Benchmarks
Plugin footprint 83% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | The install procedure must perform silently
Install script ran successfully
Server metrics [RAM: ▲0.01MB] [CPU: ▼7.58ms] Passed 4 tests
Analyzing server-side resources used by Permissions & Security Audit
This plugin does not affect your website's performance
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 3.46 ▲0.00 | 35.46 ▼8.52 |
| Dashboard /wp-admin | 3.32 ▲0.01 | 42.47 ▼9.45 |
| Posts /wp-admin/edit.php | 3.37 ▲0.01 | 47.59 ▼4.50 |
| Add New Post /wp-admin/post-new.php | 5.93 ▲0.04 | 93.66 ▼7.84 |
| Media Library /wp-admin/upload.php | 3.24 ▲0.01 | 34.35 ▼1.85 |
| Permissions & Security Audit /wp-admin/tools.php?page=icwpsa | 3.31 | 33.81 |
Server storage [IO: ▲0.15MB] [DB: ▲0.00MB] Passed 3 tests
How much does this plugin use your filesystem and database?
The plugin installed successfully
Filesystem: 24 new files
Database: no new tables, 6 new options
| New WordPress options |
|---|
| can_compress_scripts |
| db_upgraded |
| widget_recent-comments |
| widget_recent-posts |
| widget_theysaidso_widget |
| theysaidso_admin_options |
Browser metrics Passed 4 tests
This is an overview of browser requirements for Permissions & Security Audit
Minimal impact on browser resources
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 2,833 ▲98 | 13.20 ▼1.22 | 4.91 ▲2.98 | 40.77 ▼8.57 |
| Dashboard /wp-admin | 2,214 ▲23 | 5.86 ▼0.06 | 107.58 ▲7.30 | 39.17 ▼4.74 |
| Posts /wp-admin/edit.php | 2,097 ▲8 | 2.04 ▲0.04 | 40.49 ▲2.40 | 34.48 ▲1.24 |
| Add New Post /wp-admin/post-new.php | 1,521 ▼12 | 23.04 ▼0.06 | 583.37 ▼107.02 | 53.74 ▼8.92 |
| Media Library /wp-admin/upload.php | 1,396 ▲8 | 4.20 ▲0.01 | 98.16 ▼7.12 | 47.04 ▲4.95 |
| Permissions & Security Audit /wp-admin/tools.php?page=icwpsa | 891 | 2.02 | 26.85 | 36.39 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 75% from 4 tests
🔸 Tests weight: 35 | All plugins must uninstall correctly, removing their source code and extra database tables they might have created
Please fix the following items
- Zombie WordPress options were found after uninstall: 6 options
- db_upgraded
- theysaidso_admin_options
- widget_recent-comments
- widget_theysaidso_widget
- can_compress_scripts
- widget_recent-posts
Smoke tests 75% from 4 tests
Server-side errors Passed 1 test
🔹 Test weight: 20 | Just a short smoke test targeting errors on the server (in the Apache logs)
Good news, no errors were detected
SRP 50% from 2 tests
🔹 Tests weight: 20 | A shallow check of the single-responsibility principle; PHP files should perform no action - including output of placeholder text - and trigger no errors when accessed directly
Please fix the following items
- 3× PHP files trigger errors when accessed directly with GET requests:
- > PHP Fatal error
Uncaught Error: Class 'Innocow\\Security_Audit\\Services\\Audit_Entity' not found in wp-content/plugins/permissions-security-audit/src/services/audit_entity_ownership.php:12
- > PHP Fatal error
Uncaught Error: Class 'Innocow\\Security_Audit\\Services\\Audit_Entity' not found in wp-content/plugins/permissions-security-audit/src/services/audit_entity_permissions.php:12
- > PHP Fatal error
Uncaught Error: Class 'Innocow\\Security_Audit\\Services\\Audit_Entity' not found in wp-content/plugins/permissions-security-audit/src/services/audit_entity_folders.php:12
- > PHP Fatal error
User-side errors Passed 1 test
🔹 Test weight: 20 | A shallow check that no browser errors were triggered
There were no browser issues found
Optimizations
Plugin configuration 93% from 29 tests
readme.txt Passed 16 tests
The readme.txt file is undoubtedly the most important file in your plugin, preparing it for public listing on WordPress.org
10 plugin tags: permission, secure, file, security, permissions...
permissions-security-audit/permissions-security-audit.php 85% from 13 tests
The principal PHP file in "Permissions & Security Audit" v. 1.2 is loaded by WordPress automatically on each request
Please make the necessary changes and fix the following:
- Description: Keep the plugin description shorter than 140 characters (currently 187 characters long)
- Text Domain: Since WordPress version 4.6 the text domain is optional; if specified, it must be the same as the plugin slug
Code Analysis Passed 3 tests
File types Passed 1 test
🔸 Test weight: 35 | A short review of files and their extensions; it is not recommended to include executable files
Good job! No executable or dangerous file extensions detected2,655 lines of code in 21 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 18 | 1,221 | 570 | 2,316 |
| JavaScript | 1 | 103 | 0 | 155 |
| PO File | 1 | 42 | 49 | 98 |
| CSS | 1 | 24 | 0 | 86 |
PHP code Passed 2 tests
This is a very shot review of cyclomatic complexity and code structure
Although this was not an exhaustive test, there were no cyclomatic complexity issues detected
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.38 |
| Average class complexity | 11.88 |
| ▷ Minimum class complexity | 1.00 |
| ▷ Maximum class complexity | 78.00 |
| Average method complexity | 3.80 |
| ▷ Minimum method complexity | 1.00 |
| ▷ Maximum method complexity | 77.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 6 | |
| Interfaces | 0 | |
| Traits | 0 | |
| Classes | 17 | |
| ▷ Abstract classes | 1 | 5.88% |
| ▷ Concrete classes | 16 | 94.12% |
| ▷ Final classes | 0 | 0.00% |
| Methods | 73 | |
| ▷ Static methods | 33 | 45.21% |
| ▷ Public methods | 57 | 78.08% |
| ▷ Protected methods | 12 | 16.44% |
| ▷ Private methods | 4 | 5.48% |
| Functions | 10 | |
| ▷ Named functions | 3 | 30.00% |
| ▷ Anonymous functions | 7 | 70.00% |
| Constants | 4 | |
| ▷ Global constants | 4 | 100.00% |
| ▷ Class constants | 0 | 0.00% |
| ▷ Public constants | 0 | 0.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
Using a strong compression for your PNG files is a great way to speed-up your plugin
There were not PNG files found in your plugin