sdc-build-wp 4.1.0 → 4.1.2

package/vendor/wp-coding-standards/wpcs/WordPress/Sniffs/DB/PreparedSQLSniff.php

@@ -1,242 +0,0 @@
-<?php
-/**
- * WordPress Coding Standard.
- *
- * @package WPCS\WordPressCodingStandards
- * @link    https://github.com/WordPress/WordPress-Coding-Standards
- * @license https://opensource.org/licenses/MIT MIT
- */
-
-namespace WordPressCS\WordPress\Sniffs\DB;
-
-use PHP_CodeSniffer\Util\Tokens;
-use PHPCSUtils\Tokens\Collections;
-use PHPCSUtils\Utils\TextStrings;
-use WordPressCS\WordPress\Helpers\ContextHelper;
-use WordPressCS\WordPress\Helpers\FormattingFunctionsHelper;
-use WordPressCS\WordPress\Helpers\WPDBTrait;
-use WordPressCS\WordPress\Sniff;
-
-/**
- * Sniff for prepared SQL.
- *
- * Makes sure that variables aren't directly interpolated into SQL statements.
- *
- * @link https://developer.wordpress.org/coding-standards/wordpress-coding-standards/php/#formatting-sql-statements
- *
- * @since 0.8.0
- * @since 0.13.0 Class name changed: this class is now namespaced.
- * @since 1.0.0  This sniff has been moved from the `WP` category to the `DB` category.
- */
-final class PreparedSQLSniff extends Sniff {
-
-	use WPDBTrait;
-
-	/**
-	 * The lists of $wpdb methods.
-	 *
-	 * @since 0.8.0
-	 * @since 0.11.0 Changed from static to non-static.
-	 *
-	 * @var array<string, bool>
-	 */
-	protected $methods = array(
-		'get_var'     => true,
-		'get_col'     => true,
-		'get_row'     => true,
-		'get_results' => true,
-		'prepare'     => true,
-		'query'       => true,
-	);
-
-	/**
-	 * Functions that escape values for use in SQL queries.
-	 *
-	 * @since 0.9.0
-	 * @since 0.11.0 Changed from public static to protected non-static.
-	 * @since 3.0.0  - Moved from the Sniff class to this class.
-	 *               - The property visibility has changed from `protected` to `private`.
-	 *
-	 * @var array<string, bool>
-	 */
-	private $SQLEscapingFunctions = array(
-		'absint'      => true,
-		'esc_sql'     => true,
-		'floatval'    => true,
-		'intval'      => true,
-		'like_escape' => true,
-	);
-
-	/**
-	 * Functions whose output is automatically escaped for use in SQL queries.
-	 *
-	 * @since 0.9.0
-	 * @since 0.11.0 Changed from public static to protected non-static.
-	 * @since 3.0.0  - Moved from the Sniff class to this class.
-	 *               - The property visibility has changed from `protected` to `private`.
-	 *
-	 * @var array<string, bool>
-	 */
-	private $SQLAutoEscapedFunctions = array(
-		'count' => true,
-	);
-
-	/**
-	 * Tokens that we don't flag when they are found in a $wpdb method call.
-	 *
-	 * This token array is augmented from within the register() method.
-	 *
-	 * @since 0.9.0
-	 * @since 3.0.0 The property visibility has changed from `protected` to `private`.
-	 *
-	 * @var array
-	 */
-	private $ignored_tokens = array(
-		\T_STRING_CONCAT            => true,
-		\T_CONSTANT_ENCAPSED_STRING => true,
-		\T_COMMA                    => true,
-		\T_LNUMBER                  => true,
-		\T_DNUMBER                  => true,
-		\T_NS_SEPARATOR             => true,
-	);
-
-	/**
-	 * A loop pointer.
-	 *
-	 * It is a property so that we can access it in all of our methods.
-	 *
-	 * @since 0.9.0
-	 *
-	 * @var int
-	 */
-	protected $i;
-
-	/**
-	 * The loop end marker.
-	 *
-	 * It is a property so that we can access it in all of our methods.
-	 *
-	 * @since 0.9.0
-	 *
-	 * @var int
-	 */
-	protected $end;
-
-	/**
-	 * Returns an array of tokens this test wants to listen for.
-	 *
