Merge pull request #83 from pluginkollektiv/develop

Release 1.4.0

.distignore

@@ -0,0 +1,25 @@
+# Directories
+/.git
+/.github
+/.wordpress-org
+/bin
+/node_modules
+/tests
+/vendor
+
+# Files
+/.distignore
+/.editorconfig
+/.eslintrc.json
+/.gitattributes
+/.gitignore
+/.stylelintrc.json
+/.travis.yml
+/clover.xml
+/composer.json
+/package.json
+/package-lock.json
+/composer.lock
+/phpcs.xml
+/phpunit.xml
+

.gitattributes

@@ -10,6 +10,7 @@
 /.eslintrc.json export-ignore
 /.gitattributes export-ignore
 /.gitignore export-ignore
+/.stylelintrc.json export-ignore
 /.travis.yml export-ignore
 /composer.json export-ignore
 /composer.lock export-ignore

.github/workflows/wordpress-plugin-asset-update.yml

@@ -2,16 +2,17 @@ name: Plugin asset/readme update
 on:
   push:
     branches:
-    - master
+      - stable
 jobs:
-  master:
-    name: Push to master
+  stable:
+    name: Push to stable
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@master
-    - name: WordPress.org plugin asset/readme update
-      uses: 10up/action-wordpress-plugin-asset-update@master
-      env:
-        SVN_PASSWORD: ${{ secrets.SVN_PASSWORD }}
-        SVN_USERNAME: ${{ secrets.SVN_USERNAME }}
-        README_NAME: README.md
+      - uses: actions/checkout@v2
+      - uses: php-actions/composer@v4
+      - name: WordPress.org plugin asset/readme update
+        uses: 10up/action-wordpress-plugin-asset-update@stable
+        env:
+          SVN_PASSWORD: ${{ secrets.SVN_PASSWORD }}
+          SVN_USERNAME: ${{ secrets.SVN_USERNAME }}
+          README_NAME: README.md

.github/workflows/wordpress-plugin-deploy.yml

@@ -9,9 +9,10 @@ jobs:
     name: New tag
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@master
+    - uses: actions/checkout@v2
+    - uses: php-actions/composer@v4
     - name: WordPress Plugin Deploy
-      uses: 10up/action-wordpress-plugin-deploy@master
+      uses: 10up/action-wordpress-plugin-deploy@stable
       env:
         SVN_PASSWORD: ${{ secrets.SVN_PASSWORD }}
         SVN_USERNAME: ${{ secrets.SVN_USERNAME }}

.gitignore

@@ -1,9 +1,7 @@
-# General
-.DS_Store
-composer.lock
-package-lock.json
-
-# Dependencies (e.g. Composer, npm, etc.)
-vendor
-!vendor/.gitkeep
-node_modules
+.idea/
+css/*.min.css
+js/*.min.js
+vendor/
+node_modules/
+.phpunit.result.cache
+clover.xml

.stylelintrc.json

@@ -0,0 +1,6 @@
+{
+  "extends": "stylelint-config-wordpress",
+  "rules": {
+    "selector-id-pattern": null
+  }
+}

.travis.yml

@@ -1,39 +1,35 @@
 language: php
 
 php:
-    - 5.2
-    - 5.3
-    - 5.4
-    - 5.5
-    - 5.6
-    - 7.0
-    - hhvm
-
-matrix:
-    allow_failures:
-        - php: 7.0
-        - php: hhvm
+  - '7.3'
+  - '7.4'
+  - '8.0'
+  - nightly
 
 env:
-    - WP_VERSION=nightly WP_MULTISITE=0
-    - WP_VERSION=nightly WP_MULTISITE=1
+  global:
+    - XDEBUG_MODE=coverage
+
+jobs:
+    allow_failures:
+      - php: nightly
+
+before_install:
+  - nvm install 14
 
 # Clones WordPress and configures our testing environment.
 before_script:
-  # Setup Coveralls
-  - phpenv local 5.5
   - composer install --no-interaction
-  - phpenv local --unset
-
   - npm install
 
-  - bash bin/install-wp-tests.sh wordpress_test root '' 127.0.0.1 $WP_VERSION
-
 script:
-  - vendor/bin/phpcs -n --report=emacs --standard=phpcs.ruleset.xml antivirus.php
-  - phpunit --coverage-clover clover.xml
-  - npx eslint js/script.js
+  - composer build
+  - composer lint-all
+  - composer test
 
 after_script:
   # Push coverage off to Codecov
   - bash <(curl -s https://codecov.io/bash)
+
+notifications:
+  email: false

