Benchmarks
Plugin footprint 22% from 16 tests
Installer 0% from 1 test
🔺 Critical test (weight: 50) | The install procedure must perform silently
These installer errors require your attention
- Install procedure validation failed for this plugin
- > Notice in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Settings.php+15
Constant MADEIT_SECURITY_API already defined
Server metrics [RAM: ▼1.88MB] [CPU: ▼42.68ms] Passed 4 tests
Analyzing server-side resources used by WP Security By Made I.T.
This plugin does not affect your website's performance
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 2.11 ▼1.35 | 12.37 ▼27.16 |
| Dashboard /wp-admin | 2.13 ▼1.17 | 16.76 ▼31.52 |
| Posts /wp-admin/edit.php | 2.13 ▼1.22 | 18.77 ▼33.30 |
| Add New Post /wp-admin/post-new.php | 2.13 ▼3.76 | 15.10 ▼78.75 |
| Media Library /wp-admin/upload.php | 2.13 ▼1.09 | 18.09 ▼18.12 |
| Server info /wp-admin/admin.php?page=madeit_security_systeminfo | 2.13 | 15.38 |
| Settings /wp-admin/admin.php?page=madeit_security_settings | 2.13 | 17.66 |
| Firewall /wp-admin/admin.php?page=madeit_security_firewall | 2.13 | 18.05 |
| Scan /wp-admin/admin.php?page=madeit_security_scan | 2.13 | 18.35 |
| Dashboard /wp-admin/admin.php?page=madeit_security | 2.13 | 17.47 |
Server storage [IO: ▲2.06MB] [DB: ▲0.73MB] 67% from 3 tests
Filesystem and database footprint
It is recommended to fix the following issues
- The plugin illegally modified 6 files (1.27KB) outside of "wp-content/plugins/wp-security-by-made-it/" and "wp-content/uploads/"
- (new file) wp-content/madeit-security-backup/.htaccess
- (new file) wp-content/madeit-security-backup/wp-security-config.php
- (new file) wp-content/madeit-security-backup/wp-security-blocks.php
- (new file) wp-content/madeit-security-backup/error.log
- (new file) wp-content/madeit-security-backup/index.html
- (new file) wp-content/madeit-security-backup/web.config
Filesystem: 97 new files
Database: 5 new tables, 7 new options
| New tables |
|---|
| wp_madeit_sec_filelist |
| wp_madeit_sec_blockip |
| wp_madeit_sec_login_attempts |
| wp_madeit_sec_login |
| wp_madeit_sec_issues |
| New WordPress options |
|---|
| widget_recent-comments |
| widget_theysaidso_widget |
| theysaidso_admin_options |
| can_compress_scripts |
| widget_recent-posts |
| db_upgraded |
| madeit_security_api_key |
Browser metrics Passed 4 tests
A check of browser resources used by WP Security By Made I.T.
Normal browser usage
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 2,848 ▲113 | 13.17 ▼1.01 | 1.85 ▲0.16 | 37.31 ▼4.84 |
| Dashboard /wp-admin | 2,264 ▲73 | 6.00 ▲1.16 | 117.73 ▲12.89 | 101.21 ▲59.72 |
| Posts /wp-admin/edit.php | 2,147 ▲55 | 2.07 ▲0.01 | 31.90 ▼5.20 | 33.49 ▼1.86 |
| Add New Post /wp-admin/post-new.php | 1,719 ▲185 | 20.15 ▼2.94 | 726.31 ▲51.64 | 36.43 ▼20.63 |
| Media Library /wp-admin/upload.php | 1,446 ▲58 | 4.24 ▲0.00 | 91.50 ▼26.23 | 70.01 ▲21.75 |
| Server info /wp-admin/admin.php?page=madeit_security_systeminfo | 7,198 | 1.85 | 27.10 | 74.03 |
| Settings /wp-admin/admin.php?page=madeit_security_settings | 1,395 | 2.06 | 31.45 | 44.35 |
| Firewall /wp-admin/admin.php?page=madeit_security_firewall | 969 | 1.93 | 25.61 | 38.27 |
| Scan /wp-admin/admin.php?page=madeit_security_scan | 1,030 | 2.06 | 34.23 | 43.38 |
| Dashboard /wp-admin/admin.php?page=madeit_security | 1,220 | 1.96 | 33.11 | 42.98 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.73MB] 25% from 4 tests
🔸 Tests weight: 35 | It is important to correctly uninstall your plugin, without leaving any traces
Please fix the following items
- The plugin did not uninstall gracefully
- > Notice in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Settings.php+15
Constant MADEIT_SECURITY_API already defined
- The plugin did not uninstall successfully, leaving 5 tables in the database
- wp_madeit_sec_login_attempts
- wp_madeit_sec_issues
- wp_madeit_sec_filelist
- wp_madeit_sec_blockip
- wp_madeit_sec_login
- This plugin does not fully uninstall, leaving 7 options in the database
- widget_theysaidso_widget
- madeit_security_api_key
- widget_recent-comments
- can_compress_scripts
- db_upgraded
- theysaidso_admin_options
- widget_recent-posts
Smoke tests 25% from 4 tests
Server-side errors 0% from 1 test
