72% really-simple-ssl

Code Review | Really Simple SSL

WordPress plugin Really Simple SSL scored 72% from 54 tests.

About plugin

  • Plugin page: really-simple-ssl
  • Plugin version: 5.3.1
  • PHP compatiblity: 5.6+
  • PHP version: 7.4.16
  • WordPress compatibility: 4.9-5.9
  • WordPress version: 5.9.2
  • First release: Mar 15, 2015
  • Latest release: Mar 30, 2022
  • Number of updates: 228
  • Update frequency: every 11.3 days
  • Top authors: RogierLankhorst (99.56%)

Code review

54 tests

User reviews

7709 reviews

Install metrics

5,000,000+ active / 87,493,164 total downloads

Benchmarks

Plugin footprint 83% from 16 tests

Installer Passed 1 test

🔺 Critical test (weight: 50) | Checking the installer triggered no errors
Installer ran successfully

Server metrics [RAM: ▲0.70MB] [CPU: ▼280.52ms] Passed 4 tests

An overview of server-side resources used by Really Simple SSL
This plugin has minimal impact on server resources
PageMemory (MB)CPU Time (ms)
Home /3.67 ▲0.1686.90 ▲5.72
Dashboard /wp-admin4.33 ▲0.9270.10 ▲26.24
Posts /wp-admin/edit.php4.56 ▲0.9175.89 ▲20.91
Add New Post /wp-admin/post-new.php7.77 ▲0.80124.29 ▼1,174.96
Media Library /wp-admin/upload.php4.22 ▲0.9267.18 ▲27.45
SSL1 /wp-admin/options-general.php?page=rlrsssl_really_simple_ssl3.8119.06

Server storage [IO: ▲2.06MB] [DB: ▲0.00MB] Passed 3 tests

How much does this plugin use your filesystem and database?
There were no storage issued detected upon installing this plugin
Filesystem: 403 new files
Database: no new tables, 7 new options
New WordPress options
rsssl_activated_plugin
rsssl_remaining_tasks
rsssl_current_version
rsssl_port_check_8443
rsssl_port_check_2222
rlrsssl_options
rsssl_port_check_2082

Browser metrics Passed 4 tests

This is an overview of browser requirements for Really Simple SSL
This plugin renders optimally with no browser resource issues detected
PageNodesMemory (MB)Script (ms)Layout (ms)
Home /3,972 ▲21816.04 ▲0.5511.21 ▲2.623.73 ▼0.05
Dashboard /wp-admin3,075 ▲1966.50 ▲0.09195.39 ▼11.40240.33 ▲8.53
Posts /wp-admin/edit.php2,853 ▲1623.57 ▲0.1385.52 ▼0.43216.42 ▲29.23
Add New Post /wp-admin/post-new.php1,647 ▲1616.63 ▼5.66675.31 ▲49.07203.11 ▼9.95
Media Library /wp-admin/upload.php1,850 ▲1615.78 ▲0.04218.33 ▲2.42290.27 ▲23.60
SSL1 /wp-admin/options-general.php?page=rlrsssl_really_simple_ssl2,1822.9479.92252.09

Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 75% from 4 tests

🔸 Tests weight: 35 | Verifying that this plugin uninstalls completely without leaving any traces
You still need to fix the following
  • This plugin did not uninstall successfully, leaving 6 options in the database
    • rsssl_port_check_8443
    • rsssl_activated_plugin
    • rsssl_remaining_tasks
    • rsssl_port_check_2222
    • rsssl_port_check_2082
    • rsssl_current_version

Smoke tests 25% from 4 tests

Server-side errors 0% from 1 test

🔹 Test weight: 20 | Just a short smoke test targeting errors on the server (in the Apache logs)
These server-side errors were triggered
    • > GET request to /wp-admin/options-general.php?page=rlrsssl_really_simple_ssl
    • > Warning in wp-content/plugins/really-simple-ssl/lets-encrypt/functions.php+206
    fsockopen(): unable to connect to 127.0.0.1:2082 (Connection refused)
    • > GET request to /wp-admin/options-general.php?page=rlrsssl_really_simple_ssl
    • > Warning in wp-content/plugins/really-simple-ssl/lets-encrypt/functions.php+206
    fsockopen(): unable to connect to 127.0.0.1:8443 (Connection refused)
    • > GET request to /wp-admin/options-general.php?page=rlrsssl_really_simple_ssl
    • > Warning in wp-content/plugins/really-simple-ssl/lets-encrypt/functions.php+206
    fsockopen(): unable to connect to 127.0.0.1:2222 (Connection refused)