CHANGELOG.md

@@ -1,6 +1,6 @@
 # Changelog
 
-### unreleased ###
+### 1.4.0 ###
 * **English**
 	 * Option to provide a custom key for the Google Safe Browsing API
 	 * Scan files of parent theme if a child theme is active
@@ -39,13 +39,13 @@
 	 * added German formal translation
 	 * updated, translated + formatted README.md
 	 * updated expired link URLs in plugin and languages files
-	 * updated [plugin authors](https://gist.github.com/glueckpress/f058c0ab973d45a72720)
+	 * updated [plugin authors](https://pluginkollektiv.org/hello-world/)
 * **Deutsch**
 	 * Eine POT-Datei erstellt
 	 * formale deutsche Übersetzung (Sie) hinzugefügt
 	 * README.md aktualisiert, übersetzt und formatiert
 	 * Abgelaufene Link-Adressen in dem Plug-in und in den Sprachdateien aktualisiert
-	 * [Plugin Author](https://gist.github.com/glueckpress/f058c0ab973d45a72720) aktualisiert
+	 * [Plugin Author](https://pluginkollektiv.org/de/hallo-welt/) aktualisiert
 
 ### 1.3.8 ###
 * **English**
@@ -73,9 +73,11 @@
 
 ### 1.3.4 ###
 * **English**
-	 * [Google Safe Browsing](http://en.wikipedia.org/wiki/Google_Safe_Browsing) for malware and phishing monitoring with e-mail notification. [Additional information on Google+](https://plus.google.com/110569673423509816572/posts/H72FFwvna1i) (only German)
+	 * [Google Safe Browsing](http://en.wikipedia.org/wiki/Google_Safe_Browsing) for malware and phishing monitoring with e-mail notification.
+	   [Additional information](https://antivirus.pluginkollektiv.org/2013/05/08/new-features-in-antivirus-for-wordpress/)
 * **Deutsch**
-	 * Benachrichtigung per E-Mail, sobald [Google Safe Browsing](http://en.wikipedia.org/wiki/Google_Safe_Browsing) Malware im Blog erkennt. [Mehr auf Google+](https://plus.google.com/110569673423509816572/posts/H72FFwvna1i)
+	 * Benachrichtigung per E-Mail, sobald [Google Safe Browsing](http://en.wikipedia.org/wiki/Google_Safe_Browsing) Malware im Blog erkennt.
+	   [Mehr](https://antivirus.pluginkollektiv.org/de/2013/05/08/neue-funktion-im-antivirus-fuer-wordpress/)
 
 ### 1.3.3 ###
 * **English**
@@ -169,10 +171,10 @@
 
 ### 0.5 ###
 * **English**
-   * Add security scan for the current [WordPress permalink back door](http://mashable.com/2009/09/05/wordpress-attack/ "WordPress permalink back door")
+   * Add security scan for the current [WordPress permalink back door](http://mashable.com/2009/09/05/wordpress-attack/)
    * Software architecture changes
 * **Deutsch**
-   * Sicherheits-Überprüfung für die aktuelle [Wordpress Permalink Hintertür](http://mashable.com/2009/09/05/wordpress-attack/ "WordPress Permalink Hintertür") hinzugefügt
+   * Sicherheits-Überprüfung für die aktuelle [Wordpress Permalink Hintertür](http://mashable.com/2009/09/05/wordpress-attack/) hinzugefügt
    * Software-Architektur Änderungen
 
 ### 0.4 ###

README.md

@@ -4,8 +4,8 @@
 * Donate link:       https://www.paypal.com/cgi-bin/webscr?cmd=_donations&business=TD4AMD2D8EMZW
 * Requires at least: 3.8
 * Requires PHP:      5.2
-* Tested up to:      5.4
-* Stable tag:        1.3.10
+* Tested up to:      5.6
+* Stable tag:        1.4.0
 * License:           GPLv2 or later
 * License URI:       http://www.gnu.org/licenses/gpl-2.0.html
 
@@ -52,12 +52,17 @@ In case your WordPress site has been hacked, *AntiVirus* will help you to become
 ### Will AntiVirus protect my site from being hacked? ###
 Not literally "protect from". The plugin’s purpose is to *detect* any "hack" that has already happened and enable you to take immediate action upon it.
 
-A complete documentation is available in the [GitHub repository Wiki](https://github.com/pluginkollektiv/antivirus/wiki).
+A complete documentation is available on the [AntiVirus website](https://antivirus.pluginkollektiv.org/documentation/).
 
 ## Changelog ##
 
-### 1.3.10 ###
+### 1.4.0 ###
+* Option to provide a custom key for the Google Safe Browsing API
+* Scan files of parent theme if a child theme is active
+* Verify checksums of WP core files (integrated functionality from _Checksum Verifier_ plugin)
+* Ability to enable _Safe Browsing_ and _Checksum Verifier_ as cronjob without Theme scan
 
+### 1.3.10 ###
 * Updated PayPal link for donations
 * Improve coding standards
 * Translation fixes, improvements and cleanups
@@ -74,43 +79,13 @@ A complete documentation is available in the [GitHub repository Wiki](https://gi
 * updated expired link URLs in plugin and languages files
 * updated [plugin authors](https://gist.github.com/glueckpress/f058c0ab973d45a72720)
 
