Name: Astra Widgets
Rating: 3.9
Author: Brainstorm Force

Issues Details

11 issues found in latest scan

	Code	Message	Location	Category
ERROR	`plugin_header_no_license`	Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.	`astra-widgets.php`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$bsf_analytics".	`astra-widgets.php:46:1`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "bsf_core_stats".	`admin/bsf-analytics/class-bsf-analytics-stats.php:57:35`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound`	Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "wp_timezone_string".	`admin/bsf-analytics/class-bsf-analytics-stats.php:238:5`	Plugin Repo
WARNING	`WordPress.Security.ValidatedSanitizedInput.MissingUnslash`	$_POST['widget-' . $this->id_base] not unslashed before sanitization. Use wp_unslash() or similar	`classes/widgets/class-astra-widget-social-profiles.php:408:106`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.InputNotSanitized`	Detected usage of a non-sanitized input variable: $_POST['widget-' . $this->id_base]	`classes/widgets/class-astra-widget-social-profiles.php:408:106`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.MissingUnslash`	$_POST['widget-' . $this->id_base] not unslashed before sanitization. Use wp_unslash() or similar	`classes/widgets/class-astra-widget-list-icons.php:266:106`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.InputNotSanitized`	Detected usage of a non-sanitized input variable: $_POST['widget-' . $this->id_base]	`classes/widgets/class-astra-widget-list-icons.php:266:106`	Security
WARNING	`WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$key . '_tracking_enabled'".	`admin/bsf-analytics/class-bsf-analytics.php:157:37`	Plugin Repo
WARNING	`WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$source . '_white_label_options'".	`admin/bsf-analytics/class-bsf-analytics.php:174:42`	Plugin Repo

11 total row(s)


15.12.2025, 06:30:16	12s	98	4	7
12.11.2025, 18:31:07	13s	98	4	7

Astra Widgets

Plugin Repository7

Security4

admin/bsf-analytics/class-bsf-analytics.php3 issues in this fileTotal: 3Warnings: 3

admin/bsf-analytics/class-bsf-analytics-stats.php2 issues in this fileTotal: 2Errors: 2

astra-widgets.php2 issues in this fileTotal: 2Errors: 2

classes/widgets/class-astra-widget-list-icons.php2 issues in this fileTotal: 2Warnings: 2

classes/widgets/class-astra-widget-social-profiles.php2 issues in this fileTotal: 2Warnings: 2