This is not "security"
Edit: The plugin keeps improving, so I raised the rating.
Aside from the fact that the “security”-measurements that this plugin tries to implement are a joke (there have been enough cases where plugins in the official repo have been compromised), the “calculation” itself is bogus.
From reviewing the source code (spaghetti/function code) there are issues all over:
- Does remote requests, where the results aren’t tested properly. So whatever comes from the remote source will just be used – which is a security fail at its best.
- Doesn’t use any WordPress coding practice like the list tables API, registering and enqueuing styles, etc. etc.
- Doesn’t handle errors properly. Neither with the remote response, nor with any other WP Error object…
Summed up: Don’t use it. This is the opposite of security.
Reviewed Version: 0.71.2
- The topic ‘This is not "security"’ is closed to new replies.