Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3464745

Timestamp:

02/19/2026 05:25:32 AM (5 weeks ago)

Author:

bitpressadmin

Message:

Update to version 1.6.1 from GitHub

Location:

bit-assist

Files:

: 82 edited
: 1 copied

tags/1.6.1 (copied) (copied from bit-assist/trunk)
tags/1.6.1/backend/app/Config.php (modified) (5 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/AnalyticsController.php (modified) (16 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/ApiWidgetController.php (modified) (3 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/BitAssistAnalyticsController.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Controllers/DownloadController.php (modified) (4 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/IframeController.php (modified) (3 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/ResponseController.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Controllers/WPPostController.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Controllers/WidgetChannelController.php (modified) (2 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/WidgetController.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Controllers/WooChannelController.php (modified) (2 diffs)
tags/1.6.1/backend/app/HTTP/Controllers/WpSearchController.php (modified) (3 diffs)
tags/1.6.1/backend/app/HTTP/Middleware/AdminCheckerMiddleware.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Middleware/LoggedInCheckerMiddleware.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Middleware/NonceCheckerMiddleware.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Requests/WidgetChannelStoreRequest.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Requests/WidgetChannelUpdateRequest.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Requests/WidgetStoreRequest.php (modified) (1 diff)
tags/1.6.1/backend/app/HTTP/Requests/WidgetUpdateRequest.php (modified) (1 diff)
tags/1.6.1/backend/app/Helpers/FileHandler.php (modified) (4 diffs)
tags/1.6.1/backend/app/Model/Analytics.php (modified) (1 diff)
tags/1.6.1/backend/app/Model/Response.php (modified) (1 diff)
tags/1.6.1/backend/app/Model/Widget.php (modified) (2 diffs)
tags/1.6.1/backend/app/Model/WidgetChannel.php (modified) (1 diff)
tags/1.6.1/backend/app/Plugin.php (modified) (3 diffs)
tags/1.6.1/backend/app/Providers/HookProvider.php (modified) (1 diff)
tags/1.6.1/backend/app/Providers/InstallerProvider.php (modified) (1 diff)
tags/1.6.1/backend/app/Views/Layout.php (modified) (6 diffs)
tags/1.6.1/backend/bootstrap.php (modified) (1 diff)
tags/1.6.1/backend/db/Migrations/BASTAnalyticsTableMigration.php (modified) (1 diff)
tags/1.6.1/backend/db/Migrations/BASTPluginOptions.php (modified) (2 diffs)
tags/1.6.1/backend/db/Migrations/BASTResponsesTableMigration.php (modified) (1 diff)
tags/1.6.1/backend/db/Migrations/BASTUpdateCustomCssColumnInWidgetTableMigration.php (modified) (3 diffs)
tags/1.6.1/backend/db/Migrations/BASTUpdateOptions.php (modified) (2 diffs)
tags/1.6.1/backend/db/Migrations/BASTWidgetChannelsTableMigration.php (modified) (1 diff)
tags/1.6.1/backend/db/Migrations/BASTWidgetsTableMigration.php (modified) (1 diff)
tags/1.6.1/backend/hooks/ajax.php (modified) (2 diffs)
tags/1.6.1/backend/hooks/api.php (modified) (2 diffs)
tags/1.6.1/index.php (modified) (2 diffs)
tags/1.6.1/readme.txt (modified) (2 diffs)
tags/1.6.1/vendor/composer/installed.php (modified) (2 diffs)
trunk/backend/app/Config.php (modified) (5 diffs)
trunk/backend/app/HTTP/Controllers/AnalyticsController.php (modified) (16 diffs)
trunk/backend/app/HTTP/Controllers/ApiWidgetController.php (modified) (3 diffs)
trunk/backend/app/HTTP/Controllers/BitAssistAnalyticsController.php (modified) (1 diff)
trunk/backend/app/HTTP/Controllers/DownloadController.php (modified) (4 diffs)
trunk/backend/app/HTTP/Controllers/IframeController.php (modified) (3 diffs)
trunk/backend/app/HTTP/Controllers/ResponseController.php (modified) (1 diff)
trunk/backend/app/HTTP/Controllers/WPPostController.php (modified) (1 diff)
trunk/backend/app/HTTP/Controllers/WidgetChannelController.php (modified) (2 diffs)
trunk/backend/app/HTTP/Controllers/WidgetController.php (modified) (1 diff)
trunk/backend/app/HTTP/Controllers/WooChannelController.php (modified) (2 diffs)
trunk/backend/app/HTTP/Controllers/WpSearchController.php (modified) (3 diffs)
trunk/backend/app/HTTP/Middleware/AdminCheckerMiddleware.php (modified) (1 diff)
trunk/backend/app/HTTP/Middleware/LoggedInCheckerMiddleware.php (modified) (1 diff)
trunk/backend/app/HTTP/Middleware/NonceCheckerMiddleware.php (modified) (1 diff)
trunk/backend/app/HTTP/Requests/WidgetChannelStoreRequest.php (modified) (1 diff)
trunk/backend/app/HTTP/Requests/WidgetChannelUpdateRequest.php (modified) (1 diff)
trunk/backend/app/HTTP/Requests/WidgetStoreRequest.php (modified) (1 diff)
trunk/backend/app/HTTP/Requests/WidgetUpdateRequest.php (modified) (1 diff)
trunk/backend/app/Helpers/FileHandler.php (modified) (4 diffs)
trunk/backend/app/Model/Analytics.php (modified) (1 diff)
trunk/backend/app/Model/Response.php (modified) (1 diff)
trunk/backend/app/Model/Widget.php (modified) (2 diffs)
trunk/backend/app/Model/WidgetChannel.php (modified) (1 diff)
trunk/backend/app/Plugin.php (modified) (3 diffs)
trunk/backend/app/Providers/HookProvider.php (modified) (1 diff)
trunk/backend/app/Providers/InstallerProvider.php (modified) (1 diff)
trunk/backend/app/Views/Layout.php (modified) (6 diffs)
trunk/backend/bootstrap.php (modified) (1 diff)
trunk/backend/db/Migrations/BASTAnalyticsTableMigration.php (modified) (1 diff)
trunk/backend/db/Migrations/BASTPluginOptions.php (modified) (2 diffs)
trunk/backend/db/Migrations/BASTResponsesTableMigration.php (modified) (1 diff)
trunk/backend/db/Migrations/BASTUpdateCustomCssColumnInWidgetTableMigration.php (modified) (3 diffs)
trunk/backend/db/Migrations/BASTUpdateOptions.php (modified) (2 diffs)
trunk/backend/db/Migrations/BASTWidgetChannelsTableMigration.php (modified) (1 diff)
trunk/backend/db/Migrations/BASTWidgetsTableMigration.php (modified) (1 diff)
trunk/backend/hooks/ajax.php (modified) (2 diffs)
trunk/backend/hooks/api.php (modified) (2 diffs)
trunk/index.php (modified) (2 diffs)
trunk/readme.txt (modified) (2 diffs)
trunk/vendor/composer/installed.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

bit-assist/tags/1.6.1/backend/app/Config.php

-                      r3429564
+                      r3464745
 namespace BitApps\Assist;
+use BitApps\AssistPro\Config as ProConfig;
+if (!\defined('ABSPATH')) {
+if (!defined('ABSPATH')) {
     exit;
+}
+use BitApps\AssistPro\Config as ProConfig;
 /**
 …
     public const VAR_PREFIX = 'bit_assist_';
     public const VERSION = '1.6.0';
+    public const VERSION = '1.6.1';
     public const DB_VERSION = '1.0.3';
 …
             case 'SITE_URL':
                 $parsedUrl = parse_url(get_admin_url());
+                $parsedUrl = wp_parse_url(get_admin_url());
                 $siteUrl = $parsedUrl['scheme'] . '://' . $parsedUrl['host'];
                 $siteUrl .= empty($parsedUrl['port']) ? null : ':' . $parsedUrl['port'];
 …
             case 'SITE_DOMAIN':
                 $parsedUrl = parse_url(get_admin_url());
+                $parsedUrl = wp_parse_url(get_admin_url());
                 return $parsedUrl['host'];
 …
     public static function isDev()
+    {
         return \defined('BITAPPS_DEV') && BITAPPS_DEV;
+        return defined('BITAPPS_DEV') && BITAPPS_DEV;
+    }