-	 * @since 0.8.0
-	 *
-	 * @return array
-	 */
-	public function register() {
-		// Enrich the array of tokens which can be safely ignored.
-		$this->ignored_tokens += Tokens::$bracketTokens;
-		$this->ignored_tokens += Tokens::$heredocTokens;
-		$this->ignored_tokens += Tokens::$castTokens;
-		$this->ignored_tokens += Tokens::$arithmeticTokens;
-		$this->ignored_tokens += Collections::incrementDecrementOperators();
-		$this->ignored_tokens += Collections::objectOperators();
-		$this->ignored_tokens += Tokens::$emptyTokens;
-
-		// The contents of heredoc tokens needs to be examined.
-		unset( $this->ignored_tokens[ \T_HEREDOC ] );
-
-		return array(
-			\T_VARIABLE,
-			\T_STRING,
-		);
-	}
-
-	/**
-	 * Processes this test, when one of its tokens is encountered.
-	 *
-	 * @since 0.8.0
-	 *
-	 * @param int $stackPtr The position of the current token in the stack.
-	 *
-	 * @return int|void Integer stack pointer to skip forward or void to continue
-	 *                  normal file processing.
-	 */
-	public function process_token( $stackPtr ) {
-
-		if ( ! $this->is_wpdb_method_call( $this->phpcsFile, $stackPtr, $this->methods ) ) {
-			return;
-		}
-
-		for ( $this->i; $this->i < $this->end; $this->i++ ) {
-
-			if ( isset( $this->ignored_tokens[ $this->tokens[ $this->i ]['code'] ] ) ) {
-				continue;
-			}
-
-			if ( \T_DOUBLE_QUOTED_STRING === $this->tokens[ $this->i ]['code']
-				|| \T_HEREDOC === $this->tokens[ $this->i ]['code']
-			) {
-
-				$bad_variables = array_filter(
-					TextStrings::getEmbeds( $this->tokens[ $this->i ]['content'] ),
-					static function ( $symbol ) {
-						return preg_match( '`^\{?\$\{?wpdb\??->`', $symbol ) !== 1;
-					}
-				);
-
-				foreach ( $bad_variables as $bad_variable ) {
-					$this->phpcsFile->addError(
-						'Use placeholders and $wpdb->prepare(); found interpolated variable %s at %s',
-						$this->i,
-						'InterpolatedNotPrepared',
-						array(
-							$bad_variable,
-							$this->tokens[ $this->i ]['content'],
-						)
-					);
-				}
-				continue;
-			}
-
-			if ( \T_VARIABLE === $this->tokens[ $this->i ]['code'] ) {
-				if ( '$wpdb' === $this->tokens[ $this->i ]['content'] ) {
-					$this->is_wpdb_method_call( $this->phpcsFile, $this->i, $this->methods );
-					continue;
-				}
-
-				if ( ContextHelper::is_safe_casted( $this->phpcsFile, $this->i ) ) {
-					continue;
-				}
-			}
-
-			if ( \T_STRING === $this->tokens[ $this->i ]['code'] ) {
-
-				if (
-					isset( $this->SQLEscapingFunctions[ $this->tokens[ $this->i ]['content'] ] )
-					|| isset( $this->SQLAutoEscapedFunctions[ $this->tokens[ $this->i ]['content'] ] )
-				) {
-
-					// Find the opening parenthesis.
-					$opening_paren = $this->phpcsFile->findNext( Tokens::$emptyTokens, ( $this->i + 1 ), null, true );
-
-					if ( false !== $opening_paren
-						&& \T_OPEN_PARENTHESIS === $this->tokens[ $opening_paren ]['code']
-						&& isset( $this->tokens[ $opening_paren ]['parenthesis_closer'] )
-					) {
-						// Skip past to the end of the function call.
-						$this->i = $this->tokens[ $opening_paren ]['parenthesis_closer'];
-						continue;
-					}
-				} elseif ( FormattingFunctionsHelper::is_formatting_function( $this->tokens[ $this->i ]['content'] ) ) {
-					continue;
-				}
-			}
-
-			$this->phpcsFile->addError(
-				'Use placeholders and $wpdb->prepare(); found %s',
-				$this->i,
-				'NotPrepared',
-				array( $this->tokens[ $this->i ]['content'] )
-			);
-		}
-
-		return $this->end;
-	}
-}

