Skip to content

Releases: AccentDesign/WP-Doctor

v1.0.1

27 Feb 10:33
@nickaccent nickaccent
v1.0.1
57cfcd8

Choose a tag to compare

View all tags
v1.0.1 Latest
Latest

Fixed

  • Nonce detection improvements
    • No longer skips files that only generate nonces (wp_nonce_field, wp_create_nonce)
    • Detects lenient nonce patterns (isset($_POST['nonce']) && wp_verify_nonce) that can be bypassed
    • Files must have actual verification (wp_verify_nonce, check_admin_referer, check_ajax_referer) to pass
Assets 2
Loading

Initial Release

27 Feb 10:15
@nickaccent nickaccent
v1.0.0
15397f0

Choose a tag to compare

View all tags
Initial Release

WordPress code health analyzer for custom plugins and themes.

Features

  • Health Score - 0-100 score with letter grades (A-F)
  • Security - SQL injection, missing nonces, XSS, capability checks
  • PHP 8 Compatibility - Null safety issues, deprecated functions
  • Performance - N+1 queries, uncached remote requests, unlimited queries
  • Dead Code - Debug statements, TODO comments
  • Smart Detection - Auto-skips WordPress.org plugins, scans only custom code
  • Claude Code Integration - MCP server for AI-assisted fixing

Quick Start

git clone https://github.com/accentdesign/wp-doctor.git
cd wp-doctor
./wp-doctor-setup
claude

Or standalone: php bin/wp-doctor scan /path/to/wordpress
Loading