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/AnalyticsController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
+use AllowDynamicProperties;
 use BitApps\Assist\Config;
+use AllowDynamicProperties;
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;
 use BitApps\Assist\Model\Analytics;
-use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;
-use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 #[AllowDynamicProperties]
 …
         $analyticsOption = Config::getOption('analytics_activate');
         return $analyticsOption ? (int)$analyticsOption : 0;
+        return $analyticsOption ? (int) $analyticsOption : 0;
+    }
 …
         $iterations = 0;
         $cutoff = date('Y-m-d H:i:s', strtotime("-{$retentionDays} days"));
+        $cutoff = gmdate('Y-m-d H:i:s', strtotime("-{$retentionDays} days"));
         $table = $wpdb->prefix . Config::VAR_PREFIX . 'analytics';
+        // phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter, WordPress.DB.PreparedSQL.NotPrepared -- Table name from WordPress constants, cutoff is a valid date string, batch size is a valid integer
         $preparedQuery = $wpdb->prepare(
             "DELETE FROM {$table} WHERE created_at < %s LIMIT %d",
 …
         /**
         * If the number of records deleted in a batch is equal to the batch size,
         * and the number of iterations is less than the maximum number of iterations,
         * continue deleting records in batches.
         */
+         * If the number of records deleted in a batch is equal to the batch size,
+         * and the number of iterations is less than the maximum number of iterations,
+         * continue deleting records in batches.
+         */
         do {
+            // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
             $deletedCount = $wpdb->query($preparedQuery);
 …
         $isDate = preg_match($datePattern, $filterValue) === 1;
         $startDate = date('Y-m-d');
         $endDate = date('Y-m-d');
+        $startDate = gmdate('Y-m-d');
+        $endDate = gmdate('Y-m-d');
         $dateRange = [];
 …
         $placeHolder = [0, 1, 0, 1, 1, 0, 0, 1];
+        // Build the date condition SQL
         $dateCondition = '';
         if ($filterValue === '7days') {
 …
         } elseif ($filterValue === 'today') {
             $dateCondition = 'DATE(analytics.created_at) = CURDATE()';
         } elseif ($isDate && isset($dateRange[0]) && isset($dateRange[1])) {
+        } elseif ($isDate && isset($dateRange[0], $dateRange[1])) {
             $startDate = $dateRange[0];
             $endDate = $dateRange[1];
 …
             $placeHolder[] = $endDate;
             $dateCondition = 'DATE(analytics.created_at) BETWEEN %s AND %s';
         } elseif ($isDate && count($dateRange) !== 2) {
+        } elseif ($isDate && \count($dateRange) !== 2) {
             $startDate = $dateRange[0];
             $placeHolder[] = $startDate;
 …
+        }
+        // phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber -- Table names from WordPress constants, date condition is built securely above, placeholder count varies by filter
         $sql = $wpdb->prepare(
             "SELECT
 …
                         (analytics.channel_id IS NULL AND (analytics.is_clicked = %d OR analytics.is_clicked = %d))
                     AND
                         $dateCondition
+                        {$dateCondition}
                     GROUP BY
                         analytics.widget_id, widgets.name",
             $placeHolder
         );
+        // phpcs:enable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Query is prepared above, direct query for analytics reporting
         $widgetAnalyticsData = $wpdb->get_results($sql);
 …
         $filterValue = $request->filter;
         $datePattern = '/\d{4}-\d{2}-\d{2}/';
         $isDate = is_array($filterValue) ? preg_match($datePattern, $filterValue[0]) === 1 : false;
         $startDate = date('Y-m-d');
         $endDate = date('Y-m-d');
+        $isDate = \is_array($filterValue) ? preg_match($datePattern, $filterValue[0]) === 1 : false;
+        $startDate = gmdate('Y-m-d');
+        $endDate = gmdate('Y-m-d');
         $placeHolder = [1, 0, 1, 0, $widget_id, 1];
+        // Build the date condition SQL
         $dateCondition = '';
         if ($filterValue === '7days') {
 …
         } elseif ($filterValue === 'today') {
             $dateCondition = 'DATE(analytics.created_at) = CURDATE()';
         } elseif ($isDate && isset($filterValue[0]) && isset($filterValue[1])) {
+        } elseif ($isDate && isset($filterValue[0], $filterValue[1])) {
             $startDate = $filterValue[0];
             $endDate = $filterValue[1];
 …
             $placeHolder[] = $endDate;
             $dateCondition = 'DATE(analytics.created_at) BETWEEN %s AND %s';
         } elseif ($isDate && count($filterValue) !== 2) {
+        } elseif ($isDate && \count($filterValue) !== 2) {
             $startDate = $filterValue[0];
             $placeHolder[] = $startDate;
 …
+        }
+        // phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber -- Table names from WordPress constants, date condition is built securely above, placeholder count varies by filter
         $sql = $wpdb->prepare(
             "SELECT
 …
                     analytics.is_clicked = %d
                 AND
                     $dateCondition
+                    {$dateCondition}
                 GROUP BY
                     c.id",
             $placeHolder
         );
+        // phpcs:enable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Query is prepared above, direct query for analytics reporting
         $results = $wpdb->get_results($sql);
 …
+    {
         Analytics::delete();
         return Response::success('Analytics removed!');
+    }

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/ApiWidgetController.php

-                      r3342737
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use AllowDynamicProperties;
 …
                 $domainExceptWWW = $domain;
+            }
             $widget->where('domains', 'LIKE', '%' . parse_url($domainExceptWWW)['host'] . '%');
+            $widget->where('domains', 'LIKE', '%' . wp_parse_url($domainExceptWWW)['host'] . '%');
         } else {
             return;
 …
+    {
         $widgetChannels = WidgetChannel::where('status', 1)->where('widget_id', $widgetId)->orderBy('sequence')->get(['id', 'channel_name', 'config']);
         if (!is_array($widgetChannels) || \count($widgetChannels) < 1) {
             return null;
+        if (!\is_array($widgetChannels) || \count($widgetChannels) < 1) {
+            return;
+        }

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/BitAssistAnalyticsController.php

-                      r3090183
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Model\WidgetChannel;

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/DownloadController.php

-                      r3243139
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 use BitApps\Assist\Helpers\FileHandler;
 final class DownloadController
+{
     public function downloadResponseFile()
+    public function downloadResponseFile(Request $request)
+    {
+        if (!function_exists('wp_check_filetype_and_ext')) {
+            require_once ABSPATH . 'wp-admin/includes/file.php';
+        }
+        $validated = $request->validate([
+            'widgetChannelID' => ['required', 'integer'],
+            'fileID'          => ['required', 'string', 'sanitize:text'],
+            'fileName'        => ['required', 'string', 'sanitize:text'],
+            'download'        => ['nullable'],
+        ]);
+        $widgetChannelID = intval(sanitize_text_field($_GET['widgetChannelID']));
+        $fileID = sanitize_text_field($_GET['fileID']);
+        $fileName = sanitize_text_field($_GET['fileName']);
+        $forceDownload = isset($_GET['download']);
+        $widgetChannelID = $validated['widgetChannelID'];
+        $fileID = $validated['fileID'];
+        $fileName = $validated['fileName'];
+        $forceDownload = isset($validated['download']);
         if (empty($widgetChannelID) || empty($fileID) || empty($fileName)) {
 …
     private function fileDownloadORView($filePath, $fileName, $forceDownload = false)
+    {
+        global $wp_filesystem;
+        if (empty($wp_filesystem)) {
+            require_once ABSPATH . 'wp-admin/includes/file.php';
+            WP_Filesystem();
+        }
         if ($forceDownload) {
             header('Content-Type: application/force-download');
 …
             if ($fileInfo['type'] && $fileInfo['ext']) {
                 $content_types = $fileInfo['type'];
                 if (in_array($fileInfo['ext'], ['txt', 'php', 'html', 'xhtml', 'json'])) {
+                if (\in_array($fileInfo['ext'], ['txt', 'php', 'html', 'xhtml', 'json'])) {
                     $content_types = 'text/plain';
+                }
+            }
             header('Content-Disposition:filename="' . $fileName . '"');
             header("Content-Type: $content_types");
+            header("Content-Type: {$content_types}");
+        }
 …
         header('Content-Transfer-Encoding: binary ');
         flush();
+        readfile($filePath);
+        die();
+        // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- Raw file content output for download/view, escaping would corrupt binary files.
+        echo $wp_filesystem->get_contents($filePath);
+        exit();
+    }

