Benchmarks
Plugin footprint 65% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | It is important to correctly install your plugin, without throwing errors or notices
The plugin installed gracefully, with no errors
Server metrics [RAM: ▲0.40MB] [CPU: ▲12.80ms] Passed 4 tests
An overview of server-side resources used by Security & Malware scan by CleanTalk
No issues were detected with server-side resource usage
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 3.64 ▲0.18 | 44.11 ▲3.49 |
| Dashboard /wp-admin | 3.78 ▲0.48 | 63.61 ▲8.72 |
| Posts /wp-admin/edit.php | 3.82 ▲0.47 | 67.05 ▲20.16 |
| Add New Post /wp-admin/post-new.php | 6.37 ▲0.49 | 115.15 ▲24.52 |
| Media Library /wp-admin/upload.php | 3.70 ▲0.47 | 55.34 ▲18.82 |
| Security by CleanTalk /wp-admin/options-general.php?page=spbc | 4.56 | 59.95 |
Server storage [IO: ▲7.22MB] [DB: ▲0.03MB] 67% from 3 tests
A short overview of filesystem and database impact
It is recommended to fix the following issues
- Illegal file modification detected: 1 file (0.58KB) outside of "wp-content/plugins/security-malware-firewall/" and "wp-content/uploads/"
- (new file) wp-content/mu-plugins/0security-malware-firewall-mu.php
Filesystem: 950 new files
Database: 19 new tables, 10 new options
| New tables |
|---|
| wp_spbc_bfp_blocked |
| wp_spbc_backuped_files |
| wp_spbc_sessions |
| wp_spbc_traffic_control_logs |
| wp_spbc_scan_signatures |
| wp_spbc_auth_logs |
| wp_spbc_important_files |
| wp_spbc_scan_results |
| wp_spbc_monitoring_users |
| wp_spbc_firewall_data |
| ... |
| New WordPress options |
|---|
| spbc_counter__security |
| spbc_data |
| widget_recent-posts |
| can_compress_scripts |
| widget_theysaidso_widget |
| db_upgraded |
| spbc_cron_last_start |
| spbc_cron |
| theysaidso_admin_options |
| widget_recent-comments |
Browser metrics Passed 4 tests
A check of browser resources used by Security & Malware scan by CleanTalk
Minimal impact on browser resources
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 3,204 ▲457 | 14.97 ▲0.65 | 4.74 ▲3.04 | 39.77 ▼4.08 |
| Dashboard /wp-admin | 2,503 ▲323 | 6.39 ▲0.74 | 141.27 ▲43.51 | 94.46 ▲47.62 |
| Posts /wp-admin/edit.php | 2,331 ▲231 | 2.06 ▲0.09 | 47.68 ▲6.61 | 37.51 ▲1.15 |
| Add New Post /wp-admin/post-new.php | 1,743 ▲217 | 23.06 ▼0.51 | 665.80 ▼13.80 | 54.13 ▲7.63 |
| Media Library /wp-admin/upload.php | 1,627 ▲227 | 4.24 ▲0.03 | 103.54 ▲2.20 | 43.01 ▼2.52 |
| Security by CleanTalk /wp-admin/options-general.php?page=spbc | 2,310 | 3.26 | 84.97 | 66.47 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.34MB] 50% from 4 tests
🔸 Tests weight: 35 | Checking the uninstaller removed all traces of the plugin
The following items require your attention
- Zombie tables detected upon uninstall: 19 tables
- wp_spbc_monitoring_users
- wp_spbc_sessions
- wp_spbc_backuped_files
- wp_spbc_firewall_data
- wp_spbc_important_files
- wp_spbc_firewall_logs
- wp_spbc_scan_links_logs
- wp_spbc_firewall__personal_countries
- wp_spbc_cure_log
- wp_spbc_scan_signatures
- ...
- This plugin did not uninstall successfully, leaving 11 options in the database
- can_compress_scripts
- widget_theysaidso_widget
- widget_recent-comments
- spbc_cron
- spbc_counter__security
- spbc_data
- widget_recent-posts
- db_upgraded
- spbc_cron_id
- theysaidso_admin_options
- ...
