Benchmarks
Plugin footprint 65% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | All plugins must install correctly, without throwing any errors, warnings, or notices
This plugin's installer ran successfully
Server metrics [RAM: ▲0.40MB] [CPU: ▼2.68ms] Passed 4 tests
Analyzing server-side resources used by What's going on
Normal server usage
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 3.89 ▲0.43 | 43.29 ▲4.08 |
| Dashboard /wp-admin | 3.73 ▲0.43 | 48.51 ▼1.16 |
| Posts /wp-admin/edit.php | 3.78 ▲0.43 | 49.60 ▼1.69 |
| Add New Post /wp-admin/post-new.php | 6.25 ▲0.36 | 85.18 ▼10.12 |
| Media Library /wp-admin/upload.php | 3.59 ▲0.36 | 35.83 ▲2.25 |
| What's going on /wp-admin/tools.php?page=whats-going-on | 3.69 | 36.54 |
Server storage [IO: ▲7.97MB] [DB: ▲0.00MB] 67% from 3 tests
A short overview of filesystem and database impact
Please try to fix the following items
- You have illegally modified 1 file (19.09KB) outside of "wp-content/plugins/whats-going-on/" and "wp-content/uploads/"
- (new file) waf-going-on.php
Filesystem: 72 new files
Database: 3 new tables, 21 new options
| New tables |
|---|
| wp_whats_going_on_bans |
| wp_whats_going_on |
| wp_whats_going_on_block |
| New WordPress options |
|---|
| wgo_days_to_store |
| can_compress_scripts |
| wgo_notify_requests_more_than_3sd |
| theysaidso_admin_options |
| wgo_notify_requests_more_than_sd |
| wgo_limit_requests_per_minute |
| wgo_notify_requests_more_than_2sd |
| wgo_autoreload_datatables |
| wgo_db_version |
| wgo_notification_email |
| ... |
Browser metrics Passed 4 tests
Checking browser requirements for What's going on
This plugin renders optimally with no browser resource issues detected
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 2,847 ▲101 | 14.74 ▲0.36 | 2.18 ▲0.55 | 43.12 ▲2.62 |
| Dashboard /wp-admin | 2,219 ▲28 | 5.80 ▼0.06 | 94.20 ▼14.15 | 43.06 ▲0.62 |
| Posts /wp-admin/edit.php | 2,105 ▲16 | 2.06 ▲0.07 | 38.98 ▲2.60 | 36.11 ▲3.92 |
| Add New Post /wp-admin/post-new.php | 1,540 ▼2 | 23.32 ▲5.03 | 676.98 ▲58.03 | 49.91 ▼1.70 |
| Media Library /wp-admin/upload.php | 1,401 ▲16 | 4.32 ▲0.08 | 96.62 ▼2.32 | 40.64 ▼3.27 |
| What's going on /wp-admin/tools.php?page=whats-going-on | 5,066 | 8.05 | 298.60 | 65.31 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 50% from 4 tests
🔸 Tests weight: 35 | Verifying that this plugin uninstalls completely without leaving any traces
The following items require your attention
- The plugin did not uninstall gracefully
- > Warning in wp-content/plugins/whats-going-on/whats-going-on.php+268
file_get_contents(.user.ini): failed to open stream: No such file or directory
- The uninstall procedure has failed, leaving 9 options in the database
- widget_recent-comments
- wgo_waf_installed
- theysaidso_admin_options
- wgo_autoreload_datatables
- can_compress_scripts
- widget_recent-posts
- widget_theysaidso_widget
- db_upgraded
- wgo_notify_requests_less_than_x_percent
Smoke tests 25% from 4 tests
Server-side errors 0% from 1 test
🔹 Test weight: 20 | A shallow check that no server-side errors were triggered
Almost there, just fix the following server-side errors
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Warning in wp-content/plugins/whats-going-on/view/sub-main-chart.php+13
Use of undefined constant WGO_WP_UPLOAD_DIR - assumed 'WGO_WP_UPLOAD_DIR' (this will throw an Error in a future version of PHP)
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Warning in wp-content/plugins/whats-going-on/view/sub-main-chart.php+243
Division by zero
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 0
- 20 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+82
Trying to get property 'times' of non-object
- 20 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+84
Trying to get property 'remote_ip' of non-object
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 1
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 2
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 3
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 4
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 5
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 6
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 7
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 8
- 2 occurences, only the last one shown
- > GET request to /wp-admin/tools.php?page=whats-going-on
- > Notice in wp-content/plugins/whats-going-on/view/sub-suspicious-behaviors.php+78
Undefined offset: 9
SRP 0% from 2 tests
🔹 Tests weight: 20 | The single-responsibility principle: PHP files have to remain inert when accessed directly, throwing no errors and performing no actions
Almost there! Just fix the following items
- 27× PHP files perform the task of outputting text when accessed with GET requests (only 10 are shown):
- > /wp-content/plugins/whats-going-on/view/sub-popup-info.php
- > /wp-content/plugins/whats-going-on/view/sub-banned-ips.php
- > /wp-content/plugins/whats-going-on/view/ajax-last-urls-doing-404s.php