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/IframeController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
             'clientDomain' => ['required', 'string', 'sanitize:text'],
         ]);
         $urlParts = explode('-protocol-bit-assist-', $validated['clientDomain']);
         $protocol = $urlParts[0] === 'i' ? 'http://' : 'https://';
 …
+        }
         echo <<<HTML
+<!DOCTYPE html>
+<html lang="en">
     <head>
         <meta charset="UTF-8" />
         <meta name="viewport" content="width=device-width, initial-scale=1.0" />
         <title>Bit Assist Widget</title>
         <script crossorigin src="{$assetBase}/assets/index.js?ver={$version}"></script>
         <link rel="stylesheet" href="{$assetBase}/assets/index.css?ver={$version}">
     </head>
     <body>
         <div id="widgetWrapper" class="hide">
             <div id="contentWrapper" class="hide"></div>
             <div id="widgetBubbleRow">
                 <div id="widgetBubbleWrapper">
                     <button id="widgetBubble"><img alt="Widget Icon" id="widget-img" /></button>
                     <span id="credit"><a href="https://www.bitapps.pro/bit-assist" rel="nofollow noreferrer noopener" target="_blank">by Bit Assist</a></span>
                 </div>
             </div>
         </div>
     </body>
+</html>
 HTML;
+        echo '<!DOCTYPE html>';
+        echo '<html lang="en">';
+        echo '<head>';
+        echo '<meta charset="UTF-8" />';
+        echo '<meta name="viewport" content="width=device-width, initial-scale=1.0" />';
+        echo '<title>Bit Assist Widget</title>';
+        // phpcs:ignore WordPress.WP.EnqueuedResources.NonEnqueuedScript -- It can be outside of WordPress environment, so we can't rely on wp_enqueue_script.
+        echo '<script crossorigin src="' . esc_url($assetBase . '/assets/index.js?ver=' . $version) . '"></script>';
+        // phpcs:ignore WordPress.WP.EnqueuedResources.NonEnqueuedStylesheet -- It can be outside of WordPress environment, so we can't rely on wp_enqueue_style.
+        echo '<link rel="stylesheet" href="' . esc_url($assetBase . '/assets/index.css?ver=' . $version) . '">';
+        echo '</head>';
+        echo '<body>';
+        echo '<div id="widgetWrapper" class="hide">';
+        echo '<div id="contentWrapper" class="hide"></div>';
+        echo '<div id="widgetBubbleRow">';
+        echo '<div id="widgetBubbleWrapper">';
+        echo '<button id="widgetBubble"><img alt="Widget Icon" id="widget-img" /></button>';
+        echo '<span id="credit"><a href="https://www.bitapps.pro/bit-assist" rel="nofollow noreferrer noopener" target="_blank">by Bit Assist</a></span>';
+        echo '</div>';
+        echo '</div>';
+        echo '</div>';
+        echo '</body>';
+        echo '</html>';
         status_header(200);

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/ResponseController.php

-                      r3243139
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/WPPostController.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/WidgetChannelController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
+    {
         $validated['config']['title'] = sanitize_text_field($validated['config']['title']);
         return $validated;
+    }

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/WidgetController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/WooChannelController.php

-                      r3429564
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use AllowDynamicProperties;
 …
         $order_id = sanitize_text_field($request->get('number'));
         $billing_email = sanitize_email($request->get('email'));
         $widget_channel_id = intval($request->get('widget_channel_id'));
+        $widget_channel_id = \intval($request->get('widget_channel_id'));
         if (!$order_id) {

bit-assist/tags/1.6.1/backend/app/HTTP/Controllers/WpSearchController.php

-                      r3342879
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use AllowDynamicProperties;
 …
     private function getPageAndPosts($search, $page, $postTypes)
+    {
         $paged = max(1, intval($page));
+        $paged = max(1, \intval($page));
         $search = trim($search);
 …
             ];
         }, array_filter($posts, function ($post) {
             return $post && is_object($post);
+            return $post && \is_object($post);
         }));
+    }

bit-assist/tags/1.6.1/backend/app/HTTP/Middleware/AdminCheckerMiddleware.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Middleware;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;

bit-assist/tags/1.6.1/backend/app/HTTP/Middleware/LoggedInCheckerMiddleware.php

-                      r3407659
+                      r3464745
 namespace BitApps\Assist\HTTP\Middleware;
+// Prevent direct script access
+if (!\defined('ABSPATH')) {
+if (!defined('ABSPATH')) {
     exit;
+}

bit-assist/tags/1.6.1/backend/app/HTTP/Middleware/NonceCheckerMiddleware.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Middleware;
+if (!defined('ABSPATH')) {
+    exit;
+}
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;
-use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 final class NonceCheckerMiddleware

bit-assist/tags/1.6.1/backend/app/HTTP/Requests/WidgetChannelStoreRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/tags/1.6.1/backend/app/HTTP/Requests/WidgetChannelUpdateRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/tags/1.6.1/backend/app/HTTP/Requests/WidgetStoreRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/tags/1.6.1/backend/app/HTTP/Requests/WidgetUpdateRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/tags/1.6.1/backend/app/Helpers/FileHandler.php

-                      r3299751
+                      r3464745
 namespace BitApps\Assist\Helpers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
         $file_uploaded = [];
         if (is_array($fileDetails['name'])) {
+        if (\is_array($fileDetails['name'])) {
             foreach ($fileDetails['name'] as $key => $fileName) {
                 $fileData = $this->saveFile($_upload_dir, $fileDetails['tmp_name'][$key], $fileName);
 …
+    }
+    public function deleteFiles($widgetChannelID, $files)
+    {
+        $_upload_dir = Config::get('UPLOAD_DIR') . DIRECTORY_SEPARATOR . $widgetChannelID;
+        foreach ($files as $name) {
+            wp_delete_file($_upload_dir . DIRECTORY_SEPARATOR . $name);
+        }
+    }
     private function saveFile($_upload_dir, $tmpName, $fileName)
+    {
 …
         $file_uploaded = ['uniqueName' => $uniqueFileName, 'originalName' => $fileName];
+        $move_status = \move_uploaded_file($tmpName, $_upload_dir . DIRECTORY_SEPARATOR . $uniqueFileName);
+        global $wp_filesystem;
+        if (empty($wp_filesystem)) {
+            require_once ABSPATH . 'wp-admin/includes/file.php';
+            WP_Filesystem();
+        }
+        $destination = $_upload_dir . DIRECTORY_SEPARATOR . $uniqueFileName;
+        $move_status = $wp_filesystem->move($tmpName, $destination, true);
         if (!$move_status) {
             return false;
+        }
         return $file_uploaded;
+    }
-    public function deleteFiles($widgetChannelID, $files)
+    {
-        $_upload_dir = Config::get('UPLOAD_DIR') . DIRECTORY_SEPARATOR . $widgetChannelID;
-        foreach ($files as $name) {
-            unlink($_upload_dir . DIRECTORY_SEPARATOR . $name);
+        }
+    }
+}

bit-assist/tags/1.6.1/backend/app/Model/Analytics.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/Model/Response.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/Model/Widget.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
+{
     protected $prefix = Config::VAR_PREFIX;
     protected $casts = [
         'styles'           => 'object',

bit-assist/tags/1.6.1/backend/app/Model/WidgetChannel.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/Plugin.php