🔹 Test weight: 20 | This is a shallow check for server-side errors
Please fix the following server-side errors
- 48 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=madeit_security
- > POST request to /wp-admin/admin-ajax.php
- > Notice in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Settings.php+15
Constant MADEIT_SECURITY_API already defined
- > GET request to /wp-admin/admin.php?page=madeit_security_systeminfo
- > Deprecated in wp-content/plugins/wp-security-by-made-it/admin/templates/system_info.php+402
implode(): Passing glue string after array is deprecated. Swap the parameters
- > GET request to /wp-admin/admin.php?page=madeit_security_scan
- > POST request to /wp-cron.php?doing_wp_cron=1696144723.6668920516967773437500
- > Warning in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Scan.php+27
file_get_contents(https://www.madeit.be/wordpress-onderhoud/api/1.0/wp/getPattern/1): failed to open stream: HTTP request failed! HTTP/1.1 404 Not Found
- 204 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=madeit_security_scan
- > POST request to /wp-cron.php?doing_wp_cron=1696144723.6668920516967773437500
- > Notice in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Scan.php+122
Trying to access array offset on value of type null
- 102 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=madeit_security_scan
- > POST request to /wp-cron.php?doing_wp_cron=1696144723.6668920516967773437500
- > Warning in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Scan.php+116
preg_match(): Empty regular expression
- 51 occurences, only the last one shown
- > GET request to /wp-admin/admin.php?page=madeit_security_scan
- > POST request to /wp-cron.php?doing_wp_cron=1696144723.6668920516967773437500
- > Deprecated in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Scan.php+122
strpos(): Non-string needles will be interpreted as strings in the future. Use an explicit chr() call to preserve the current behavior
SRP 0% from 2 tests
🔹 Tests weight: 20 | The single-responsibility principle: PHP files have to remain inert when accessed directly, throwing no errors and performing no actions
The following issues need your attention
- 2× PHP files output non-empty strings when accessed directly via GET requests:
- > /wp-content/plugins/wp-security-by-made-it/madeit-security.php
- > /wp-content/plugins/wp-security-by-made-it/admin/email-wp-security-report-weekly.php
- 7× PHP files trigger server errors when accessed directly:
- > PHP Warning
include_once(): Failed opening 'ABSPATHwp-admin/includes/class-wp-upgrader.php' for inclusion (include_path='.:/usr/share/php') in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Installer.php on line 3
- > PHP Warning
Use of undefined constant ABSPATH - assumed 'ABSPATH' (this will throw an Error in a future version of PHP) in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Installer.php on line 3
- > PHP Fatal error
Uncaught Error: Class 'Core_Upgrader' not found in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Core_Installer.php:3
- > PHP Fatal error
Uncaught Error: Class 'Theme_Upgrader' not found in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Theme_Installer.php:3
- > PHP Fatal error
Uncaught Error: Class 'Plugin_Upgrader' not found in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Installer.php:5
- > PHP Warning
Use of undefined constant MADEIT_SECURITY_LOG_PATH - assumed 'MADEIT_SECURITY_LOG_PATH' (this will throw an Error in a future version of PHP) in wp-content/plugins/wp-security-by-made-it/inc/firewall/WP_MadeIT_Security_Init.php on line 43
- > PHP Warning
include_once(ABSPATHwp-admin/includes/class-wp-upgrader.php): failed to open stream: No such file or directory in wp-content/plugins/wp-security-by-made-it/inc/WP_MadeIT_Security_Plugin_Installer.php on line 3
- > PHP Warning
User-side errors Passed 1 test
🔹 Test weight: 20 | This is just a short smoke test looking for browser issues
Everything seems fine on the user side
Optimizations
Plugin configuration 96% from 29 tests
readme.txt Passed 16 tests
The readme.txt file uses markdown syntax to describe your plugin to the world
6 plugin tags: secure, maintenance, security, security plugin, maintenance plugin...
