Kitgenix Affiliate Link Manager

Slug: kitgenix-affiliate-link-manager · Kitgenix · 0+

Actively maintained

Overall Score

Excellent quality and security

Excellent

What this score means

Scores are calculated on a 100-point scale by analysing six weighted categories: Security, WP.org Readiness, Performance, Code Quality, Accessibility, and Vulnerabilities.

Excellent The plugin follows best practices across every measured category. It is well-maintained, low-risk, and recommended for production use.
Good Strong overall quality with minor areas for improvement. Generally safe to use on most sites.
Needs Review Some areas of concern detected. Review the full issues report and weigh the risks before installing on production.
High Risk Significant quality or security problems found. Exercise caution — check the details carefully before using this plugin.

Score computed: May 9, 2026 10:05 pm (4 days ago). Vulnerability data mode: Cached.

Wordfence: No successful sync yet
WPScan: No successful sync yet
Patchstack: No successful sync yet

No known open vulnerabilities found.

Score Breakdown

Shield

Security

Good

Why this score?

Top deductions are based on 1 affected rules, reducing this category by 12 total points.

Rule	Hits	Impact	Share
Security issue: Warning	3	-12	100%

WP.org Readiness

Excellent

Why this score?

Top deductions are based on 1 affected rules, reducing this category by 2 total points.

Rule	Hits	Impact	Share
Repo issue: Notice	2	-2	100%

Speed

Performance

Excellent

Why this score?

Top deductions are based on 1 affected rules, reducing this category by 6 total points.

Rule	Hits	Impact	Share
Performance issue: Warning	2	-6	100%

Code

Code Quality

100

Excellent

Why this score?

Top deductions are based on 0 affected rules, reducing this category by 0 total points.

No deductions were applied for this category in the latest score run.

A11y

Accessibility

100

Excellent

Why this score?

Top deductions are based on 0 affected rules, reducing this category by 0 total points.

No deductions were applied for this category in the latest score run.

Bug

Vulnerability Status

100

Excellent

Why this score?

Top deductions are based on 0 affected rules, reducing this category by 0 total points.

No deductions were applied for this category in the latest score run.

Plugin Details

Version: 1.1.0
Active Installs: 0+
Last Updated: 2026-05-07 13:12:00
Tested up to: 7.0
Requires PHP: 8.1
View on WordPress.org
Download Plugin

Scan Summary

Errors: 0
Warnings: 5
Notices: 2
Last Scanned: 2026-05-09 22:05:14

Scans are performed automatically once per day.

What Changed Since Last Scan

Run at least two completed scans to view issue deltas.

Detected Issues

Severity	Category	Message	File	Fix Guidance
NOTICE	REPO	Plugin package does not include a license file.		Quick Add a LICENSE or COPYING file so distribution terms are explicit. Moderate Apply the same remediation pattern across repo findings and re-scan to confirm notice issues drop. Advanced Add automated linting, CI checks, and team review guidance so this issue class is prevented in future releases.
WARNING	SECURITY	Direct database query detected without an immediately visible $wpdb->prepare() wrapper.	includes/core/class-affiliate-link-post-type.php	Quick Wrap dynamic SQL arguments with $wpdb->prepare() in the flagged query. Moderate Refactor repeated SQL into repository/helper methods that enforce prepared statements by default. Advanced Add integration tests and static checks that fail builds when direct dynamic SQL is introduced.
WARNING	PERFORMANCE	flush_rewrite_rules() detected.	includes/core/class-loader.php	Quick Only flush rewrite rules during activation or explicit maintenance flows. Moderate Apply the same remediation pattern across performance findings and re-scan to confirm warning issues drop. Advanced Add automated linting, CI checks, and team review guidance so this issue class is prevented in future releases.
WARNING	SECURITY	Direct database query detected without an immediately visible $wpdb->prepare() wrapper.	includes/core/class-analytics.php	Quick Wrap dynamic SQL arguments with $wpdb->prepare() in the flagged query. Moderate Refactor repeated SQL into repository/helper methods that enforce prepared statements by default. Advanced Add integration tests and static checks that fail builds when direct dynamic SQL is introduced.
WARNING	SECURITY	Direct database query detected without an immediately visible $wpdb->prepare() wrapper.	uninstall.php	Quick Wrap dynamic SQL arguments with $wpdb->prepare() in the flagged query. Moderate Refactor repeated SQL into repository/helper methods that enforce prepared statements by default. Advanced Add integration tests and static checks that fail builds when direct dynamic SQL is introduced.
WARNING	PERFORMANCE	flush_rewrite_rules() detected.	kitgenix-affiliate-link-manager.php	Quick Only flush rewrite rules during activation or explicit maintenance flows. Moderate Apply the same remediation pattern across performance findings and re-scan to confirm warning issues drop. Advanced Add automated linting, CI checks, and team review guidance so this issue class is prevented in future releases.
NOTICE	REPO	Translation functions are present, but no textdomain loader was detected.		Quick Call load_plugin_textdomain() during plugin bootstrap so translations can be loaded. Moderate Apply the same remediation pattern across repo findings and re-scan to confirm notice issues drop. Advanced Add automated linting, CI checks, and team review guidance so this issue class is prevented in future releases.

Score History

No history available yet. · All-Time High: N/A