-                      r3407659
+                      r3464745
 namespace BitApps\Assist;
+if (!defined('ABSPATH')) {
+    exit;
+}
 /*
 …
  */
-use BitApps\Assist\Deps\BitApps\WPKit\Migration\MigrationHelper;
 use BitApps\Assist\Deps\BitApps\WPKit\Hooks\Hooks;
 use BitApps\Assist\Deps\BitApps\WPKit\Http\RequestType;
+use BitApps\Assist\Deps\BitApps\WPKit\Migration\MigrationHelper;
 use BitApps\Assist\Deps\BitApps\WPKit\Utils\Capabilities;
 use BitApps\Assist\Deps\BitApps\WPTelemetry\Telemetry\Telemetry;
 …
         /**
          * Add schedule to cleanup analytics if the plugin version is less than or equal to 1.5.3
+         *
          * @since 1.5.4
          */

bit-assist/tags/1.6.1/backend/app/Providers/HookProvider.php

-                      r3407659
+                      r3464745
 namespace BitApps\Assist\Providers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/Providers/InstallerProvider.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Providers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/tags/1.6.1/backend/app/Views/Layout.php

-                      r3195774
+                      r3464745
                         $menu['capability'],
                         $menu['slug'],
                         is_string($menu['callback']) ? (method_exists($this, $menu['callback']) ? [$this, $menu['callback']] : $menu['callback']) : $menu['callback'],
+                        \is_string($menu['callback']) ? (method_exists($this, $menu['callback']) ? [$this, $menu['callback']] : $menu['callback']) : $menu['callback'],
                         $menu['icon'],
                         $menu['position']
 …
         // loading google fonts
+        // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.MissingVersion -- External font resource version managed by Google
         wp_enqueue_style('googleapis-PRECONNECT', 'https://fonts.googleapis.com');
+        // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.MissingVersion -- External font resource version managed by Google
         wp_enqueue_style('gstatic-PRECONNECT-CROSSORIGIN', 'https://fonts.gstatic.com');
         wp_enqueue_style('font', self::FONT_URL, [], $version);
 …
         if (Config::isDev()) {
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter, WordPress.WP.EnqueuedResourceParameters.MissingVersion -- Dev mode hot reload script must load in header
             wp_enqueue_script($slug . '-vite-client-helper-MODULE', Config::DEV_URL . '/config/devHotModule.js', [], null);
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter, WordPress.WP.EnqueuedResourceParameters.MissingVersion -- Dev mode hot reload script must load in header
             wp_enqueue_script($slug . '-vite-client-MODULE', Config::DEV_URL . '/@vite/client', [], null);
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter, WordPress.WP.EnqueuedResourceParameters.MissingVersion -- Dev mode hot reload script must load in header
             wp_enqueue_script($slug . '-index-MODULE', Config::DEV_URL . '/index.tsx', [], null);
         } else {
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter -- Main app script must load in header for proper initialization
             wp_enqueue_script($slug . '-index-MODULE', $assetUri . '/index.js', [], $version);
             wp_enqueue_style($slug . '-styles', $assetUri . '/index.css', null, $version);
 …
         $rootURL = Config::get('ROOT_URI');
+        // phpcs:disable Generic.PHP.ForbiddenFunctions.Found
+        echo <<<HTML
+        <noscript>You need to enable JavaScript to run this app.</noscript>
+        <div id="bit-apps-root">
+        <div
+            style="display: flex;flex-direction: column;justify-content: center;
+            align-items: center;height: 90vh;font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;">
+            <img alt="bit-assist-logo" class="bit-logo" width="70" src="{$rootURL}/img/logo.svg">
+            <h1>Welcome to Bit Assist</h1>
+            <p></p>
+        </div>
+        </div>
+HTML;
+        echo '<noscript>You need to enable JavaScript to run this app.</noscript>';
+        echo '<div id="bit-apps-root">';
+        echo '<div style="display: flex;flex-direction: column;justify-content: center;';
+        echo 'align-items: center;height: 90vh;font-family: \'Segoe UI\', Tahoma, Geneva, Verdana, sans-serif;">';
+        echo '<img alt="bit-assist-logo" class="bit-logo" width="70" src="' . esc_url($rootURL . '/img/logo.svg') . '">';
+        echo '<h1>Welcome to Bit Assist</h1>';
+        echo '<p></p>';
+        echo '</div>';
+        echo '</div>';
+    }
 …
     public function createConfigVariable()
+    {
+        // phpcs:disable WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound -- Hook name is prefixed via Config::withPrefix()
         $frontendVars = apply_filters(
             Config::withPrefix('localized_script'),
 …
+            ]
         );
+        // phpcs:enable WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound
         if (get_locale() !== 'en_US' && file_exists(Config::get('BASEDIR') . '/languages/generatedString.php')) {
             include_once Config::get('BASEDIR') . '/languages/generatedString.php';

bit-assist/tags/1.6.1/backend/bootstrap.php

r2814120	r3464745
1	1	<?php
2	2
3		if (!\defined('ABSPATH')) {
	3	if (!defined('ABSPATH')) {
4	4	exit;
5	5	}

bit-assist/tags/1.6.1/backend/db/Migrations/BASTAnalyticsTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTAnalyticsTableMigration extends Migration
+{

bit-assist/tags/1.6.1/backend/db/Migrations/BASTPluginOptions.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTPluginOptions extends Migration
+{

bit-assist/tags/1.6.1/backend/db/Migrations/BASTResponsesTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTResponsesTableMigration extends Migration
+{

bit-assist/tags/1.6.1/backend/db/Migrations/BASTUpdateCustomCssColumnInWidgetTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTUpdateCustomCssColumnInWidgetTableMigration extends Migration
+{
 …
         global $wpdb;
         $table_name = Config::withDBPrefix('widgets');
+        $sql = "ALTER TABLE $table_name MODIFY COLUMN custom_css LONGTEXT NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements
+        $sql = "ALTER TABLE {$table_name} MODIFY COLUMN custom_css LONGTEXT NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements, direct DB query required for migration
         $wpdb->query($sql);
+    }
 …
         global $wpdb;
         $table_name = Config::withDBPrefix('widgets');
+        $sql = "ALTER TABLE $table_name MODIFY COLUMN custom_css VARCHAR(255) NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements
+        $sql = "ALTER TABLE {$table_name} MODIFY COLUMN custom_css VARCHAR(255) NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements, direct DB query required for migration
         $wpdb->query($sql);
+    }

bit-assist/tags/1.6.1/backend/db/Migrations/BASTUpdateOptions.php

r3195774	r3464745
1	1	<?php
	2
	3	if (!defined('ABSPATH')) {
	4	exit;
	5	}
2	6
3	7	use BitApps\Assist\Config;
4	8	use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
5	9
6		if (!\defined('ABSPATH')) {
7		exit;
8		}
9
	10	// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
10	11	final class BASTUpdateOptions extends Migration
11	12	{
…	…
18	19	public function down()
19	20	{
20		~~return;~~
21	21	}
22	22	}

bit-assist/tags/1.6.1/backend/db/Migrations/BASTWidgetChannelsTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTWidgetChannelsTableMigration extends Migration
+{

bit-assist/tags/1.6.1/backend/db/Migrations/BASTWidgetsTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTWidgetsTableMigration extends Migration
+{

bit-assist/tags/1.6.1/backend/hooks/ajax.php

-                      r3241612
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Router\Route;
 …
 use BitApps\Assist\HTTP\Controllers\WidgetController;
 use BitApps\Assist\HTTP\Controllers\WPPostController;
-if (!\defined('ABSPATH')) {
-    exit;
+}
 // if (!headers_sent()) {

