Benchmarks
Plugin footprint 83% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | The install procedure must perform silently
Install script ran successfully
Server metrics [RAM: ▲2.15MB] [CPU: ▲21.14ms] Passed 4 tests
Server-side resources used by SecuPress Free — WordPress Security
This plugin does not affect your website's performance
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 4.86 ▲1.40 | 61.92 ▲19.86 |
| Dashboard /wp-admin | 5.69 ▲2.39 | 72.28 ▲17.79 |
| Posts /wp-admin/edit.php | 5.75 ▲2.39 | 69.55 ▲23.12 |
| Add New Post /wp-admin/post-new.php | 8.34 ▲2.45 | 120.53 ▲30.37 |
| Media Library /wp-admin/upload.php | 5.64 ▲2.41 | 64.42 ▲23.77 |
| Scanners 0 /wp-admin/admin.php?page=secupress_scanners | 7.47 | 70.86 |
| Modules /wp-admin/admin.php?page=secupress_modules | 6.07 | 309.99 |
Server storage [IO: ▲3.93MB] [DB: ▲0.01MB] Passed 3 tests
Analyzing filesystem and database footprints of this plugin
This plugin was installed successfully
Filesystem: 347 new files
Database: no new tables, 6 new options
| New WordPress options |
|---|
| widget_recent-comments |
| widget_theysaidso_widget |
| db_upgraded |
| can_compress_scripts |
| widget_recent-posts |
| theysaidso_admin_options |
Browser metrics Passed 4 tests
This is an overview of browser requirements for SecuPress Free — WordPress Security
This plugin renders optimally with no browser resource issues detected
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 3,730 ▲969 | 13.22 ▼1.13 | 4.99 ▲3.25 | 41.81 ▼0.26 |
| Dashboard /wp-admin | 2,781 ▲603 | 5.76 ▲0.10 | 99.71 ▼1.86 | 39.86 ▼5.40 |
| Posts /wp-admin/edit.php | 2,650 ▲547 | 2.12 ▲0.11 | 38.75 ▲3.49 | 37.04 ▼1.42 |
| Add New Post /wp-admin/post-new.php | 1,919 ▲391 | 23.29 ▲0.21 | 665.64 ▼8.65 | 57.52 ▲5.37 |
| Media Library /wp-admin/upload.php | 2,027 ▲627 | 4.34 ▲0.20 | 102.03 ▼4.57 | 41.10 ▼4.77 |
| Scanners 0 /wp-admin/admin.php?page=secupress_scanners | 4,869 | 2.40 | 42.25 | 64.31 |
| Modules /wp-admin/admin.php?page=secupress_modules | 2,570 | 2.31 | 50.02 | 98.75 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 75% from 4 tests
🔸 Tests weight: 35 | Checking the uninstaller removed all traces of the plugin
You still need to fix the following
- This plugin did not uninstall successfully, leaving 6 options in the database
- widget_recent-posts
- widget_recent-comments
- can_compress_scripts
- db_upgraded
- widget_theysaidso_widget
- theysaidso_admin_options
Smoke tests 50% from 4 tests
Server-side errors Passed 1 test
🔹 Test weight: 20 | This is a short smoke test looking for server-side errors
Good news, no errors were detected
SRP 0% from 2 tests
🔹 Tests weight: 20 | A shallow check of the single-responsibility principle; PHP files should perform no action - including output of placeholder text - and trigger no errors when accessed directly
Please fix the following
- 215× PHP files perform the task of outputting text when accessed with GET requests (only 10 are shown):
- > /wp-content/plugins/secupress/free/modules/file-system/settings/file-scanner.php
- > /wp-content/plugins/secupress/free/modules/antispam/plugins/fightspam.php
- > /wp-content/plugins/secupress/free/classes/scanners/class-secupress-scan-bad-old-files.php
- > /wp-content/plugins/secupress/free/modules/schedules/settings.php
- > /wp-content/plugins/secupress/free/admin/scanner-step-3.php
- > /wp-content/plugins/secupress/secupress.php
- > /wp-content/plugins/secupress/free/modules/wordpress-core/plugins/wp-config-constant-debugging.php
- > /wp-content/plugins/secupress/free/modules/alerts/tools.php
- > /wp-content/plugins/secupress/free/modules/wordpress-core/plugins/wp-config-constant-cookiehash.php
- > /wp-content/plugins/secupress/free/modules/schedules/settings/schedules-file-monitoring.php
- 13× PHP files trigger errors when accessed directly with GET requests (only 10 are shown):
- > PHP Fatal error
Uncaught Error: Interface 'Psr\\Log\\LoggerInterface' not found in wp-content/plugins/secupress/vendor/perfopsone/decalog/src/EventsLogger.php:22
- > PHP Fatal error
Uncaught Error: Call to undefined function esc_html__() in wp-content/plugins/secupress/free/admin/scanner-step-1-new.php:10
- > PHP Notice
Undefined variable: module_name in wp-content/plugins/secupress/free/admin/scanner-step-1-all.php on line 5
