VK Link Target Controller

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$slug'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$checked'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$slug'.

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

Missing $domain parameter in function call to __().

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$label'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$json_ids'.

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$checked'.