bit-assist/tags/1.6.1/backend/hooks/api.php

-                      r3407659
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Router\Route;
 …
 use BitApps\Assist\HTTP\Controllers\ApiWidgetController;
 use BitApps\Assist\HTTP\Controllers\IframeController;
+use BitApps\Assist\HTTP\Controllers\ResponseController;
 use BitApps\Assist\HTTP\Controllers\WooChannelController;
-use BitApps\Assist\HTTP\Controllers\ResponseController;
 use BitApps\Assist\HTTP\Controllers\WpSearchController;
-if (!\defined('ABSPATH')) {
-    exit;
+}
 Route::group(function () {

bit-assist/tags/1.6.1/index.php

-                      r3429564
+                      r3464745
  * Plugin URI:  https://bitapps.pro/bit-assist
  * Description: WhatsApp,Facebook Messenger chat, click to chat Live Chat Widget,Call button & 30+ social chat support button for customer support with sticky chat button
  * Version:     1.6.0
+ * Version:     1.6.1
  * Author:      Bit Assist - Click to Chat Widget Live Chat Support Chat Button
  * Author URI:  https://bitapps.pro
 …
  * License: gpl2+
  */
+if (!defined('ABSPATH')) {
+    exit;
+}
 require_once plugin_dir_path(__FILE__) . 'backend/bootstrap.php';

bit-assist/tags/1.6.1/readme.txt

-                      r3429564
+                      r3464745
 Tested up to: 6.9
 Requires PHP: 7.4
 Stable tag: 1.6.0
+Stable tag: 1.6.1
 License: GPLv2 or later
 …
 == Changelog ==
+= v1.6.1 (Feb 19, 2026) =
+* Fix: WordPress Plugin Checker issues fixed.
 = v1.6.0 (Dec 30, 2025) =
 * Fix: WooCommerce order details can now only be viewed by the user who placed the order.

bit-assist/tags/1.6.1/vendor/composer/installed.php

-                      r3429564
+                      r3464745
     'root' => array(
         'name' => 'bitapps/assist',
         'pretty_version' => '1.6.0',
         'version' => '1.6.0.0',
         'reference' => '88cb852704f8f67eb6e264dbe8a16b757d0147a9',
+        'pretty_version' => '1.6.1',
+        'version' => '1.6.1.0',
+        'reference' => '0428cad0defb425d7b7e89022c5d9ddd47ce7542',
         'type' => 'library',
         'install_path' => __DIR__ . '/../../',
 …
     'versions' => array(
         'bitapps/assist' => array(
             'pretty_version' => '1.6.0',
             'version' => '1.6.0.0',
             'reference' => '88cb852704f8f67eb6e264dbe8a16b757d0147a9',
+            'pretty_version' => '1.6.1',
+            'version' => '1.6.1.0',
+            'reference' => '0428cad0defb425d7b7e89022c5d9ddd47ce7542',
             'type' => 'library',
             'install_path' => __DIR__ . '/../../',

bit-assist/trunk/backend/app/Config.php

-                      r3429564
+                      r3464745
 namespace BitApps\Assist;
+use BitApps\AssistPro\Config as ProConfig;
+if (!\defined('ABSPATH')) {
+if (!defined('ABSPATH')) {
     exit;
+}
+use BitApps\AssistPro\Config as ProConfig;
 /**
 …
     public const VAR_PREFIX = 'bit_assist_';
     public const VERSION = '1.6.0';
+    public const VERSION = '1.6.1';
     public const DB_VERSION = '1.0.3';
 …
             case 'SITE_URL':
                 $parsedUrl = parse_url(get_admin_url());
+                $parsedUrl = wp_parse_url(get_admin_url());
                 $siteUrl = $parsedUrl['scheme'] . '://' . $parsedUrl['host'];
                 $siteUrl .= empty($parsedUrl['port']) ? null : ':' . $parsedUrl['port'];
 …
             case 'SITE_DOMAIN':
                 $parsedUrl = parse_url(get_admin_url());
+                $parsedUrl = wp_parse_url(get_admin_url());
                 return $parsedUrl['host'];
 …
     public static function isDev()
+    {
         return \defined('BITAPPS_DEV') && BITAPPS_DEV;
+        return defined('BITAPPS_DEV') && BITAPPS_DEV;
+    }

bit-assist/trunk/backend/app/HTTP/Controllers/AnalyticsController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
+use AllowDynamicProperties;
 use BitApps\Assist\Config;
+use AllowDynamicProperties;
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;
 use BitApps\Assist\Model\Analytics;
-use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;
-use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 #[AllowDynamicProperties]
 …
         $analyticsOption = Config::getOption('analytics_activate');
         return $analyticsOption ? (int)$analyticsOption : 0;
+        return $analyticsOption ? (int) $analyticsOption : 0;
+    }
 …
         $iterations = 0;
         $cutoff = date('Y-m-d H:i:s', strtotime("-{$retentionDays} days"));
+        $cutoff = gmdate('Y-m-d H:i:s', strtotime("-{$retentionDays} days"));
         $table = $wpdb->prefix . Config::VAR_PREFIX . 'analytics';
+        // phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter, WordPress.DB.PreparedSQL.NotPrepared -- Table name from WordPress constants, cutoff is a valid date string, batch size is a valid integer
         $preparedQuery = $wpdb->prepare(
             "DELETE FROM {$table} WHERE created_at < %s LIMIT %d",
 …
         /**
         * If the number of records deleted in a batch is equal to the batch size,
         * and the number of iterations is less than the maximum number of iterations,
         * continue deleting records in batches.
         */
+         * If the number of records deleted in a batch is equal to the batch size,
+         * and the number of iterations is less than the maximum number of iterations,
+         * continue deleting records in batches.
+         */
         do {
+            // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
             $deletedCount = $wpdb->query($preparedQuery);
 …
         $isDate = preg_match($datePattern, $filterValue) === 1;
         $startDate = date('Y-m-d');
         $endDate = date('Y-m-d');
+        $startDate = gmdate('Y-m-d');
+        $endDate = gmdate('Y-m-d');
         $dateRange = [];
 …
         $placeHolder = [0, 1, 0, 1, 1, 0, 0, 1];
+        // Build the date condition SQL
         $dateCondition = '';
         if ($filterValue === '7days') {
 …
         } elseif ($filterValue === 'today') {
             $dateCondition = 'DATE(analytics.created_at) = CURDATE()';
         } elseif ($isDate && isset($dateRange[0]) && isset($dateRange[1])) {
+        } elseif ($isDate && isset($dateRange[0], $dateRange[1])) {
             $startDate = $dateRange[0];
             $endDate = $dateRange[1];
 …
             $placeHolder[] = $endDate;
             $dateCondition = 'DATE(analytics.created_at) BETWEEN %s AND %s';
         } elseif ($isDate && count($dateRange) !== 2) {
+        } elseif ($isDate && \count($dateRange) !== 2) {
             $startDate = $dateRange[0];
             $placeHolder[] = $startDate;
 …
+        }
+        // phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber -- Table names from WordPress constants, date condition is built securely above, placeholder count varies by filter
         $sql = $wpdb->prepare(
             "SELECT
 …
                         (analytics.channel_id IS NULL AND (analytics.is_clicked = %d OR analytics.is_clicked = %d))
                     AND
                         $dateCondition
+                        {$dateCondition}
                     GROUP BY
                         analytics.widget_id, widgets.name",
             $placeHolder
         );
+        // phpcs:enable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Query is prepared above, direct query for analytics reporting
         $widgetAnalyticsData = $wpdb->get_results($sql);
 …
         $filterValue = $request->filter;
         $datePattern = '/\d{4}-\d{2}-\d{2}/';
         $isDate = is_array($filterValue) ? preg_match($datePattern, $filterValue[0]) === 1 : false;
         $startDate = date('Y-m-d');
         $endDate = date('Y-m-d');
+        $isDate = \is_array($filterValue) ? preg_match($datePattern, $filterValue[0]) === 1 : false;
+        $startDate = gmdate('Y-m-d');
+        $endDate = gmdate('Y-m-d');
         $placeHolder = [1, 0, 1, 0, $widget_id, 1];
+        // Build the date condition SQL
         $dateCondition = '';
         if ($filterValue === '7days') {
 …
         } elseif ($filterValue === 'today') {
             $dateCondition = 'DATE(analytics.created_at) = CURDATE()';
         } elseif ($isDate && isset($filterValue[0]) && isset($filterValue[1])) {
+        } elseif ($isDate && isset($filterValue[0], $filterValue[1])) {
             $startDate = $filterValue[0];
             $endDate = $filterValue[1];
 …
             $placeHolder[] = $endDate;
             $dateCondition = 'DATE(analytics.created_at) BETWEEN %s AND %s';
         } elseif ($isDate && count($filterValue) !== 2) {
+        } elseif ($isDate && \count($filterValue) !== 2) {
             $startDate = $filterValue[0];
             $placeHolder[] = $startDate;
 …
+        }
+        // phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber -- Table names from WordPress constants, date condition is built securely above, placeholder count varies by filter
         $sql = $wpdb->prepare(
             "SELECT
 …
                     analytics.is_clicked = %d
                 AND
                     $dateCondition
+                    {$dateCondition}
                 GROUP BY
                     c.id",
             $placeHolder
         );
+        // phpcs:enable WordPress.DB.PreparedSQL.InterpolatedNotPrepared, WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Query is prepared above, direct query for analytics reporting
         $results = $wpdb->get_results($sql);
 …
+    {
         Analytics::delete();
         return Response::success('Analytics removed!');
+    }

