Support » Plugin: My Coderwall Badges » Quick advices

  • Capobis

    (@ioweuiraosjfosj)



    you shouldn’t need sslverify => false:

    $cwbadges = wp_remote_get('https://coderwall.com/'.$this->username.'.json', array( 'sslverify' => false));

    You should also html escape the data coming from coderwall before using it in HTML:

    foreach($cwbadges->badges as $badge){
                $badges_string.='<img class="cwbtip" src="'.$badge->badge.'"
                  alt="'.$badge->name.'" title="'.$badge->description.'" />';
              }
              $badges_string.='</div>';

    Also, you should apply some filtering on the username and endorsement before using them. Not a big deal, just good practices.

    Thanks for the awesome work anyway 🙂

  • The topic ‘Quick advices’ is closed to new replies.