Welcome to Exakat’s documentation!

Contents:

• 1. Introduction
  • 1.1. What is Exakat ?
  • 1.2. Exakat Use Cases
  • 1.3. Exakat compared to others
  • 1.4. Exakat ecosystem
  • 1.5. Architecture
• 2. Exakat features
  • 2.1. Features list
  • 2.2. 356 analyzers
  • 2.3. Compatible with PHP 5.2 to 7.3-dev
  • 2.4. Migration guide from 5.2 to 7.3 and dev
  • 2.5. List bug fixes for your code
  • 2.6. appinfo(): the list of PHP features
  • 2.7. List PHP directives that impact your code
  • 2.8. Framework and application support
  • 2.9. Class Hierarchy Diagram
• 3. Installation
  • 3.1. Summary
  • 3.2. Requirements
  • 3.3. Download Exakat
  • 3.4. Quick installation with OSX
  • 3.5. Full installation with Debian/Ubuntu
  • 3.6. Quick installation with Debian/Ubuntu
  • 3.7. Installation guide with Composer
  • 3.8. Using multiple PHP versions
  • 3.9. Optional installations
  • 3.10. Installation guide with Docker
  • 3.11. Installation guide with Vagrant and Ansible
• 4. Upgrading
  • 4.1. Upgrading
  • 4.2. Upgrading manually
  • 4.3. Upgrading gremlin-server
• 5. Exakat tutorial
  • 5.1. Installation
  • 5.2. Initialization
  • 5.3. Execution
  • 5.4. More reports
  • 5.5. New run
  • 5.6. Text report
  • 5.7. Json report
  • 5.8. Inventories report
• 6. Frequently Asked Questions
  • 6.1. Summary
  • 6.2. I need special command to get my code
  • 6.3. Can I checkout that branch?
  • 6.4. Can I clone with my ssh keys?
  • 6.5. After init, my project has no code!
  • 6.6. The project is too big
  • 6.7. Java Out Of Memory Error
  • 6.8. How can I run a very large project?
  • 6.9. Does exakat runs on Java 8?
  • 6.10. Where can I find the report
  • 6.11. Can I run exakat on local code?
  • 6.12. Can I ignore a dir or a file?
  • 6.13. Can I audit only one folder in vendor?
  • 6.14. Can I run Exakat with PHP 5?
  • 6.15. I get the error ‘The executable ‘ansible-playbook’ Vagrant is trying to run was not found’
  • 6.16. Can I run exakat on Windows?
  • 6.17. Does exakat send my code to a central server?
  • 6.18. “cat: write error: Broken pipe” : is it bad?
• 7. Exakat commands
  • 7.1. List of commands :
  • 7.2. anonymize
  • 7.3. catalog
  • 7.4. clean
  • 7.5. cleandb
  • 7.6. doctor
  • 7.7. help
  • 7.8. init
  • 7.9. project
  • 7.10. remove
  • 7.11. report
  • 7.12. update
  • 7.13. upgrade
• 8. Themes
  • 8.1. Presentation
  • 8.2. List of recipes
  • 8.3. Recipes details
• 9. Rules list
  • 9.1. Introduction
  • 9.2. $HTTP_RAW_POST_DATA
  • 9.3. $this Belongs To Classes Or Traits
  • 9.4. $this Is Not An Array
  • 9.5. $this Is Not For Static Methods
  • 9.6. ** For Exponent
  • 9.7. ::class
  • 9.8. @ Operator
  • 9.9. Abstract Or Implements
  • 9.10. Abstract Static Methods
  • 9.11. Access Protected Structures
  • 9.12. Accessing Private
  • 9.13. Action Should Be In Controller
  • 9.14. Add Default Value
  • 9.15. Adding Zero
  • 9.16. Aliases Usage
  • 9.17. All Uppercase Variables
  • 9.18. Already Parents Interface
  • 9.19. Altering Foreach Without Reference
  • 9.20. Alternative Syntax Consistence