bit-assist/trunk/backend/app/HTTP/Controllers/ApiWidgetController.php

-                      r3342737
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use AllowDynamicProperties;
 …
                 $domainExceptWWW = $domain;
+            }
             $widget->where('domains', 'LIKE', '%' . parse_url($domainExceptWWW)['host'] . '%');
+            $widget->where('domains', 'LIKE', '%' . wp_parse_url($domainExceptWWW)['host'] . '%');
         } else {
             return;
 …
+    {
         $widgetChannels = WidgetChannel::where('status', 1)->where('widget_id', $widgetId)->orderBy('sequence')->get(['id', 'channel_name', 'config']);
         if (!is_array($widgetChannels) || \count($widgetChannels) < 1) {
             return null;
+        if (!\is_array($widgetChannels) || \count($widgetChannels) < 1) {
+            return;
+        }

bit-assist/trunk/backend/app/HTTP/Controllers/BitAssistAnalyticsController.php

-                      r3090183
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Model\WidgetChannel;

bit-assist/trunk/backend/app/HTTP/Controllers/DownloadController.php

-                      r3243139
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 use BitApps\Assist\Helpers\FileHandler;
 final class DownloadController
+{
     public function downloadResponseFile()
+    public function downloadResponseFile(Request $request)
+    {
+        if (!function_exists('wp_check_filetype_and_ext')) {
+            require_once ABSPATH . 'wp-admin/includes/file.php';
+        }
+        $validated = $request->validate([
+            'widgetChannelID' => ['required', 'integer'],
+            'fileID'          => ['required', 'string', 'sanitize:text'],
+            'fileName'        => ['required', 'string', 'sanitize:text'],
+            'download'        => ['nullable'],
+        ]);
+        $widgetChannelID = intval(sanitize_text_field($_GET['widgetChannelID']));
+        $fileID = sanitize_text_field($_GET['fileID']);
+        $fileName = sanitize_text_field($_GET['fileName']);
+        $forceDownload = isset($_GET['download']);
+        $widgetChannelID = $validated['widgetChannelID'];
+        $fileID = $validated['fileID'];
+        $fileName = $validated['fileName'];
+        $forceDownload = isset($validated['download']);
         if (empty($widgetChannelID) || empty($fileID) || empty($fileName)) {
 …
     private function fileDownloadORView($filePath, $fileName, $forceDownload = false)
+    {
+        global $wp_filesystem;
+        if (empty($wp_filesystem)) {
+            require_once ABSPATH . 'wp-admin/includes/file.php';
+            WP_Filesystem();
+        }
         if ($forceDownload) {
             header('Content-Type: application/force-download');
 …
             if ($fileInfo['type'] && $fileInfo['ext']) {
                 $content_types = $fileInfo['type'];
                 if (in_array($fileInfo['ext'], ['txt', 'php', 'html', 'xhtml', 'json'])) {
+                if (\in_array($fileInfo['ext'], ['txt', 'php', 'html', 'xhtml', 'json'])) {
                     $content_types = 'text/plain';
+                }
+            }
             header('Content-Disposition:filename="' . $fileName . '"');
             header("Content-Type: $content_types");
+            header("Content-Type: {$content_types}");
+        }
 …
         header('Content-Transfer-Encoding: binary ');
         flush();
+        readfile($filePath);
+        die();
+        // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- Raw file content output for download/view, escaping would corrupt binary files.
+        echo $wp_filesystem->get_contents($filePath);
+        exit();
+    }

bit-assist/trunk/backend/app/HTTP/Controllers/IframeController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
             'clientDomain' => ['required', 'string', 'sanitize:text'],
         ]);
         $urlParts = explode('-protocol-bit-assist-', $validated['clientDomain']);
         $protocol = $urlParts[0] === 'i' ? 'http://' : 'https://';
 …
+        }
         echo <<<HTML
+<!DOCTYPE html>
+<html lang="en">
     <head>
         <meta charset="UTF-8" />
         <meta name="viewport" content="width=device-width, initial-scale=1.0" />
         <title>Bit Assist Widget</title>
         <script crossorigin src="{$assetBase}/assets/index.js?ver={$version}"></script>
         <link rel="stylesheet" href="{$assetBase}/assets/index.css?ver={$version}">
     </head>
     <body>
         <div id="widgetWrapper" class="hide">
             <div id="contentWrapper" class="hide"></div>
             <div id="widgetBubbleRow">
                 <div id="widgetBubbleWrapper">
                     <button id="widgetBubble"><img alt="Widget Icon" id="widget-img" /></button>
                     <span id="credit"><a href="https://www.bitapps.pro/bit-assist" rel="nofollow noreferrer noopener" target="_blank">by Bit Assist</a></span>
                 </div>
             </div>
         </div>
     </body>
+</html>
 HTML;
+        echo '<!DOCTYPE html>';
+        echo '<html lang="en">';
+        echo '<head>';
+        echo '<meta charset="UTF-8" />';
+        echo '<meta name="viewport" content="width=device-width, initial-scale=1.0" />';
+        echo '<title>Bit Assist Widget</title>';
+        // phpcs:ignore WordPress.WP.EnqueuedResources.NonEnqueuedScript -- It can be outside of WordPress environment, so we can't rely on wp_enqueue_script.
+        echo '<script crossorigin src="' . esc_url($assetBase . '/assets/index.js?ver=' . $version) . '"></script>';
+        // phpcs:ignore WordPress.WP.EnqueuedResources.NonEnqueuedStylesheet -- It can be outside of WordPress environment, so we can't rely on wp_enqueue_style.
+        echo '<link rel="stylesheet" href="' . esc_url($assetBase . '/assets/index.css?ver=' . $version) . '">';
+        echo '</head>';
+        echo '<body>';
+        echo '<div id="widgetWrapper" class="hide">';
+        echo '<div id="contentWrapper" class="hide"></div>';
+        echo '<div id="widgetBubbleRow">';
+        echo '<div id="widgetBubbleWrapper">';
+        echo '<button id="widgetBubble"><img alt="Widget Icon" id="widget-img" /></button>';
+        echo '<span id="credit"><a href="https://www.bitapps.pro/bit-assist" rel="nofollow noreferrer noopener" target="_blank">by Bit Assist</a></span>';
+        echo '</div>';
+        echo '</div>';
+        echo '</div>';
+        echo '</body>';
+        echo '</html>';
         status_header(200);

bit-assist/trunk/backend/app/HTTP/Controllers/ResponseController.php

-                      r3243139
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/HTTP/Controllers/WPPostController.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;

bit-assist/trunk/backend/app/HTTP/Controllers/WidgetChannelController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
+    {
         $validated['config']['title'] = sanitize_text_field($validated['config']['title']);
         return $validated;
+    }

bit-assist/trunk/backend/app/HTTP/Controllers/WidgetController.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/HTTP/Controllers/WooChannelController.php

