Say what?

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "plugin_locale".

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$list_table_instance".

The "/vendor" directory using composer exists, but "composer.json" file is missing.

Processing form data without nonce verification.

Detected usage of a possibly undefined superglobal array index: $_GET['id']. Use isset() or empty() to check the index exists before using it

Processing form data without nonce verification.

Detected usage of a possibly undefined superglobal array index: $_GET['nonce']. Use isset() or empty() to check the index exists before using it

Plugin name "Say what?" is different from the name declared in plugin header "Say What?".

Unescaped parameter $sql used in $wpdb->get_results($sql)\n$sql assigned unsafely at line 71:\n $sql .= ' ORDER BY orig_string ASC'\n$sql assigned unsafely at line 68:\n $sql .= ' ORDER BY ' . $order_by . ' ' . $order_direction\n$this->items assigned unsafely at line 76:\n $this->items = $wpdb->get_results( $sql, ARRAY_A )\n$order_by assigned unsafely at line 53:\n $order_by = isset( $_GET['orderby'] ) ?\n\t\t\tsanitize_key( wp_unslash( $_GET['orderby'] ) ) :\n\t\t\tnull\nNote: sanitize_key() is not a safe escaping function.\n$_GET['orderby'] used without escaping.