  • 9.21. Always Anchor Regex
  • 9.22. Always Positive Comparison
  • 9.23. Ambiguous Array Index
  • 9.24. Ambiguous Static
  • 9.25. Ambiguous Visibilities
  • 9.26. Anonymous Classes
  • 9.27. Argument Should Be Typehinted
  • 9.28. Assert Function Is Reserved
  • 9.29. Assign Default To Properties
  • 9.30. Assign With And
  • 9.31. Assigned Twice
  • 9.32. Avoid Concat In Loop
  • 9.33. Avoid Double Prepare
  • 9.34. Avoid Large Array Assignation
  • 9.35. Avoid Non Wordpress Globals
  • 9.36. Avoid Optional Properties
  • 9.37. Avoid PHP Superglobals
  • 9.38. Avoid Parenthesis
  • 9.39. Avoid Real
  • 9.40. Avoid Those Hash Functions
  • 9.41. Avoid Using stdClass
  • 9.42. Avoid array_push()
  • 9.43. Avoid array_unique()
  • 9.44. Avoid get_class()
  • 9.45. Avoid glob() Usage
  • 9.46. Avoid set_error_handler $context Argument
  • 9.47. Avoid sleep()/usleep()
  • 9.48. Bad Constants Names
  • 9.49. Bail Out Early
  • 9.50. Binary Glossary
  • 9.51. Bracketless Blocks
  • 9.52. Break Outside Loop
  • 9.53. Break With 0
  • 9.54. Break With Non Integer
  • 9.55. Buried Assignation
  • 9.56. Cache Variable Outside Loop
  • 9.57. CakePHP 2.5.0 Undefined Classes
  • 9.58. CakePHP 2.6.0 Undefined Classes
  • 9.59. CakePHP 2.7.0 Undefined Classes
  • 9.60. CakePHP 2.8.0 Undefined Classes
  • 9.61. CakePHP 2.9.0 Undefined Classes
  • 9.62. CakePHP 3.0 Deprecated Class
  • 9.63. CakePHP 3.0.0 Undefined Classes
  • 9.64. CakePHP 3.1.0 Undefined Classes
  • 9.65. CakePHP 3.2.0 Undefined Classes
  • 9.66. CakePHP 3.3 Deprecated Class
  • 9.67. CakePHP 3.3.0 Undefined Classes
  • 9.68. CakePHP 3.4.0 Undefined Classes
  • 9.69. CakePHP Used
  • 9.70. Callback Needs Return
  • 9.71. Calltime Pass By Reference
  • 9.72. Can’t Count Non-Countable
  • 9.73. Can’t Disable Class
  • 9.74. Can’t Extend Final
  • 9.75. Can’t Throw Throwable
  • 9.76. Cant Inherit Abstract Method
  • 9.77. Cant Instantiate Class
  • 9.78. Cant Use Return Value In Write Context
  • 9.79. Case Insensitive Constants
  • 9.80. Cast To Boolean
  • 9.81. Catch Overwrite Variable
  • 9.82. Check All Types
  • 9.83. Check JSON
  • 9.84. Child Class Removes Typehint
  • 9.85. Class Const With Array
  • 9.86. Class Could Be Final
  • 9.87. Class Function Confusion
  • 9.88. Class Name Case Difference
  • 9.89. Class Should Be Final By Ocramius
  • 9.90. Class, Interface Or Trait With Identical Names
  • 9.91. Classes Mutually Extending Each Other
  • 9.92. Close Tags
  • 9.93. Closure Could Be A Callback
  • 9.94. Closure May Use $this
  • 9.95. Common Alternatives
  • 9.96. Compact Inexistant Variable
  • 9.97. Compare Hash
  • 9.98. Compared Comparison
  • 9.99. Concrete Visibility
  • 9.100. Configure Extract
  • 9.101. Const Visibility Usage
  • 9.102. Const With Array
  • 9.103. Constant Class
  • 9.104. Constant Comparison
  • 9.105. Constant Scalar Expressions
  • 9.106. Constants Created Outside Its Namespace
  • 9.107. Constants With Strange Names
  • 9.108. Continue Is For Loop
  • 9.109. Could Be Abstract Class