-                      r3429564
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use AllowDynamicProperties;
 …
         $order_id = sanitize_text_field($request->get('number'));
         $billing_email = sanitize_email($request->get('email'));
         $widget_channel_id = intval($request->get('widget_channel_id'));
+        $widget_channel_id = \intval($request->get('widget_channel_id'));
         if (!$order_id) {

bit-assist/trunk/backend/app/HTTP/Controllers/WpSearchController.php

-                      r3342879
+                      r3464745
 namespace BitApps\Assist\HTTP\Controllers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use AllowDynamicProperties;
 …
     private function getPageAndPosts($search, $page, $postTypes)
+    {
         $paged = max(1, intval($page));
+        $paged = max(1, \intval($page));
         $search = trim($search);
 …
             ];
         }, array_filter($posts, function ($post) {
             return $post && is_object($post);
+            return $post && \is_object($post);
         }));
+    }

bit-assist/trunk/backend/app/HTTP/Middleware/AdminCheckerMiddleware.php

-                      r3241612
+                      r3464745
 namespace BitApps\Assist\HTTP\Middleware;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;

bit-assist/trunk/backend/app/HTTP/Middleware/LoggedInCheckerMiddleware.php

-                      r3407659
+                      r3464745
 namespace BitApps\Assist\HTTP\Middleware;
+// Prevent direct script access
+if (!\defined('ABSPATH')) {
+if (!defined('ABSPATH')) {
     exit;
+}

bit-assist/trunk/backend/app/HTTP/Middleware/NonceCheckerMiddleware.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Middleware;
+if (!defined('ABSPATH')) {
+    exit;
+}
+use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Response;
-use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;
 final class NonceCheckerMiddleware

bit-assist/trunk/backend/app/HTTP/Requests/WidgetChannelStoreRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/trunk/backend/app/HTTP/Requests/WidgetChannelUpdateRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/trunk/backend/app/HTTP/Requests/WidgetStoreRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/trunk/backend/app/HTTP/Requests/WidgetUpdateRequest.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\HTTP\Requests;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Request\Request;

bit-assist/trunk/backend/app/Helpers/FileHandler.php

-                      r3299751
+                      r3464745
 namespace BitApps\Assist\Helpers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
         $file_uploaded = [];
         if (is_array($fileDetails['name'])) {
+        if (\is_array($fileDetails['name'])) {
             foreach ($fileDetails['name'] as $key => $fileName) {
                 $fileData = $this->saveFile($_upload_dir, $fileDetails['tmp_name'][$key], $fileName);
 …
+    }
+    public function deleteFiles($widgetChannelID, $files)
+    {
+        $_upload_dir = Config::get('UPLOAD_DIR') . DIRECTORY_SEPARATOR . $widgetChannelID;
+        foreach ($files as $name) {
+            wp_delete_file($_upload_dir . DIRECTORY_SEPARATOR . $name);
+        }
+    }
     private function saveFile($_upload_dir, $tmpName, $fileName)
+    {
 …
         $file_uploaded = ['uniqueName' => $uniqueFileName, 'originalName' => $fileName];
+        $move_status = \move_uploaded_file($tmpName, $_upload_dir . DIRECTORY_SEPARATOR . $uniqueFileName);
+        global $wp_filesystem;
+        if (empty($wp_filesystem)) {
+            require_once ABSPATH . 'wp-admin/includes/file.php';
+            WP_Filesystem();
+        }
+        $destination = $_upload_dir . DIRECTORY_SEPARATOR . $uniqueFileName;
+        $move_status = $wp_filesystem->move($tmpName, $destination, true);
         if (!$move_status) {
             return false;
+        }
         return $file_uploaded;
+    }
-    public function deleteFiles($widgetChannelID, $files)
+    {
-        $_upload_dir = Config::get('UPLOAD_DIR') . DIRECTORY_SEPARATOR . $widgetChannelID;
-        foreach ($files as $name) {
-            unlink($_upload_dir . DIRECTORY_SEPARATOR . $name);
+        }
+    }
+}

bit-assist/trunk/backend/app/Model/Analytics.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/Model/Response.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/Model/Widget.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
+{
     protected $prefix = Config::VAR_PREFIX;
     protected $casts = [
         'styles'           => 'object',

bit-assist/trunk/backend/app/Model/WidgetChannel.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Model;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/Plugin.php

-                      r3407659
+                      r3464745
 namespace BitApps\Assist;
+if (!defined('ABSPATH')) {
+    exit;
+}
 /*
 …
  */
-use BitApps\Assist\Deps\BitApps\WPKit\Migration\MigrationHelper;
 use BitApps\Assist\Deps\BitApps\WPKit\Hooks\Hooks;
 use BitApps\Assist\Deps\BitApps\WPKit\Http\RequestType;
+use BitApps\Assist\Deps\BitApps\WPKit\Migration\MigrationHelper;
 use BitApps\Assist\Deps\BitApps\WPKit\Utils\Capabilities;
 use BitApps\Assist\Deps\BitApps\WPTelemetry\Telemetry\Telemetry;
 …
         /**
          * Add schedule to cleanup analytics if the plugin version is less than or equal to 1.5.3
+         *
          * @since 1.5.4
          */

bit-assist/trunk/backend/app/Providers/HookProvider.php

-                      r3407659
+                      r3464745
 namespace BitApps\Assist\Providers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/Providers/InstallerProvider.php

-                      r3195774
+                      r3464745
 namespace BitApps\Assist\Providers;
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;

bit-assist/trunk/backend/app/Views/Layout.php

-                      r3195774
+                      r3464745
                         $menu['capability'],
                         $menu['slug'],
                         is_string($menu['callback']) ? (method_exists($this, $menu['callback']) ? [$this, $menu['callback']] : $menu['callback']) : $menu['callback'],
+                        \is_string($menu['callback']) ? (method_exists($this, $menu['callback']) ? [$this, $menu['callback']] : $menu['callback']) : $menu['callback'],
                         $menu['icon'],
                         $menu['position']
 …
         // loading google fonts
+        // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.MissingVersion -- External font resource version managed by Google
         wp_enqueue_style('googleapis-PRECONNECT', 'https://fonts.googleapis.com');
+        // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.MissingVersion -- External font resource version managed by Google
         wp_enqueue_style('gstatic-PRECONNECT-CROSSORIGIN', 'https://fonts.gstatic.com');
         wp_enqueue_style('font', self::FONT_URL, [], $version);
 …
         if (Config::isDev()) {
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter, WordPress.WP.EnqueuedResourceParameters.MissingVersion -- Dev mode hot reload script must load in header
             wp_enqueue_script($slug . '-vite-client-helper-MODULE', Config::DEV_URL . '/config/devHotModule.js', [], null);
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter, WordPress.WP.EnqueuedResourceParameters.MissingVersion -- Dev mode hot reload script must load in header
             wp_enqueue_script($slug . '-vite-client-MODULE', Config::DEV_URL . '/@vite/client', [], null);
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter, WordPress.WP.EnqueuedResourceParameters.MissingVersion -- Dev mode hot reload script must load in header
             wp_enqueue_script($slug . '-index-MODULE', Config::DEV_URL . '/index.tsx', [], null);
         } else {
+            // phpcs:ignore WordPress.WP.EnqueuedResourceParameters.NotInFooter -- Main app script must load in header for proper initialization
             wp_enqueue_script($slug . '-index-MODULE', $assetUri . '/index.js', [], $version);
             wp_enqueue_style($slug . '-styles', $assetUri . '/index.css', null, $version);
 …
         $rootURL = Config::get('ROOT_URI');
+        // phpcs:disable Generic.PHP.ForbiddenFunctions.Found
+        echo <<<HTML
+        <noscript>You need to enable JavaScript to run this app.</noscript>
+        <div id="bit-apps-root">
+        <div
+            style="display: flex;flex-direction: column;justify-content: center;
+            align-items: center;height: 90vh;font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;">
+            <img alt="bit-assist-logo" class="bit-logo" width="70" src="{$rootURL}/img/logo.svg">
+            <h1>Welcome to Bit Assist</h1>
+            <p></p>
+        </div>
+        </div>
+HTML;
+        echo '<noscript>You need to enable JavaScript to run this app.</noscript>';
+        echo '<div id="bit-apps-root">';
+        echo '<div style="display: flex;flex-direction: column;justify-content: center;';
+        echo 'align-items: center;height: 90vh;font-family: \'Segoe UI\', Tahoma, Geneva, Verdana, sans-serif;">';
+        echo '<img alt="bit-assist-logo" class="bit-logo" width="70" src="' . esc_url($rootURL . '/img/logo.svg') . '">';
+        echo '<h1>Welcome to Bit Assist</h1>';
+        echo '<p></p>';
+        echo '</div>';
+        echo '</div>';
+    }
 …
     public function createConfigVariable()
+    {
+        // phpcs:disable WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound -- Hook name is prefixed via Config::withPrefix()
         $frontendVars = apply_filters(
             Config::withPrefix('localized_script'),
 …
+            ]
         );
+        // phpcs:enable WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound
         if (get_locale() !== 'en_US' && file_exists(Config::get('BASEDIR') . '/languages/generatedString.php')) {
             include_once Config::get('BASEDIR') . '/languages/generatedString.php';