- > PHP Notice
Undefined variable: is_subsite in wp-content/plugins/secupress/free/admin/scanner-step-1-all.php on line 3
- > PHP Fatal error
Uncaught Error: Interface 'Psr\\Log\\LoggerInterface' not found in wp-content/plugins/secupress/vendor/psr/log/Psr/Log/AbstractLogger.php:12
- > PHP Fatal error
Uncaught Error: Class 'PHPUnit\\Framework\\TestCase' not found in wp-content/plugins/secupress/vendor/psr/log/Psr/Log/Test/LoggerInterfaceTest.php:15
- > PHP Notice
Undefined variable: module_name in wp-content/plugins/secupress/free/admin/scanner-step-1-all.php on line 1
- > PHP Fatal error
Uncaught Error: Class 'Psr\\Log\\AbstractLogger' not found in wp-content/plugins/secupress/vendor/psr/log/Psr/Log/Test/TestLogger.php:57
- > PHP Fatal error
Uncaught Error: Call to undefined function secupress_admin_url() in wp-content/plugins/secupress/free/admin/scanner-step-1-all.php:17
- > PHP Notice
Undefined variable: module_name in wp-content/plugins/secupress/free/admin/scanner-step-1-all.php on line 6
- > PHP Fatal error
User-side errors Passed 1 test
🔹 Test weight: 20 | Just a short smoke test targeting errors on the browser (console and network errors and warnings)
No browser issues were found
Optimizations
Plugin configuration Passed 29 tests
readme.txt Passed 16 tests
The readme.txt file describes your plugin functionality and requirements and it is parsed to prepare the your plugin's listing
5 plugin tags: wordpress security, security plugin, secure, security, malware
secupress/secupress.php Passed 13 tests
The principal PHP file in "SecuPress Free — WordPress Security" v. 2.2.4.1 is loaded by WordPress automatically on each request
68 characters long description:
More than a plugin, the guarantee of a protected website by experts.
Code Analysis 97% from 3 tests
File types Passed 1 test
🔸 Test weight: 35 | This is an overview of file extensions present in this plugin and a short test that no dangerous files are bundled with this plugin
No dangerous file extensions were detected49,969 lines of code in 303 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 250 | 7,784 | 17,614 | 27,605 |
| JavaScript | 24 | 1,826 | 1,206 | 7,843 |
| CSS | 23 | 420 | 347 | 7,207 |
| PO File | 1 | 2,358 | 4,257 | 6,684 |
| Sass | 1 | 99 | 7 | 420 |
| JSON | 1 | 0 | 0 | 111 |
| SVG | 3 | 0 | 0 | 99 |
PHP code 50% from 2 tests
A brief analysis of cyclomatic complexity and code structure for this plugin
The following items need your attention
- Cyclomatic complexity of methods should be reduced to less than 100 (currently 116)
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.43 |
| Average class complexity | 26.75 |
| ▷ Minimum class complexity | 1.00 |
| ▷ Maximum class complexity | 245.00 |
| Average method complexity | 3.58 |
| ▷ Minimum method complexity | 1.00 |
| ▷ Maximum method complexity | 116.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 6 | |
| Interfaces | 3 | |
| Traits | 2 | |
| Classes | 79 | |
| ▷ Abstract classes | 7 | 8.86% |
| ▷ Concrete classes | 72 | 91.14% |
| ▷ Final classes | 1 | 1.39% |
| Methods | 858 | |
| ▷ Static methods | 206 | 24.01% |
| ▷ Public methods | 551 | 64.22% |
| ▷ Protected methods | 295 | 34.38% |
| ▷ Private methods | 12 | 1.40% |
| Functions | 610 | |
| ▷ Named functions | 594 | 97.38% |
| ▷ Anonymous functions | 16 | 2.62% |
| Constants | 124 | |
| ▷ Global constants | 52 | 41.94% |
| ▷ Class constants | 72 | 58.06% |
| ▷ Public constants | 72 | 100.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
Often times overlooked, PNG files can occupy unnecessary space in your plugin
30 PNG files occupy 0.17MB with 0.06MB in potential savings
Potential savings
| Compression of 5 random PNG files using pngquant | |||
|---|---|---|---|
| File | Size - original | Size - compressed | Savings |
| assets/admin/images/logo-pro.png | 5.07KB | 3.01KB | ▼ 40.69% |
| assets/admin/images/secupress-movelogin-error-preview-fr_FR.png | 28.76KB | 9.65KB | ▼ 66.44% |
| free/modules/users-login/plugins/inc/img/backup-codes-icon_2X.png | 6.98KB | 4.57KB | ▼ 34.57% |
| free/modules/users-login/plugins/inc/img/authenticator-Android-phone-icon_2X.png | 5.49KB | 3.52KB | ▼ 35.86% |
| assets/admin/images/bg-logo-sp.png | 3.91KB | 4.31KB | 0.00% |