  • 9.110. Could Be Class Constant
  • 9.111. Could Be Else
  • 9.112. Could Be Private Class Constant
  • 9.113. Could Be Protected Class Constant
  • 9.114. Could Be Protected Method
  • 9.115. Could Be Protected Property
  • 9.116. Could Be Static
  • 9.117. Could Be Static Closure
  • 9.118. Could Be Typehinted Callable
  • 9.119. Could Make A Function
  • 9.120. Could Return Void
  • 9.121. Could Typehint
  • 9.122. Could Use Alias
  • 9.123. Could Use Compact
  • 9.124. Could Use Short Assignation
  • 9.125. Could Use __DIR__
  • 9.126. Could Use array_fill_keys
  • 9.127. Could Use array_unique
  • 9.128. Could Use self
  • 9.129. Could Use str_repeat()
  • 9.130. Crc32() Might Be Negative
  • 9.131. Curly Arrays
  • 9.132. Dangling Array References
  • 9.133. Deep Definitions
  • 9.134. Define With Array
  • 9.135. Defined View Property
  • 9.136. Dependant Trait
  • 9.137. Deprecated Functions
  • 9.138. Deprecated Methodcalls in Cake 3.2
  • 9.139. Deprecated Methodcalls in Cake 3.3
  • 9.140. Deprecated Static calls in Cake 3.3
  • 9.141. Deprecated Trait in Cake 3.3
  • 9.142. Dereferencing String And Arrays
  • 9.143. Detect Current Class
  • 9.144. Direct Injection
  • 9.145. Do In Base
  • 9.146. Don’t Change Incomings
  • 9.147. Don’t Echo Error
  • 9.148. Don’t Send This In Constructor
  • 9.149. Don’t Unset Properties
  • 9.150. Dont Change The Blind Var
  • 9.151. Dont Mix ++
  • 9.152. Double Assignation
  • 9.153. Double Instructions
  • 9.154. Double array_flip()
  • 9.155. Drop Else After Return
  • 9.156. Drop Substr Last Arg
  • 9.157. Dynamic Library Loading
  • 9.158. Echo Or Print
  • 9.159. Echo With Concat
  • 9.160. Ellipsis Usage
  • 9.161. Else If Versus Elseif
  • 9.162. Empty Blocks
  • 9.163. Empty Classes
  • 9.164. Empty Function
  • 9.165. Empty Instructions
  • 9.166. Empty Interfaces
  • 9.167. Empty List
  • 9.168. Empty Namespace
  • 9.169. Empty Slots In Arrays
  • 9.170. Empty Traits
  • 9.171. Empty Try Catch
  • 9.172. Empty With Expression
  • 9.173. Encoded Simple Letters
  • 9.174. Error Messages
  • 9.175. Eval() Usage
  • 9.176. Exception Order
  • 9.177. Exit() Usage
  • 9.178. Exponent Usage
  • 9.179. Failed Substr Comparison
  • 9.180. Fetch One Row Format
  • 9.181. Find Key Directly
  • 9.182. Flexible Heredoc
  • 9.183. For Using Functioncall
  • 9.184. Foreach Don’t Change Pointer
  • 9.185. Foreach Needs Reference Array
  • 9.186. Foreach On Object
  • 9.187. Foreach Reference Is Not Modified
  • 9.188. Foreach With list()
  • 9.189. Forgotten Interface
  • 9.190. Forgotten Thrown
  • 9.191. Forgotten Visibility
  • 9.192. Forgotten Whitespace
  • 9.193. Fully Qualified Constants
  • 9.194. Function Subscripting
  • 9.195. Function Subscripting, Old Style
  • 9.196. Functions Removed In PHP 5.4
  • 9.197. Functions Removed In PHP 5.5
  • 9.198. Getting Last Element
  • 9.199. Global Inside Loop
  • 9.200. Global Usage
  • 9.201. Group Use Declaration
  • 9.202. Group Use Trailing Comma
  • 9.203. Hardcoded Passwords
  • 9.204. Hash Algorithms