package/vendor/wp-coding-standards/wpcs/WordPress/Sniffs/DB/RestrictedClassesSniff.php

@@ -1,57 +0,0 @@
-<?php
-/**
- * WordPress Coding Standard.
- *
- * @package WPCS\WordPressCodingStandards
- * @link    https://github.com/WordPress/WordPress-Coding-Standards
- * @license https://opensource.org/licenses/MIT MIT
- */
-
-namespace WordPressCS\WordPress\Sniffs\DB;
-
-use WordPressCS\WordPress\AbstractClassRestrictionsSniff;
-
-/**
- * Verifies that no database related PHP classes are used.
- *
- * "Avoid touching the database directly. If there is a defined function that can get
- *  the data you need, use it. Database abstraction (using functions instead of queries)
- *  helps keep your code forward-compatible and, in cases where results are cached in memory,
- *  it can be many times faster."
- *
- * @link https://developer.wordpress.org/coding-standards/wordpress-coding-standards/php/#database-queries
- *
- * @since 0.10.0
- * @since 0.13.0 Class name changed: this class is now namespaced.
- */
-final class RestrictedClassesSniff extends AbstractClassRestrictionsSniff {
-
-	/**
-	 * Groups of classes to restrict.
-	 *
-	 * Example: groups => array(
-	 *  'lambda' => array(
-	 *      'type'    => 'error' | 'warning',
-	 *      'message' => 'Avoid direct calls to the database.',
-	 *      'classes' => array( 'PDO', '\Namespace\Classname' ),
-	 *  )
-	 * )
-	 *
-	 * @return array
-	 */
-	public function getGroups() {
-		return array(
-
-			'mysql' => array(
-				'type'    => 'error',
-				'message' => 'Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: %s.',
-				'classes' => array(
-					'mysqli',
-					'PDO',
-					'PDOStatement',
-				),
-			),
-
-		);
-	}
-}

package/vendor/wp-coding-standards/wpcs/WordPress/Sniffs/DB/RestrictedFunctionsSniff.php

@@ -1,63 +0,0 @@
-<?php
-/**
- * WordPress Coding Standard.
- *
- * @package WPCS\WordPressCodingStandards
- * @link    https://github.com/WordPress/WordPress-Coding-Standards
- * @license https://opensource.org/licenses/MIT MIT
- */
-
-namespace WordPressCS\WordPress\Sniffs\DB;
-
-use WordPressCS\WordPress\AbstractFunctionRestrictionsSniff;
-
-/**
- * Verifies that no database related PHP functions are used.
- *
- * "Avoid touching the database directly. If there is a defined function that can get
- *  the data you need, use it. Database abstraction (using functions instead of queries)
- *  helps keep your code forward-compatible and, in cases where results are cached in memory,
- *  it can be many times faster."
- *
- * @link https://developer.wordpress.org/coding-standards/wordpress-coding-standards/php/#database-queries
- *
- * @since 0.10.0
- * @since 0.13.0 Class name changed: this class is now namespaced.
- */
-final class RestrictedFunctionsSniff extends AbstractFunctionRestrictionsSniff {
-
-	/**
-	 * Groups of functions to restrict.
-	 *
-	 * Example: groups => array(
-	 *  'lambda' => array(
-	 *      'type'      => 'error' | 'warning',
-	 *      'message'   => 'Use anonymous functions instead please!',
-	 *      'functions' => array( 'file_get_contents', 'create_function' ),
-	 *  )
-	 * )
-	 *
-	 * @return array
-	 */
-	public function getGroups() {
-		return array(
-
-			'mysql' => array(
-				'type'      => 'error',
-				'message'   => 'Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: %s.',
-				'functions' => array(
-					'mysql_*',
-					'mysqli_*',
-					'mysqlnd_ms_*',
-					'mysqlnd_qc_*',
-					'mysqlnd_uh_*',
-					'mysqlnd_memcache_*',
-					'maxdb_*',
-				),
-				'allow'     => array(
-					'mysql_to_rfc3339' => true,
-				),
-			),
-		);
-	}
-}