bit-assist/trunk/backend/bootstrap.php

r2814120	r3464745
1	1	<?php
2	2
3		if (!\defined('ABSPATH')) {
	3	if (!defined('ABSPATH')) {
4	4	exit;
5	5	}

bit-assist/trunk/backend/db/Migrations/BASTAnalyticsTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTAnalyticsTableMigration extends Migration
+{

bit-assist/trunk/backend/db/Migrations/BASTPluginOptions.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 …
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTPluginOptions extends Migration
+{

bit-assist/trunk/backend/db/Migrations/BASTResponsesTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTResponsesTableMigration extends Migration
+{

bit-assist/trunk/backend/db/Migrations/BASTUpdateCustomCssColumnInWidgetTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTUpdateCustomCssColumnInWidgetTableMigration extends Migration
+{
 …
         global $wpdb;
         $table_name = Config::withDBPrefix('widgets');
+        $sql = "ALTER TABLE $table_name MODIFY COLUMN custom_css LONGTEXT NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements
+        $sql = "ALTER TABLE {$table_name} MODIFY COLUMN custom_css LONGTEXT NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements, direct DB query required for migration
         $wpdb->query($sql);
+    }
 …
         global $wpdb;
         $table_name = Config::withDBPrefix('widgets');
+        $sql = "ALTER TABLE $table_name MODIFY COLUMN custom_css VARCHAR(255) NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements
+        $sql = "ALTER TABLE {$table_name} MODIFY COLUMN custom_css VARCHAR(255) NULL;";
+        // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, PluginCheck.Security.DirectDB.UnescapedDBParameter, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Table name from trusted Config class, ALTER TABLE cannot use prepared statements, direct DB query required for migration
         $wpdb->query($sql);
+    }

bit-assist/trunk/backend/db/Migrations/BASTUpdateOptions.php

r3195774	r3464745
1	1	<?php
	2
	3	if (!defined('ABSPATH')) {
	4	exit;
	5	}
2	6
3	7	use BitApps\Assist\Config;
4	8	use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
5	9
6		if (!\defined('ABSPATH')) {
7		exit;
8		}
9
	10	// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
10	11	final class BASTUpdateOptions extends Migration
11	12	{
…	…
18	19	public function down()
19	20	{
20		~~return;~~
21	21	}
22	22	}

bit-assist/trunk/backend/db/Migrations/BASTWidgetChannelsTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTWidgetChannelsTableMigration extends Migration
+{

bit-assist/trunk/backend/db/Migrations/BASTWidgetsTableMigration.php

-                      r3195774
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Config;
 use BitApps\Assist\Deps\BitApps\WPDatabase\Blueprint;
+use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
 use BitApps\Assist\Deps\BitApps\WPKit\Migration\Migration;
-use BitApps\Assist\Deps\BitApps\WPDatabase\Schema;
+if (!\defined('ABSPATH')) {
+    exit;
+}
+// phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound -- Migration class follows framework naming convention
 final class BASTWidgetsTableMigration extends Migration
+{

bit-assist/trunk/backend/hooks/ajax.php

-                      r3241612
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Router\Route;
 …
 use BitApps\Assist\HTTP\Controllers\WidgetController;
 use BitApps\Assist\HTTP\Controllers\WPPostController;
-if (!\defined('ABSPATH')) {
-    exit;
+}
 // if (!headers_sent()) {

bit-assist/trunk/backend/hooks/api.php

-                      r3407659
+                      r3464745
 <?php
+if (!defined('ABSPATH')) {
+    exit;
+}
 use BitApps\Assist\Deps\BitApps\WPKit\Http\Router\Route;
 …
 use BitApps\Assist\HTTP\Controllers\ApiWidgetController;
 use BitApps\Assist\HTTP\Controllers\IframeController;
+use BitApps\Assist\HTTP\Controllers\ResponseController;
 use BitApps\Assist\HTTP\Controllers\WooChannelController;
-use BitApps\Assist\HTTP\Controllers\ResponseController;
 use BitApps\Assist\HTTP\Controllers\WpSearchController;
-if (!\defined('ABSPATH')) {
-    exit;
+}
 Route::group(function () {

bit-assist/trunk/index.php

-                      r3429564
+                      r3464745
  * Plugin URI:  https://bitapps.pro/bit-assist
  * Description: WhatsApp,Facebook Messenger chat, click to chat Live Chat Widget,Call button & 30+ social chat support button for customer support with sticky chat button
  * Version:     1.6.0
+ * Version:     1.6.1
  * Author:      Bit Assist - Click to Chat Widget Live Chat Support Chat Button
  * Author URI:  https://bitapps.pro
 …
  * License: gpl2+
  */
+if (!defined('ABSPATH')) {
+    exit;
+}
 require_once plugin_dir_path(__FILE__) . 'backend/bootstrap.php';

bit-assist/trunk/readme.txt

-                      r3429564
+                      r3464745
 Tested up to: 6.9
 Requires PHP: 7.4
 Stable tag: 1.6.0
+Stable tag: 1.6.1
 License: GPLv2 or later
 …
 == Changelog ==
+= v1.6.1 (Feb 19, 2026) =
+* Fix: WordPress Plugin Checker issues fixed.
 = v1.6.0 (Dec 30, 2025) =
 * Fix: WooCommerce order details can now only be viewed by the user who placed the order.

bit-assist/trunk/vendor/composer/installed.php

-                      r3429564
+                      r3464745
     'root' => array(
         'name' => 'bitapps/assist',
         'pretty_version' => '1.6.0',
         'version' => '1.6.0.0',
         'reference' => '88cb852704f8f67eb6e264dbe8a16b757d0147a9',
+        'pretty_version' => '1.6.1',
+        'version' => '1.6.1.0',
+        'reference' => '0428cad0defb425d7b7e89022c5d9ddd47ce7542',
         'type' => 'library',
         'install_path' => __DIR__ . '/../../',
 …
     'versions' => array(
         'bitapps/assist' => array(
             'pretty_version' => '1.6.0',
             'version' => '1.6.0.0',
             'reference' => '88cb852704f8f67eb6e264dbe8a16b757d0147a9',
+            'pretty_version' => '1.6.1',
+            'version' => '1.6.1.0',
+            'reference' => '0428cad0defb425d7b7e89022c5d9ddd47ce7542',
             'type' => 'library',
             'install_path' => __DIR__ . '/../../',

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Context Navigation

Changeset 3464745

Legend:

Download in other formats: