| Code | Message | Location | Category | |
|---|---|---|---|---|
| ERROR | no_license | Missing "License". Please update your readme with a valid GPLv2 (or later) compatible license. | — | — |
| ERROR | outdated_tested_upto_header | Tested up to: 4.4 < 6.8. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress. | — | Plugin Repo |
| ERROR | plugin_header_no_license | Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license. | — | Plugin Repo |
| ERROR | PluginCheck.Security.DirectDB.UnescapedDBParameter | Unescaped parameter $request used in $wpdb->get_results($request)\n$request assigned unsafely at line 22:\n $request .= "AND post_type='post' "\n$request assigned unsafely at line 20:\n $request .= "AND (post_type='post' OR post_type='page') "\n$request assigned unsafely at line 17:\n $request .= "AND post_password ='' "\n$skip_posts used without escaping.\n$no_posts used without escaping.\n$include_pages used without escaping. | 25:18 | Security |
| ERROR | WordPress.DB.PreparedSQL.NotPrepared | Use placeholders and $wpdb->prepare(); found $request | 25:31 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$output'. | 42:10 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.DirectQuery | Use of a direct database call is discouraged. | 25:14 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.NoCaching | Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete(). | 25:14 | Security |
| 16.11.2025, 06:55:18 | 11s | 97 | 6 | 2 |