package/vendor/wp-coding-standards/wpcs/WordPress/Sniffs/DB/SlowDBQuerySniff.php

@@ -1,58 +0,0 @@
-<?php
-/**
- * WordPress Coding Standard.
- *
- * @package WPCS\WordPressCodingStandards
- * @link    https://github.com/WordPress/WordPress-Coding-Standards
- * @license https://opensource.org/licenses/MIT MIT
- */
-
-namespace WordPressCS\WordPress\Sniffs\DB;
-
-use WordPressCS\WordPress\AbstractArrayAssignmentRestrictionsSniff;
-
-/**
- * Flag potentially slow queries.
- *
- * @link https://vip.wordpress.com/documentation/vip-go/code-review-blockers-warnings-notices/#uncached-pageload
- *
- * @since 0.3.0
- * @since 0.13.0 Class name changed: this class is now namespaced.
- * @since 1.0.0  This sniff has been moved from the `VIP` category to the `DB` category.
- */
-final class SlowDBQuerySniff extends AbstractArrayAssignmentRestrictionsSniff {
-
-	/**
-	 * Groups of variables to restrict.
-	 *
-	 * @return array
-	 */
-	public function getGroups() {
-		return array(
-			'slow_db_query' => array(
-				'type'    => 'warning',
-				'message' => 'Detected usage of %s, possible slow query.',
-				'keys'    => array(
-					'tax_query',
-					'meta_query',
-					'meta_key',
-					'meta_value',
-				),
-			),
-		);
-	}
-
-	/**
-	 * Callback to process each confirmed key, to check value.
-	 *
-	 * @param  string $key   Array index / key.
-	 * @param  mixed  $val   Assigned value.
-	 * @param  int    $line  Token line.
-	 * @param  array  $group Group definition.
-	 *
-	 * @return bool Always returns TRUE as the value is irrelevant.
-	 */
-	public function callback( $key, $val, $line, $group ) {
-		return true;
-	}
-}

package/vendor/wp-coding-standards/wpcs/WordPress/Sniffs/DateTime/CurrentTimeTimestampSniff.php

