Quick advices

  • Capobis

    (@ioweuiraosjfosj)


    8 years, 2 months ago

    you shouldn’t need sslverify => false:

    $cwbadges = wp_remote_get('https://coderwall.com/'.$this->username.'.json', array( 'sslverify' => false));

    You should also html escape the data coming from coderwall before using it in HTML:

    foreach($cwbadges->badges as $badge){
            $badges_string.='<img class="cwbtip" src="'.$badge->badge.'"
              alt="'.$badge->name.'" title="'.$badge->description.'" />';
          }
          $badges_string.='</div>';

    Also, you should apply some filtering on the username and endorsement before using them. Not a big deal, just good practices.

    Thanks for the awesome work anyway 🙂

  • The topic ‘Quick advices’ is closed to new replies.