Benchmarks
Plugin footprint 65% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | Verifying that this plugin installs correctly without errors
Install script ran successfully
Server metrics [RAM: ▲0.11MB] [CPU: ▼3.07ms] Passed 4 tests
This is a short check of server-side resources used by Security Headers
Server-side resource usage in normal parameters
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 3.54 ▲0.08 | 37.01 ▼7.30 |
| Dashboard /wp-admin | 3.42 ▲0.11 | 47.05 ▲4.21 |
| Posts /wp-admin/edit.php | 3.53 ▲0.18 | 47.78 ▲0.14 |
| Add New Post /wp-admin/post-new.php | 6.00 ▲0.11 | 81.50 ▼5.26 |
| Media Library /wp-admin/upload.php | 3.34 ▲0.11 | 37.35 ▲0.15 |
| HTTP Headers /wp-admin/options-general.php?page=security_headers | 3.31 | 34.19 |
Server storage [IO: ▲0.04MB] [DB: ▲0.00MB] Passed 3 tests
Input-output and database impact of this plugin
This plugin installed successfully
Filesystem: 4 new files
Database: no new tables, 6 new options
| New WordPress options |
|---|
| theysaidso_admin_options |
| widget_recent-posts |
| db_upgraded |
| can_compress_scripts |
| widget_recent-comments |
| widget_theysaidso_widget |
Browser metrics Passed 4 tests
An overview of browser requirements for Security Headers
Minimal impact on browser resources
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 2,793 ▲7 | 14.28 ▼0.07 | 1.68 ▼0.48 | 39.22 ▼7.84 |
| Dashboard /wp-admin | 2,199 ▲19 | 5.72 ▲0.14 | 84.83 ▼2.45 | 39.03 ▼1.29 |
| Posts /wp-admin/edit.php | 2,101 ▲1 | 1.99 ▲0.00 | 35.96 ▼8.39 | 30.46 ▼5.30 |
| Add New Post /wp-admin/post-new.php | 1,529 ▲3 | 23.10 ▼0.10 | 583.65 ▼29.17 | 66.69 ▲14.12 |
| Media Library /wp-admin/upload.php | 1,401 ▲1 | 4.17 ▼0.07 | 99.53 ▼6.00 | 46.48 ▲1.79 |
| HTTP Headers /wp-admin/options-general.php?page=security_headers | 988 | 2.00 | 23.24 | 28.74 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 50% from 4 tests
🔸 Tests weight: 35 | Verifying that this plugin uninstalls completely without leaving any traces
The following items require your attention
- This plugin did not uninstall without warnings or errors
- > User deprecated in wp-includes/functions.php+5737
Function unregister_setting was called with an argument that is deprecated since version 4.7.0! $sanitize_callback is deprecated. The callback from register_setting() is used instead.
- This plugin did not uninstall successfully, leaving 6 options in the database
- widget_recent-posts
- can_compress_scripts
- theysaidso_admin_options
- db_upgraded
- widget_recent-comments
- widget_theysaidso_widget
Smoke tests 75% from 4 tests
Server-side errors Passed 1 test
🔹 Test weight: 20 | Just a short smoke test targeting errors on the server (in the Apache logs)
The smoke test was a success, however most plugin functionality was not tested
SRP 50% from 2 tests
🔹 Tests weight: 20 | It is important to ensure that your PHP files perform no action when accessed directly, respecting the single-responsibility principle
The following issues need your attention
- 1× PHP files trigger server errors when accessed directly:
- > PHP Fatal error
Uncaught Error: Call to undefined function add_action() in wp-content/plugins/security-headers/security_headers.php:100
- > PHP Fatal error
User-side errors Passed 1 test
🔹 Test weight: 20 | Just a short smoke test targeting errors on the browser (console and network errors and warnings)
No browser errors were detected
Optimizations
Plugin configuration 96% from 29 tests
readme.txt Passed 16 tests
Often overlooked, readme.txt is one of the most important files in your plugin
4 plugin tags: nosniff, https, tls, hsts
security-headers/security_headers.php 92% from 13 tests
The main PHP file in "Security Headers" ver. 1.1 adds more information about the plugin and also serves as the entry point for this plugin
Please make the necessary changes and fix the following:
- Main file name: It is recommended to name the main PHP file as the plugin slug ("security-headers.php" instead of "security_headers.php")
Code Analysis Passed 3 tests
File types Passed 1 test
🔸 Test weight: 35 | A short review of files and their extensions; it is not recommended to include executable files
Good job! No executable or dangerous file extensions detected301 lines of code in 2 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 1 | 52 | 21 | 292 |
| Markdown | 1 | 7 | 0 | 9 |
PHP code Passed 2 tests
An overview of cyclomatic complexity and code structure
No cyclomatic complexity issues were detected for this plugin
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.14 |
| Average class complexity | 0.00 |
| ▷ Minimum class complexity | 0.00 |
| ▷ Maximum class complexity | 0.00 |
| Average method complexity | 0.00 |
| ▷ Minimum method complexity | 0.00 |
| ▷ Maximum method complexity | 0.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 0 | |
| Interfaces | 0 | |
| Traits | 0 | |
| Classes | 0 | |
| ▷ Abstract classes | 0 | 0.00% |
| ▷ Concrete classes | 0 | 0.00% |
| ▷ Final classes | 0 | 0.00% |
| Methods | 0 | |
| ▷ Static methods | 0 | 0.00% |
| ▷ Public methods | 0 | 0.00% |
| ▷ Protected methods | 0 | 0.00% |
| ▷ Private methods | 0 | 0.00% |
| Functions | 30 | |
| ▷ Named functions | 30 | 100.00% |
| ▷ Anonymous functions | 0 | 0.00% |
| Constants | 0 | |
| ▷ Global constants | 0 | 0.00% |
| ▷ Class constants | 0 | 0.00% |
| ▷ Public constants | 0 | 0.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
It is recommended to compress PNG files in your plugin to minimize bandwidth usage
There were not PNG files found in your plugin