@@ -1,168 +0,0 @@
-<?php
-/**
- * WordPress Coding Standard.
- *
- * @package WPCS\WordPressCodingStandards
- * @link    https://github.com/WordPress/WordPress-Coding-Standards
- * @license https://opensource.org/licenses/MIT MIT
- */
-
-namespace WordPressCS\WordPress\Sniffs\DateTime;
-
-use PHP_CodeSniffer\Util\Tokens;
-use PHPCSUtils\Utils\PassedParameters;
-use PHPCSUtils\Utils\TextStrings;
-use WordPressCS\WordPress\AbstractFunctionParameterSniff;
-
-/**
- * Don't use current_time() to get a (timezone corrected) "timestamp".
- *
- * Disallow using the current_time() function to get "timestamps" as it
- * doesn't produce a *real* timestamp, but a "WordPress timestamp", i.e.
- * a Unix timestamp with current timezone offset, not a Unix timestamp ansich.
- *
- * @link https://developer.wordpress.org/reference/functions/current_time/
- * @link https://make.wordpress.org/core/2019/09/23/date-time-improvements-wp-5-3/
- * @link https://core.trac.wordpress.org/ticket/40657
- * @link https://github.com/WordPress/WordPress-Coding-Standards/issues/1791
- *
- * @since 2.2.0
- */
-final class CurrentTimeTimestampSniff extends AbstractFunctionParameterSniff {
-
-	/**
-	 * The group name for this group of functions.
-	 *
-	 * @since 2.2.0
-	 *
-	 * @var string
-	 */
-	protected $group_name = 'current_time';
-
-	/**
-	 * List of functions to examine.
-	 *
-	 * @since 2.2.0
-	 *
-	 * @var array<string, true> Key is function name, value irrelevant.
-	 */
-	protected $target_functions = array(
-		'current_time' => true,
-	);
-
-	/**
-	 * Process the parameters of a matched function.
-	 *
-	 * @since 2.2.0
-	 *
-	 * @param int    $stackPtr        The position of the current token in the stack.
-	 * @param string $group_name      The name of the group which was matched.
-	 * @param string $matched_content The token content (function name) which was matched
-	 *                                in lowercase.
-	 * @param array  $parameters      Array with information about the parameters.
-	 *
-	 * @return void
-	 */
-	public function process_parameters( $stackPtr, $group_name, $matched_content, $parameters ) {
-		/*
-		 * We already know there will be valid open & close parentheses as otherwise the parameter
-		 * retrieval function call would have returned an empty array, so no additional checks needed.
-		 */
-		$open_parens  = $this->phpcsFile->findNext( \T_OPEN_PARENTHESIS, $stackPtr );
-		$close_parens = $this->tokens[ $open_parens ]['parenthesis_closer'];
-
-		/*
-		 * Check whether the first parameter is a timestamp format.
-		 */
-		$type_param = PassedParameters::getParameterFromStack( $parameters, 1, 'type' );
-		if ( false === $type_param ) {
-			// Type parameter not found. Bow out.
-			return;
-		}
-
-		$content_type = '';
-		for ( $i = $type_param['start']; $i <= $type_param['end']; $i++ ) {
-			if ( isset( Tokens::$emptyTokens[ $this->tokens[ $i ]['code'] ] ) ) {
-				continue;
-			}
-
-			if ( isset( Tokens::$textStringTokens[ $this->tokens[ $i ]['code'] ] ) ) {
-				$content_type = trim( TextStrings::stripQuotes( $this->tokens[ $i ]['content'] ) );
-				if ( 'U' !== $content_type && 'timestamp' !== $content_type ) {
-					// Most likely valid use of current_time().
-					return;
-				}
-
-				continue;
-			}
-
-			if ( isset( Tokens::$heredocTokens[ $this->tokens[ $i ]['code'] ] ) ) {
-				continue;
-			}
-
-			/*
-			 * If we're still here, we've encountered an unexpected token, like a variable or
-			 * function call. Bow out as we can't determine the runtime value.
-			 */
-			return;
-		}
-
-		$gmt_true = false;
-
-		/*
-		 * Check whether the second parameter, $gmt, is a set to `true` or `1`.
-		 */
-		$gmt_param = PassedParameters::getParameterFromStack( $parameters, 2, 'gmt' );
-		if ( is_array( $gmt_param ) ) {
-			$content_gmt = '';
-			if ( 'true' === $gmt_param['clean'] || '1' === $gmt_param['clean'] ) {
-				$content_gmt = $gmt_param['clean'];
-				$gmt_true    = true;
-			}
-		}
-
-		/*
-		 * Non-UTC timestamp requested.
-		 */
-		if ( false === $gmt_true ) {
-			$this->phpcsFile->addWarning(
-				'Calling current_time() with a $type of "timestamp" or "U" is strongly discouraged as it will not return a Unix (UTC) timestamp. Please consider using a non-timestamp format or otherwise refactoring this code.',
-				$stackPtr,
-				'Requested'
-			);
-
-			return;
-		}
-
-		/*
-		 * UTC timestamp requested. Should use time() instead.
-		 */
-		$has_comment = $this->phpcsFile->findNext( Tokens::$commentTokens, ( $stackPtr + 1 ), ( $close_parens + 1 ) );
-		$error       = 'Don\'t use current_time() for retrieving a Unix (UTC) timestamp. Use time() instead. Found: %s';
-		$error_code  = 'RequestedUTC';
-
-		$code_snippet = "current_time( '" . $content_type . "'";
-		if ( isset( $content_gmt ) ) {
-			$code_snippet .= ', ' . $content_gmt;
-		}
-		$code_snippet .= ' )';
-
-		if ( false !== $has_comment ) {
-			// If there are comments, we don't auto-fix as it would remove those comments.
-			$this->phpcsFile->addError( $error, $stackPtr, $error_code, array( $code_snippet ) );
-			return;
-		}
-
-		$fix = $this->phpcsFile->addFixableError( $error, $stackPtr, $error_code, array( $code_snippet ) );
-		if ( true === $fix ) {
-			$this->phpcsFile->fixer->beginChangeset();
-
-			for ( $i = ( $stackPtr + 1 ); $i < $close_parens; $i++ ) {
-				$this->phpcsFile->fixer->replaceToken( $i, '' );
-			}
-
-			$this->phpcsFile->fixer->replaceToken( $stackPtr, 'time(' );
-			$this->phpcsFile->fixer->endChangeset();
-		}
-	}
-}

