Benchmarks
Plugin footprint 65% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | The install procedure must perform silently
This plugin's installer ran successfully
Server metrics [RAM: ▼1.90MB] [CPU: ▼53.03ms] Passed 4 tests
An overview of server-side resources used by Server Security Scan
This plugin has minimal impact on server resources
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 3.49 ▲0.03 | 37.04 ▼3.10 |
| Dashboard /wp-admin | 2.05 ▼1.26 | 6.26 ▼49.05 |
| Posts /wp-admin/edit.php | 2.05 ▼1.31 | 5.96 ▼38.96 |
| Add New Post /wp-admin/post-new.php | 2.05 ▼3.84 | 5.05 ▼95.06 |
| Media Library /wp-admin/upload.php | 2.05 ▼1.18 | 4.71 ▼29.03 |
| Run Checks /wp-admin/admin.php?page=wpu-ssc-check | 2.05 | 5.35 |
| PHPInfo /wp-admin/admin.php?page=wpu-ssc-phpinfo | 2.05 | 5.54 |
Server storage [IO: ▲0.02MB] [DB: ▲0.00MB] Passed 3 tests
Input-output and database impact of this plugin
This plugin installed successfully
Filesystem: 4 new files
Database: no new tables, 6 new options
| New WordPress options |
|---|
| widget_recent-posts |
| widget_recent-comments |
| db_upgraded |
| can_compress_scripts |
| theysaidso_admin_options |
| widget_theysaidso_widget |
Browser metrics Passed 4 tests
A check of browser resources used by Server Security Scan
There were no issues detected in relation to browser resource usage
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 2,829 ▲94 | 14.47 ▼0.12 | 1.75 ▼0.31 | 43.24 ▼1.37 |
| Dashboard /wp-admin | 2,232 ▲44 | 5.77 ▼0.13 | 94.81 ▼17.02 | 39.72 ▼1.82 |
| Posts /wp-admin/edit.php | 2,118 ▲29 | 2.00 ▼0.06 | 40.15 ▲1.39 | 35.39 ▲3.72 |
| Add New Post /wp-admin/post-new.php | 1,561 ▲47 | 18.50 ▲0.97 | 606.35 ▼37.73 | 58.34 ▲7.81 |
| Media Library /wp-admin/upload.php | 1,411 ▲29 | 4.22 ▲0.10 | 95.27 ▼4.07 | 43.21 ▲1.76 |
| Run Checks /wp-admin/admin.php?page=wpu-ssc-check | 12,943 | 1.20 | 32.04 | 102.96 |
| PHPInfo /wp-admin/admin.php?page=wpu-ssc-phpinfo | 6,179 | 1.89 | 32.09 | 70.86 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 50% from 4 tests
🔸 Tests weight: 35 | Verifying that this plugin uninstalls completely without leaving any traces
Please fix the following items
- Uninstall procedure validation failed for this plugin
- > User notice in wp-includes/functions.php+5905
Function wp_enqueue_script was called incorrectly. Scripts and styles should not be registered or enqueued until the wp_enqueue_scripts, admin_enqueue_scripts, or login_enqueue_scripts hooks. This notice was triggered by the jquery handle. Please see Debugging in WordPress for more information. (This message was added in version 3.3.0.)
- This plugin did not uninstall successfully, leaving 6 options in the database
- db_upgraded
- can_compress_scripts
- widget_recent-posts
- widget_theysaidso_widget
- widget_recent-comments
- theysaidso_admin_options
Smoke tests 50% from 4 tests
Server-side errors 0% from 1 test
🔹 Test weight: 20 | A shallow check that no server-side errors were triggered
Please fix the following server-side errors
- 2 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=wpu-ssc-phpinfo
- > User notice in wp-includes/functions.php+5905
Function wp_enqueue_script was called incorrectly. Scripts and styles should not be registered or enqueued until the wp_enqueue_scripts, admin_enqueue_scripts, or login_enqueue_scripts hooks. This notice was triggered by the jquery handle. Please see Debugging in WordPress for more information. (This message was added in version 3.3.0.)
