Sample message

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

Sample message

Linking directly to 5 stars reviews is not allowed.

Sample message

error_log() found. Debug code should not normally be used in production.

Sample message

unlink() is discouraged. Use wp_delete_file() to delete a file.

Sample message

Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.

Sample message

Detected usage of meta_query, possible slow query.