=== Security Checker for Themes === Contributors: developer1998 Tags: security, code snippets, performance, 2FA, vulnerabilities Requires at least: 5.0 Tested up to: 7.0 Requires PHP: 7.2 Stable tag: 1.1.4 License: GPLv2 or later License URI: https://www.gnu.org/licenses/gpl-2.0.html Analyze your WordPress theme's PHP code for issues, security vulnerabilities, and adherence to coding standards with a detailed report and score. == Description == **Security Checker for Themes** is a powerful plugin designed to help WordPress developers ensure their themes adhere to coding standards, are free from security vulnerabilities, and maintain high-quality code. This plugin analyzes your theme's PHP code, highlights potential issues, and provides a comprehensive report with a graph and score based on the findings. ### Key Features - **Code Analysis**: Thoroughly scans your theme's PHP code for common issues and potential problems. - **Security Check**: Identifies security vulnerabilities to help you keep your theme secure. - **Coding Standards**: Ensures your theme adheres to WordPress coding standards. - **Graphical Report**: Provides a visual representation of the analysis with a detailed graph. - **Scoring System**: Assigns a score to your theme based on the issues found, giving you a clear understanding of your theme's quality. ### Benefits - Improve the quality of your theme by identifying and fixing issues. - Enhance the security of your theme by addressing vulnerabilities. - Ensure compliance with WordPress coding standards. - Get a clear, visual overview of your theme's code quality. == Installation == 1. Upload the plugin files to the `/wp-content/plugins/security-checker-for-themes` directory, or install the plugin through the WordPress plugins screen directly. 2. Activate the plugin through the 'Plugins' screen in WordPress. 3. Navigate to the **Security Checker for Themes** menu in your WordPress admin to start analyzing your theme's code. == Frequently Asked Questions == = What does the plugin analyze? = The plugin analyzes the PHP code of your active theme, checking for common issues, security vulnerabilities, and adherence to WordPress coding standards. = How does the scoring system work? = The scoring system evaluates your theme's code based on the number and severity of issues found. A higher score indicates better code quality. = Can this plugin fix the issues it finds? = No, the plugin only identifies issues. It is up to the developer to review the report and fix the issues accordingly. = Is the plugin safe to use on live sites? = Yes, the plugin only analyzes the code and does not make any changes to your theme or site. It is safe to use on live sites. == Screenshots == 1. **Analysis Report** - A detailed report highlighting the issues identified in your theme's code with graph. 2. **Error Overview** - A visual summary of errors, including line numbers and specific details. 3. **Warning Overview** - A visual summary of warnings, with line numbers and specific details. 4. **Suggestions Overview** - A visual summary of suggestions, including line numbers and specific details. == Changelog == = 1.1.4 = * Tested - Tested the plugin on the latest wordpress release (7.0) = 1.1.3 = * Tested - Tested the plugin on the latest wordpress release (6.8.3) = 1.1.2 = * Updated - Updated the readme.txt files and added new tags. * Updated - Banner images = 1.1.1 = * Enhancement - Security checks for issues. * Updated - Updated the code to check the deprecated functions. = 1.1.0 = * Added hardcoded URL detection and recommended using dynamic functions like `home_url()` or `site_url()`. * Enhanced security checks for issues like insecure file handling and weak encryption methods. * Excluded external resources (e.g., CDN links) from triggering unnecessary warnings. * Improved scoring system and visual reports. = 1.0.0 = * Initial release. == Upgrade Notice == = 1.1.0 = * This update adds hardcoded URL detection and enhanced security checks. No upgrade required for current users.