WP Shield scans your plugin for the lack of adherence to the WP security, and coding standards which can lead to OWASP top 10 vulnerabilites. By using WP Shield be the first one to know about probable security vulnerabilities, such as SQL injection, broken access control, cross-site scripting, XML external entities.
Key Features of WP Shield
Checks vulnerabilities in your code
Vulnerabilities are the weakness or the flaws that are present in your code. It is not always possible to identify the vulnerabilities in your code by manually reviewing the code. This scanner provides an easy way to scan for vulnerabilities in your code and point them out.
Checks for coding standards
WordPress has specific coding standards that need to be followed for the plugin to be listed in WordPress. If the coding standards are not followed, there might be several adverse consequences such as security concerns, performance issues and many more. WP Shield is one such security scanner that helps you to point, to the coding standards that are not followed.
Detailed scan report
WP Shield provides a detailed scanned report which consists of missing nonce verification, missing sanitization, missing escaping, improper naming conventions, usage of CURL, show error source, incorrect DB access. The scanned report can be downloaded in pdf form or the users can ask for a copy of the report by providing their mail id.
Schedule your scans
By using this wordpress security scanner, you can schedule your scans for specific days and times just by scheduling it as per your requirements. The plugin will be scanned for the set day and time and a detailed report will be generated.
Integrate with CI
WP Shield allows you to follow continuous integration, where the users can automate the integration of the code changes from multiple developers into a single project.
miniOrange provides direct interaction with the developer's team to resolve any concerns faced by the customers.
What is the need of WP Shield?
Why it is important to follow the coding standards while developing the plugin?
Wordpress is a global platform that powers 40 percent of the online content available.WordPress being an open source platform can lead to confusion among the contributors if the coding standards are not followed.
There are certain coding standards that need to be followed, so that the developers can work together seamlessly. WordPress coding standards are basically a set of guidelines that helps the developers to organize their code. In addition, there are projects which consist of hundreds of lines of code. Having a set of coding standards can help one to navigate the code quickly.
What are the consequences of not following the coding standards while developing the plugin?
If these WordPress coding guidelines are not followed, WordPress Community unlists your plugin from Wordpress.org due to various security vulnerabilities or lack of coding standards not being followed. This leads to various consequences to high-profile plugins which consists of thousands of installs on various websites. Due to this, there is also a possibility that the plugin might become a target for the hackers as well.
How does WP shield work?
Generating the zip file of the plugin
To scan your plugin create a zip file of the plugin you want to scan.
Scan the plugin
Once the zip file is generated, upload the file for scanning and click on the scan button
Scanned report is generated
After clicking on the scan button, a detailed report is generated.
Copy of the scanned report
The generated scanned report can also be downloaded or obtained on your provided mail id.
Mail us at firstname.lastname@example.org for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.
If you dont hear from us within 24 hours, please feel free to send a follow up email to email@example.com
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.