wp-security-by-made-it/madeit-security.php 92% from 13 tests
The entry point to "WP Security By Made I.T." version 1.8.3 is a PHP file that has certain tags in its header comment area
Please make the necessary changes and fix the following:
- Main file name: It is recommended to name the main PHP file as the plugin slug ("wp-security-by-made-it.php" instead of "madeit-security.php")
Code Analysis 97% from 3 tests
File types Passed 1 test
🔸 Test weight: 35 | This is a short overview of programming languages used in this plugin, detecting executable files
There were no executable files found in this plugin19,673 lines of code in 68 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 51 | 1,406 | 2,366 | 12,431 |
| CSS | 9 | 261 | 93 | 3,451 |
| SVG | 1 | 0 | 0 | 2,671 |
| PO File | 2 | 410 | 478 | 1,036 |
| XML | 3 | 4 | 12 | 75 |
| JavaScript | 1 | 0 | 0 | 8 |
| YAML | 1 | 1 | 1 | 1 |
PHP code 50% from 2 tests
Analyzing cyclomatic complexity and code structure
The following items need your attention
- Cyclomatic complexity of methods should be reduced to less than 100 (currently 130)
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.40 |
| Average class complexity | 33.12 |
| ▷ Minimum class complexity | 1.00 |
| ▷ Maximum class complexity | 268.00 |
| Average method complexity | 4.72 |
| ▷ Minimum method complexity | 1.00 |
| ▷ Maximum method complexity | 130.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 0 | |
| Interfaces | 0 | |
| Traits | 0 | |
| Classes | 50 | |
| ▷ Abstract classes | 5 | 10.00% |
| ▷ Concrete classes | 45 | 90.00% |
| ▷ Final classes | 1 | 2.22% |
| Methods | 431 | |
| ▷ Static methods | 58 | 13.46% |
| ▷ Public methods | 321 | 74.48% |
| ▷ Protected methods | 1 | 0.23% |
| ▷ Private methods | 109 | 25.29% |
| Functions | 15 | |
| ▷ Named functions | 12 | 80.00% |
| ▷ Anonymous functions | 3 | 20.00% |
| Constants | 24 | |
| ▷ Global constants | 9 | 37.50% |
| ▷ Class constants | 15 | 62.50% |
| ▷ Public constants | 15 | 100.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
Often times overlooked, PNG files can occupy unnecessary space in your plugin
17 PNG files occupy 0.11MB with 0.06MB in potential savings
Potential savings
| Compression of 5 random PNG files using pngquant | |||
|---|---|---|---|
| File | Size - original | Size - compressed | Savings |
| admin/css/smoothness/images/ui-icons_222222_256x240.png | 6.76KB | 4.17KB | ▼ 38.24% |
| admin/css/smoothness/images/ui-icons_cd0a0a_256x240.png | 4.44KB | 4.17KB | ▼ 6.02% |
| assets/icon-128x128.png | 21.58KB | 2.55KB | ▼ 88.19% |
| assets/icon-64x64.png | 19.95KB | 2.06KB | ▼ 89.65% |
| admin/css/smoothness/images/ui-bg_flat_0_aaaaaa_40x100.png | 0.21KB | 0.08KB | ▼ 58.96% |