-### 1.3.8 ###
-* Detection and warning for the [MailPoet Vulnerability](http://blog.sucuri.net/2014/07/mailpoet-vulnerability-exploited-in-the-wild-breaking-thousands-of-wordpress-sites.html)
-
-### 1.3.7 ###
-* Update the Google Safe Browsing Lookup API to v3.1
-
-### 1.3.6 ###
-* Code revision and data validation
-
-### 1.3.5 ###
-* Optimizations for WordPress 3.8
-
-### 1.3.4 ###
-* [Google Safe Browsing](http://en.wikipedia.org/wiki/Google_Safe_Browsing) for malware and phishing monitoring with e-mail notification. [Additional information on Google+](https://plus.google.com/110569673423509816572/posts/H72FFwvna1i) (only german)
-
-### 1.3.3 ###
-* Add inspection for iFrames
-* Retina support for teaser and screenshot
-
-### 1.3.2 ###
-* Remove the check for include and require commands (#wpforce)
-
-### 1.3.1 ###
-* Compatibility with WordPress 3.4
-* High-resolution plugin icon for retina displays
-* Remove icon from the admin sidebar
-* System requirements: From PHP 5.0 to PHP 5.1
-
-### 1.3 ###
-* Xmas Edition
-
 For the complete changelog, check out our [GitHub repository](https://github.com/pluginkollektiv/antivirus).
 
 ## Upgrade Notice ##
 
-### 1.3.10 ###
-This is a maintenance release, fixing our Google Safe Browsing lookup and some minor issues.
+### 1.4.0 ###
+This is a feature release which integrates the functionality from _Checksum Verifier_ plugin.
 
 ## Screenshots ##
 1. WordPress AntiVirus settings
+2. Theme scan results

antivirus.php

@@ -4,11 +4,11 @@
  * Description: Security plugin to protect your blog or website against exploits and spam injections.
  * Author:      pluginkollektiv
  * Author URI:  https://pluginkollektiv.org
- * Plugin URI:  https://wordpress.org/plugins/antivirus/
+ * Plugin URI:  https://antivirus.pluginkollektiv.org
  * Text Domain: antivirus
  * License:     GPLv2 or later
  * License URI: http://www.gnu.org/licenses/gpl-2.0.html
- * Version:     1.3.10
+ * Version:     1.4.0
  *
  * [](http://coderisk.com/wp/plugin/antivirus/RIPS-x1EDAuZC-C)
  *
@@ -63,7 +63,7 @@ function antivirus_autoload( $class ) {
 
 
 // Initialize the plugin.
-add_action( 'plugins_loaded', array( 'AntiVirus', 'instance' ), 99 );
+add_action( 'plugins_loaded', array( 'AntiVirus', 'init' ), 99 );
 
 /* Hooks */
 register_activation_hook( __FILE__, array( 'AntiVirus', 'activation' ) );

composer.json

@@ -1,27 +1,58 @@
 {
   "name": "pluginkollektiv/antivirus",
   "description": "Security plugin to protect your blog or website against exploits and spam injections.",
-  "version": "1.3.10",
   "type": "wordpress-plugin",
-  "license": "GPL-2.0+",
+  "license": "GPL-2.0-or-later",
   "require": {
-    "composer/installers": "~1.0",
+    "php": ">=5.2",
     "ext-json": "*"
   },
   "require-dev": {
-    "dealerdirect/phpcodesniffer-composer-installer": "^0.4",
-    "lipemat/wp-unit": "^1.5",
+    "php": ">=7.3",
+    "dealerdirect/phpcodesniffer-composer-installer": "^0.7",
+    "10up/wp_mock": "^0.4",
     "matthiasmullie/minify": "^1.3",
-    "phpcompatibility/php-compatibility": "^9.3",
-    "phpunit/phpunit": "^7.0",
+    "phpcompatibility/phpcompatibility-wp": "^2.1",
+    "phpunit/phpunit": "^9",
     "squizlabs/php_codesniffer": "^3.5",
     "wp-coding-standards/wpcs": "^2.3"
   },
   "scripts": {
+    "post-install-cmd": [
+      "@build"
+    ],
+    "post-update-cmd": [
+      "@build"
+    ],
+    "build": [
+      "@minify"
+    ],
+    "cs": [
+      "@lint-php"
+    ],
+    "csfix": [
+      "phpcbf --standard=phpcs.xml"
+    ],
+    "lint-all": [
+      "@lint-php",
+      "@lint-js",
+      "@lint-css"
+    ],
+    "lint-css": [
+      "npx stylelint css/style.css"
+    ],
+    "lint-js": [
+      "npx eslint js/script.js"
+    ],
+    "lint-php": [
+      "phpcs --standard=phpcs.xml -s"
+    ],
     "minify": [
       "minifycss css/style.css > css/style.min.css",
       "minifyjs js/script.js > js/script.min.js"
     ],
-    "lint": "phpcs"
+    "test": [
+      "phpunit --coverage-clover clover.xml"
+    ]
   }
 }