- > /wp-content/plugins/whats-going-on/view/sub-unique-ips.php
- > /wp-content/plugins/whats-going-on/view/whats-going-on-view.php
- > /wp-content/plugins/whats-going-on/whats-going-on-messages.php
- > /wp-content/plugins/whats-going-on/whats-going-on-ajax-controller.php
- > /wp-content/plugins/whats-going-on/uninstall.php
- > /wp-content/plugins/whats-going-on/view/ajax-last-blocks.php
- > /wp-content/plugins/whats-going-on/view/ajax-last-ips-doing-404s.php
- 16× PHP files trigger server-side errors or warnings when accessed directly (only 10 are shown):
- > PHP Warning
Use of undefined constant WGO_WP_UPLOAD_DIR - assumed 'WGO_WP_UPLOAD_DIR' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 66
- > PHP Warning
Use of undefined constant WGO_WP_UPLOAD_DIR - assumed 'WGO_WP_UPLOAD_DIR' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 65
- > PHP Warning
Use of undefined constant WGO_WP_UPLOAD_DIR - assumed 'WGO_WP_UPLOAD_DIR' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 61
- > PHP Warning
Use of undefined constant WGO_DB_PASSWORD - assumed 'WGO_DB_PASSWORD' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 83
- > PHP Warning
include_once(): Failed opening 'WGO_PLUGIN_DIR_PATHlib/geoip2.phar' for inclusion (include_path='.:/usr/share/php') in wp-content/plugins/whats-going-on/waf-going-on.php on line 12
- > PHP Warning
Use of undefined constant WGO_DB_HOST - assumed 'WGO_DB_HOST' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 83
- > PHP Warning
Use of undefined constant WGO_TABLE_PREFIX - assumed 'WGO_TABLE_PREFIX' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 84
- > PHP Warning
Use of undefined constant WGO_DB_NAME - assumed 'WGO_DB_NAME' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 84
- > PHP Warning
mysqli::__construct(): (HY000/2002): php_network_getaddresses: getaddrinfo failed: Temporary failure in name resolution in wp-content/plugins/whats-going-on/waf-going-on.php on line 83
- > PHP Warning
Use of undefined constant WGO_WP_UPLOAD_DIR - assumed 'WGO_WP_UPLOAD_DIR' (this will throw an Error in a future version of PHP) in wp-content/plugins/whats-going-on/waf-going-on.php on line 63
- > PHP Warning
User-side errors Passed 1 test
🔹 Test weight: 20 | A shallow check that no browser errors were triggered
There were no browser issues found
Optimizations
Plugin configuration Passed 29 tests
readme.txt Passed 16 tests
Don't ignore readme.txt as it is the file that instructs WordPress.org on how to present your plugin to the world
4 plugin tags: firewall, waf, wordpress, security
whats-going-on/whats-going-on.php Passed 13 tests
The primary PHP file in "What's going on" version 1.3 is used by WordPress to initiate all plugin functionality
98 characters long description:
A tiny WAF, a tool for control and showing what kind of requests are being made to your WordPress.
Code Analysis Passed 3 tests
File types Passed 1 test
🔸 Test weight: 35 | Executable files are considered dangerous and should not be included with any WordPress plugin
Good job! No executable or dangerous file extensions detected13,300 lines of code in 45 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| JSON | 2 | 0 | 0 | 8,975 |
| PHP | 28 | 473 | 182 | 3,263 |
| JavaScript | 8 | 76 | 120 | 660 |
| Markdown | 3 | 106 | 0 | 237 |
| Sass | 1 | 25 | 1 | 134 |
| CSS | 3 | 12 | 12 | 31 |
PHP code Passed 2 tests
This is a short overview of cyclomatic complexity and code structure for this plugin
No complexity issues detected
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.44 |
| Average class complexity | 37.50 |
| ▷ Minimum class complexity | 2.00 |
| ▷ Maximum class complexity | 88.00 |
| Average method complexity | 4.04 |
| ▷ Minimum method complexity | 1.00 |
| ▷ Maximum method complexity | 30.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 0 | |
| Interfaces | 0 | |
| Traits | 0 | |
| Classes | 8 | |
| ▷ Abstract classes | 0 | 0.00% |
| ▷ Concrete classes | 8 | 100.00% |
| ▷ Final classes | 0 | 0.00% |
| Methods | 96 | |
| ▷ Static methods | 8 | 8.33% |
| ▷ Public methods | 45 | 46.88% |
| ▷ Protected methods | 0 | 0.00% |
| ▷ Private methods | 51 | 53.12% |
| Functions | 0 | |
| ▷ Named functions | 0 | 0.00% |
| ▷ Anonymous functions | 0 | 0.00% |
| Constants | 1 | |
| ▷ Global constants | 1 | 100.00% |
| ▷ Class constants | 0 | 0.00% |
| ▷ Public constants | 0 | 0.00% |
Plugin size 50% from 2 tests
Image compression 50% from 2 tests
It is recommended to compress PNG files in your plugin to minimize bandwidth usage
17 PNG files occupy 0.71MB with 0.20MB in potential savings
Potential savings
| Compression of 5 random PNG files using pngquant | |||
|---|---|---|---|
| File | Size - original | Size - compressed | Savings |
| assets/screenshot-2.png | 108.99KB | 37.00KB | ▼ 66.05% |
| assets/screenshot-8.png | 33.68KB | 33.65KB | 0.11% |
| assets/icon-128x128.png | 12.19KB | 2.79KB | ▼ 77.12% |
| assets/screenshot-7.png | 57.64KB | 57.65KB | 0.00% |
| images/sort_both.png | 0.20KB | 0.29KB | 0.00% |