package/vendor/wp-coding-standards/wpcs/WordPress/Sniffs/DateTime/RestrictedFunctionsSniff.php

@@ -1,59 +0,0 @@
-<?php
-/**
- * WordPress Coding Standard.
- *
- * @package WPCS\WordPressCodingStandards
- * @link    https://github.com/WordPress/WordPress-Coding-Standards
- * @license https://opensource.org/licenses/MIT MIT
- */
-
-namespace WordPressCS\WordPress\Sniffs\DateTime;
-
-use WordPressCS\WordPress\AbstractFunctionRestrictionsSniff;
-
-/**
- * Forbids the use of various native DateTime related PHP/WP functions and suggests alternatives.
- *
- * @since 2.2.0
- */
-final class RestrictedFunctionsSniff extends AbstractFunctionRestrictionsSniff {
-
-	/**
-	 * Groups of functions to restrict.
-	 *
-	 * @return array
-	 */
-	public function getGroups() {
-		return array(
-
-			/*
-			 * Disallow the changing the timezone.
-			 *
-			 * @link https://vip.wordpress.com/documentation/vip-go/code-review-blockers-warnings-notices/#manipulating-the-timezone-server-side
-			 */
-			'timezone_change' => array(
-				'type'      => 'error',
-				'message'   => 'Using %s() and similar isn\'t allowed, instead use WP internal timezone support.',
-				'functions' => array(
-					'date_default_timezone_set',
-				),
-			),
-
-			/*
-			 * Use gmdate(), not date().
-			 * Don't rely on the current PHP time zone as it might have been changed by third party code.
-			 *
-			 * @link https://make.wordpress.org/core/2019/09/23/date-time-improvements-wp-5-3/
-			 * @link https://core.trac.wordpress.org/ticket/46438
-			 * @link https://github.com/WordPress/WordPress-Coding-Standards/issues/1713
-			 */
-			'date' => array(
-				'type'      => 'error',
-				'message'   => '%s() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.',
-				'functions' => array(
-					'date',
-				),
-			),
-		);
-	}
-}