- 2 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=wpu-ssc-phpinfo
- > User notice in wp-includes/functions.php+5905
Function wp_register_style was called incorrectly. Scripts and styles should not be registered or enqueued until the wp_enqueue_scripts, admin_enqueue_scripts, or login_enqueue_scripts hooks. This notice was triggered by the wpu_ssc_style handle. Please see Debugging in WordPress for more information. (This message was added in version 3.3.0.)
- 2 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=wpu-ssc-phpinfo
- > User notice in wp-includes/functions.php+5905
Function wp_enqueue_style was called incorrectly. Scripts and styles should not be registered or enqueued until the wp_enqueue_scripts, admin_enqueue_scripts, or login_enqueue_scripts hooks. This notice was triggered by the wpu_ssc_style handle. Please see Debugging in WordPress for more information. (This message was added in version 3.3.0.)
SRP 50% from 2 tests
🔹 Tests weight: 20 | SRP (Single-Responsibility Principle) - PHP files must act as libraries and never output text or perform any action when accessed directly in a browser
Please fix the following items
- 2× PHP files output non-empty strings when accessed directly via GET requests:
- > /wp-content/plugins/server-security-scan/security.php
- > /wp-content/plugins/server-security-scan/check.php
User-side errors Passed 1 test
🔹 Test weight: 20 | A shallow check that no browser errors were triggered
Everything seems fine, but this is not an exhaustive test
Optimizations
Plugin configuration 83% from 29 tests
readme.txt 81% from 16 tests
The readme.txt file uses markdown syntax to describe your plugin to the world
These attributes need to be fixed:
- Tags: Please delete some tags, you are using 27 tag instead of maximum 10
- Screenshots: Screenshot #1 (Server Security Scan - Result Page) image missing
- Donate link: Invalid URI ("")
server-security-scan/security.php 85% from 13 tests
The main PHP script in "Server Security Scan" version 1.0.1 is automatically included on every request by WordPress
Please take the time to fix the following:
- Main file name: It is recommended to name the main PHP file as the plugin slug ("server-security-scan.php" instead of "security.php")
- Description: Please keep the plugin description shorter than 140 characters (currently 423 characters long)
Code Analysis Passed 3 tests
File types Passed 1 test
🔸 Test weight: 35 | A short glimpse at programming languages used with this plugin and a check that no dangerous files are present
Good job! No executable or dangerous file extensions detected159 lines of code in 3 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 2 | 37 | 21 | 151 |
| CSS | 1 | 1 | 0 | 8 |
PHP code Passed 2 tests
Analyzing logical lines of code, cyclomatic complexity, and other code metrics
This plugin has no cyclomatic complexity problems
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.51 |
| Average class complexity | 0.00 |
| ▷ Minimum class complexity | 0.00 |
| ▷ Maximum class complexity | 0.00 |
| Average method complexity | 0.00 |
| ▷ Minimum method complexity | 0.00 |
| ▷ Maximum method complexity | 0.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 0 | |
| Interfaces | 0 | |
| Traits | 0 | |
| Classes | 0 | |
| ▷ Abstract classes | 0 | 0.00% |
| ▷ Concrete classes | 0 | 0.00% |
| ▷ Final classes | 0 | 0.00% |
| Methods | 0 | |
| ▷ Static methods | 0 | 0.00% |
| ▷ Public methods | 0 | 0.00% |
| ▷ Protected methods | 0 | 0.00% |
| ▷ Private methods | 0 | 0.00% |
| Functions | 3 | |
| ▷ Named functions | 3 | 100.00% |
| ▷ Anonymous functions | 0 | 0.00% |
| Constants | 7 | |
| ▷ Global constants | 7 | 100.00% |
| ▷ Class constants | 0 | 0.00% |
| ▷ Public constants | 0 | 0.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
It is recommended to compress PNG files in your plugin to minimize bandwidth usage
PNG images were not found in this plugin