More than 20 special blocks for Gutenberg to build complex pages and animations with highest possible web vitals score.
Category Scores
Top Issues by Category
maintainability205
security99
Issues Details
305 issues found in latest scan
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$activetab".
$_GET['page'] not unslashed before sanitization. Use wp_unslash() or similar
Detected usage of a possibly undefined superglobal array index: $_POST['category_id']. Check that the array index exists before using it.
Processing form data without nonce verification.
Processing form data without nonce verification.
Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.
Function "wp_register_ability()" requires WordPress 6.9.0, but your plugin minimum supported version is WordPress 6.6.0.
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$custom_code_before_closed_body'.
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "import_attachment_size_limit".
Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "EDD_CONSTANTS".
Scripts must be registered/enqueued via wp_enqueue_script()
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
Detected usage of a non-sanitized input variable: $_GET['page']
wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.
Found call to wp_enqueue_script() with external resource. Offloading scripts to your servers or any remote service is disallowed.
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "gsbp_script_delay".
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: chmod().
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: rmdir().
Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_enqueue_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.
Plugin name "Greenshift - animation and page builder blocks" is different from the name declared in plugin header "GreenShift - Animation and Page Builder Blocks".
The "Changelog" section is too long and was truncated. A maximum of 5000 characters is supported.
Unexpected markdown file "instruction_markdown.md" detected in plugin root. Only specific markdown files are expected in production plugins.
| Code | Type | Message | Count |
|---|---|---|---|
| WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound | WARNING | Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$activetab". | 150 |
| WordPress.Security.ValidatedSanitizedInput.MissingUnslash | WARNING | $_GET['page'] not unslashed before sanitization. Use wp_unslash() or similar | 43 |
| WordPress.Security.ValidatedSanitizedInput.InputNotValidated | WARNING | Detected usage of a possibly undefined superglobal array index: $_POST['category_id']. Check that the array index exists before using it. | 18 |
| WordPress.Security.NonceVerification.Missing | WARNING | Processing form data without nonce verification. | 12 |
| WordPress.Security.NonceVerification.Recommended | WARNING | Processing form data without nonce verification. | 12 |
| WordPress.WP.EnqueuedResourceParameters.MissingVersion | WARNING | Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching. | 11 |
| wp_function_not_compatible_with_requires_wp | ERROR | Function "wp_register_ability()" requires WordPress 6.9.0, but your plugin minimum supported version is WordPress 6.6.0. | 11 |
| WordPress.Security.EscapeOutput.OutputNotEscaped | ERROR | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$custom_code_before_closed_body'. | 9 |
| WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound | WARNING | Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "import_attachment_size_limit". | 6 |
| WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound | WARNING | Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "EDD_CONSTANTS". | 5 |
| WordPress.WP.EnqueuedResources.NonEnqueuedScript | ERROR | Scripts must be registered/enqueued via wp_enqueue_script() | 5 |
| WordPress.DateTime.RestrictedFunctions.date_date | ERROR | date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead. | 4 |
| WordPress.DB.DirectDatabaseQuery.DirectQuery | WARNING | Use of a direct database call is discouraged. | 3 |
| WordPress.DB.DirectDatabaseQuery.NoCaching | WARNING | Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete(). | 3 |
| WordPress.Security.ValidatedSanitizedInput.InputNotSanitized | WARNING | Detected usage of a non-sanitized input variable: $_GET['page'] | 3 |
| WordPress.Security.SafeRedirect.wp_redirect_wp_redirect | WARNING | wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed. | 2 |
| PluginCheck.CodeAnalysis.EnqueuedResourceOffloading.OffloadedContent | ERROR | Found call to wp_enqueue_script() with external resource. Offloading scripts to your servers or any remote service is disallowed. | 1 |
| WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound | WARNING | Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "gsbp_script_delay". | 1 |
| WordPress.WP.AlternativeFunctions.file_system_operations_chmod | ERROR | File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: chmod(). | 1 |
| WordPress.WP.AlternativeFunctions.file_system_operations_rmdir | ERROR | File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: rmdir(). | 1 |
| WordPress.WP.EnqueuedResourceParameters.NoExplicitVersion | ERROR | Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_enqueue_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development. | 1 |
| mismatched_plugin_name | WARNING | Plugin name "Greenshift - animation and page builder blocks" is different from the name declared in plugin header "GreenShift - Animation and Page Builder Blocks". | 1 |
| readme_parser_warnings_trimmed_section_changelog | WARNING | The "Changelog" section is too long and was truncated. A maximum of 5000 characters is supported. | 1 |
| unexpected_markdown_file | WARNING | Unexpected markdown file "instruction_markdown.md" detected in plugin root. Only specific markdown files are expected in production plugins. | 1 |
Latest Snapshot
Findings
305
Errors
33
Warnings
272
Score History
First score snapshot
First scan completed Jun 20, 2026
v13.1.1 · Plugin Check 2.0.0 · Model 2026.06-mvp-static-v2
Jun 20, 2026
v13.1.1
34
Latest
- Findings
- 305
- Errors
- 33
- Warnings
- 272
- Plugin Check
- 2.0.0
- Model
- 2026.06-mvp-static-v2
| Scan | Score | Findings | Errors | Warnings | Plugin | Plugin Check | Model |
|---|---|---|---|---|---|---|---|
| Jun 20, 2026Latest | 34 | 305 | 33 | 272 | v13.1.1 | 2.0.0 | 2026.06-mvp-static-v2 |
