En Spam

Your plugin has a different license declared in the readme file and plugin header. Please update your readme with a valid GPL license identifier.

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

Missing $domain parameter in function call to __().

Missing $domain parameter in function call to __().

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$message'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'get_option'.

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

$_POST['code'] not unslashed before sanitization. Use wp_unslash() or similar

Detected usage of a non-sanitized input variable: $_POST['code']

Detected usage of a possibly undefined superglobal array index: $_POST['code']. Use isset() or empty() to check the index exists before using it