Smoke tests 50% from 4 tests
Server-side errors Passed 1 test
🔹 Test weight: 20 | A shallow check that no server-side errors were triggered
Good news, no errors were detected
SRP 0% from 2 tests
🔹 Tests weight: 20 | A shallow check of the single-responsibility principle; PHP files should perform no action - including output of placeholder text - and trigger no errors when accessed directly
Please take a closer look at the following
- 10× GET requests to PHP files return non-empty strings:
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/textarea.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/radio.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/hidden.php
- > /wp-content/plugins/security-malware-firewall/security-malware-firewall.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/select.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/checkbox.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/number.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/time.php
- > /wp-content/plugins/security-malware-firewall/install/security-malware-firewall-mu.php
- > /wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/text.php
- 208× GET requests to PHP files trigger server-side errors or Error 500 responses (only 10 are shown):
- > PHP Notice
Undefined variable: data in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/number.php on line 22
- > PHP Fatal error
Trait 'CleantalkSP\\Templates\\Singleton' not found in wp-content/plugins/security-malware-firewall/lib/CleantalkSP/Common/Helpers/HTTP.php on line 23
- > PHP Fatal error
Uncaught Error: Class 'CleantalkSP\\SpbctWP\\AdminBannersModule\\AdminBanners\\AdminBannerAbstract' not found in wp-content/plugins/security-malware-firewall/lib/CleantalkSP/SpbctWP/AdminBannersModule/AdminBanners/AdminBannerRenew.php:8
- > PHP Notice
Trying to access array offset on value of type null in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/text.php on line 17
- > PHP Notice
Undefined variable: data in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/text.php on line 1
- > PHP Notice
Undefined variable: data in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/time.php on line 7
- > PHP Notice
Undefined variable: data in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/textarea.php on line 25
- > PHP Notice
Trying to access array offset on value of type null in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/checkbox.php on line 13
- > PHP Fatal error
Uncaught Error: Class 'CleantalkSP\\SpbctWP\\Scanner\\ScanningStagesModule\\Stages\\ScanningStageAbstract' not found in wp-content/plugins/security-malware-firewall/lib/CleantalkSP/SpbctWP/Scanner/ScanningStagesModule/Stages/GetDeniedHashes.php:7
- > PHP Notice
Trying to access array offset on value of type null in wp-content/plugins/security-malware-firewall/inc/admin-templates/field-templates/text.php on line 10
- > PHP Notice
User-side errors Passed 1 test
🔹 Test weight: 20 | This is a smoke test targeting browser errors/issues
Everything seems fine, but this is not an exhaustive test
Optimizations
Plugin configuration 96% from 29 tests
readme.txt Passed 16 tests
Perhaps the most important file in your plugin readme.txt gets parsed in order to generate the public listing of your plugin
5 plugin tags: firewall, malware, brute force, security, wordpress security
security-malware-firewall/security-malware-firewall.php 92% from 13 tests
"Security & Malware scan by CleanTalk" version 2.123's primary PHP file adds more information about the plugin and serves as the entry point for WordPress
Please take the time to fix the following:
- Description: Please keep the plugin description shorter than 140 characters (currently 186 characters long)
Code Analysis Passed 3 tests
File types Passed 1 test
🔸 Test weight: 35 | An overview of files in this plugin; executable files are not allowed
No dangerous file extensions were detected45,699 lines of code in 891 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 203 | 5,713 | 8,509 | 31,684 |
| JavaScript | 408 | 760 | 2,396 | 11,123 |
| PO File | 1 | 317 | 331 | 1,003 |
| Markdown | 6 | 129 | 0 | 636 |
| CSS | 257 | 108 | 1,233 | 585 |
| JSON | 8 | 0 | 0 | 245 |
| HTML | 1 | 7 | 3 | 147 |
| SVG | 1 | 114 | 0 | 126 |
| XML | 5 | 10 | 14 | 123 |
| YAML | 1 | 7 | 0 | 27 |
PHP code Passed 2 tests
Analyzing cyclomatic complexity and code structure
All good! No complexity issues found
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.45 |
| Average class complexity | 19.99 |
| ▷ Minimum class complexity | 1.00 |
| ▷ Maximum class complexity | 342.00 |
| Average method complexity | 3.81 |
| ▷ Minimum method complexity | 1.00 |
| ▷ Maximum method complexity | 87.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 40 | |
| Interfaces | 1 | |
| Traits | 2 | |
| Classes | 159 | |
| ▷ Abstract classes | 10 | 6.29% |
| ▷ Concrete classes | 149 | 93.71% |
| ▷ Final classes | 1 | 0.67% |
| Methods | 1,116 | |
| ▷ Static methods | 432 | 38.71% |
| ▷ Public methods | 917 | 82.17% |
| ▷ Protected methods | 101 | 9.05% |
| ▷ Private methods | 98 | 8.78% |
| Functions | 304 | |
| ▷ Named functions | 277 | 91.12% |
| ▷ Anonymous functions | 27 | 8.88% |
| Constants | 86 | |
| ▷ Global constants | 58 | 67.44% |
| ▷ Class constants | 28 | 32.56% |
| ▷ Public constants | 28 | 100.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
PNG files should be compressed to save space and minimize bandwidth usage
16 PNG files occupy 0.19MB with 0.06MB in potential savings
Potential savings
| Compression of 5 random PNG files using pngquant | |||
|---|---|---|---|
| File | Size - original | Size - compressed | Savings |
| images/att_triangle.png | 0.54KB | 0.49KB | ▼ 8.99% |
| images/yes.png | 0.56KB | 0.55KB | ▼ 1.91% |
| js/lib/highlight/styles/brown-papersq.png | 17.77KB | 9.92KB | ▼ 44.16% |
| images/logo_small.png | 6.40KB | 2.49KB | ▼ 61.14% |
| css/images/ui-icons_444444_256x240.png | 6.83KB | 4.17KB | ▼ 38.86% |