SRP 0% from 2 tests

🔹 Tests weight: 20 | The single-responsibility principle applies for WordPress plugins as well - please make sure your PHP files perform no actions when accessed directly
Please fix the following items
  • 33× PHP files perform the action of outputting non-empty strings when accessed directly (only 10 are shown):
    • > /wp-content/plugins/really-simple-ssl/grid/templates/header.php
    • > /wp-content/plugins/really-simple-ssl/class-rsssl-wp-cli.php
    • > /wp-content/plugins/really-simple-ssl/lets-encrypt/class-letsencrypt-handler.php
    • > /wp-content/plugins/really-simple-ssl/class-cache.php
    • > /wp-content/plugins/really-simple-ssl/class-certificate.php
    • > /wp-content/plugins/really-simple-ssl/grid/templates/grid-element.php
    • > /wp-content/plugins/really-simple-ssl/class-server.php
    • > /wp-content/plugins/really-simple-ssl/lets-encrypt/wizard/templates/section.php
    • > /wp-content/plugins/really-simple-ssl/lets-encrypt/wizard/class-wizard.php
    • > /wp-content/plugins/really-simple-ssl/class-site-health.php
  • 8× PHP files trigger errors when accessed directly with GET requests:
    • > PHP Fatal error
      Uncaught Error: Call to undefined function add_action() in wp-content/plugins/really-simple-ssl/lets-encrypt/wizard/notices.php:2
    • > PHP Fatal error
      require_once(): Failed opening required 'rsssl_le_pathvendor/autoload.php' (include_path='.:/usr/share/php') in wp-content/plugins/really-simple-ssl/lets-encrypt/integrations/plesk/plesk.php on line 28
    • > PHP Warning
      Use of undefined constant rsssl_le_path - assumed 'rsssl_le_path' (this will throw an Error in a future version of PHP) in wp-content/plugins/really-simple-ssl/lets-encrypt/integrations/plesk/plesk.php on line 28
    • > PHP Fatal error
      Uncaught Error: Class 'PleskX\\Api\\Struct' not found in wp-content/plugins/really-simple-ssl/lets-encrypt/vendor/plesk/api-php-lib/src/Api/Struct/SecretKey/Info.php:6
    • > PHP Warning
      Use of undefined constant rsssl_url - assumed 'rsssl_url' (this will throw an Error in a future version of PHP) in wp-content/plugins/really-simple-ssl/grid/templates/our-plugins-header.php on line 3
    • > PHP Fatal error
      Uncaught Error: Call to undefined function _e() in wp-content/plugins/really-simple-ssl/lets-encrypt/wizard/templates/menu.php:2
    • > PHP Fatal error
      Uncaught Error: Call to undefined function _e() in wp-content/plugins/really-simple-ssl/grid/templates/grid-container.php:6
    • > PHP Warning
      require_once(rsssl_le_pathvendor/autoload.php): failed to open stream: No such file or directory in wp-content/plugins/really-simple-ssl/lets-encrypt/integrations/plesk/plesk.php on line 28

User-side errors Passed 1 test

🔹 Test weight: 20 | A shallow check that no browser errors were triggered
Everything seems fine, but this is not an exhaustive test

Optimizations

Plugin configuration 93% from 29 tests

readme.txt 94% from 16 tests

Perhaps the most important file in your plugin readme.txt gets parsed in order to generate the public listing of your plugin
These attributes need your attention:
  • Tags: You are using too many tags: 11 tag instead of maximum 10
Please take inspiration from this readme.txt

really-simple-ssl/rlrsssl-really-simple-ssl.php 92% from 13 tests

The main PHP file in "Really Simple SSL" ver. 5.3.1 adds more information about the plugin and also serves as the entry point for this plugin
The following require your attention:
  • Main file name: Please rename the main PHP file in this plugin to the plugin slug ("really-simple-ssl.php" instead of "rlrsssl-really-simple-ssl.php")

Code Analysis Passed 3 tests

File types Passed 1 test

🔸 Test weight: 35 | There should be no dangerous file extensions present in any WordPress plugin
Success! There were no dangerous files found in this plugin36,333 lines of code in 354 files:
LanguageFilesBlank linesComment linesLines of code
PHP1843,8313,96616,830
JavaScript1242,58973610,144
CSS20621995,321
LESS95791823,610
JSON400192
Markdown3670137
XML22147
YAML43031
HTML1009
Bourne Shell1116
Dockerfile1105
SVG1001

PHP code Passed 2 tests

Cyclomatic complexity and code structure are the fingerprint of this plugin
There were no cyclomatic complexity issued detected
Cyclomatic complexity
Average complexity per logical line of code0.43
Average class complexity16.46
▷ Minimum class complexity1.00
▷ Maximum class complexity651.00
Average method complexity3.55
▷ Minimum method complexity1.00
▷ Maximum method complexity49.00
Code structure
Namespaces32
Interfaces0
Traits1
Classes131
▷ Abstract classes139.92%
▷ Concrete classes11890.08%
▷ Final classes00.00%
Methods797
▷ Static methods597.40%
▷ Public methods71189.21%
▷ Protected methods435.40%
▷ Private methods435.40%
Functions86
▷ Named functions7890.70%
▷ Anonymous functions89.30%
Constants48
▷ Global constants2041.67%
▷ Class constants2858.33%
▷ Public constants2382.14%

Plugin size Passed 2 tests

Image compression Passed 2 tests

Often times overlooked, PNG files can occupy unnecessary space in your plugin
6 PNG files occupy 0.06MB with 0.02MB in potential savings
Potential savings
Compression of 5 random PNG files using pngquant
FileSize - originalSize - compressedSavings
upgrade/img/definitions.png12.93KB6.84KB▼ 47.09%
upgrade/img/really-simple-ssl.png18.51KB5.85KB▼ 68.41%
assets/icon-128x128.png4.62KB4.82KB0.00%
assets/really-simple-plugins.png5.21KB5.94KB0.00%
upgrade/img/burst.png5.13KB2.20KB▼ 57.17%