  • 9.205. Hash Algorithms Incompatible With PHP 5.3
  • 9.206. Hash Algorithms Incompatible With PHP 5.4/5.5
  • 9.207. Hash Algorithms Incompatible With PHP 7.1-
  • 9.208. Hash Will Use Objects
  • 9.209. Heredoc Delimiter
  • 9.210. Hexadecimal In String
  • 9.211. Hidden Use Expression
  • 9.212. Htmlentities Calls
  • 9.213. Identical Conditions
  • 9.214. Identical Consecutive Expression
  • 9.215. Identical On Both Sides
  • 9.216. If With Same Conditions
  • 9.217. Iffectations
  • 9.218. Illegal Name For Method
  • 9.219. Implement Is For Interface
  • 9.220. Implemented Methods Are Public
  • 9.221. Implicit Global
  • 9.222. Implied If
  • 9.223. Inclusion Wrong Case
  • 9.224. Incompatible Signature Methods
  • 9.225. Incompilable Files
  • 9.226. Inconsistent Elseif
  • 9.227. Indices Are Int Or String
  • 9.228. Indirect Injection
  • 9.229. Instantiating Abstract Class
  • 9.230. Integer As Property
  • 9.231. Interpolation
  • 9.232. Invalid Constant Name
  • 9.233. Invalid Octal In String
  • 9.234. Invalid Regex
  • 9.235. Is Actually Zero
  • 9.236. Is Zend Framework 1 Controller
  • 9.237. Is Zend Framework 1 Helper
  • 9.238. Is Zend View File
  • 9.239. Isset Multiple Arguments
  • 9.240. Isset With Constant
  • 9.241. Join file()
  • 9.242. List Short Syntax
  • 9.243. List With Appends
  • 9.244. List With Keys
  • 9.245. List With Reference
  • 9.246. Local Globals
  • 9.247. Locally Unused Property
  • 9.248. Logical Mistakes
  • 9.249. Logical Should Use Symbolic Operators
  • 9.250. Logical To in_array
  • 9.251. Lone Blocks
  • 9.252. Long Arguments
  • 9.253. Lost References
  • 9.254. Magic Visibility
  • 9.255. Make Global A Property
  • 9.256. Make One Call With Array
  • 9.257. Malformed Octal
  • 9.258. Method Collision Traits
  • 9.259. Method Could Be Private Method
  • 9.260. Method Signature Must Be Compatible
  • 9.261. Method Used Below
  • 9.262. Methodcall On New
  • 9.263. Mismatch Type And Default
  • 9.264. Mismatched Default Arguments
  • 9.265. Mismatched Ternary Alternatives
  • 9.266. Mismatched Typehint
  • 9.267. Missing Cases In Switch
  • 9.268. Missing Include
  • 9.269. Missing New ?
  • 9.270. Missing Parenthesis
  • 9.271. Mistaken Concatenation
  • 9.272. Mixed Concat And Interpolation
  • 9.273. Mixed Keys Arrays
  • 9.274. Mkdir Default
  • 9.275. Modernize Empty With Expression
  • 9.276. Multiple Alias Definitions
  • 9.277. Multiple Alias Definitions Per File
  • 9.278. Multiple Class Declarations
  • 9.279. Multiple Classes In One File
  • 9.280. Multiple Constant Definition
  • 9.281. Multiple Definition Of The Same Argument
  • 9.282. Multiple Exceptions Catch()
  • 9.283. Multiple Identical Trait Or Interface
  • 9.284. Multiple Index Definition
  • 9.285. Multiple Type Variable
  • 9.286. Multiples Identical Case
  • 9.287. Multiply By One
  • 9.288. Must Call Parent Constructor
  • 9.289. Must Return Methods
  • 9.290. Negative Power
  • 9.291. Nested Ifthen
  • 9.292. Nested Ternary
  • 9.293. Never Used Parameter
  • 9.294. Never Used Properties
  • 9.295. New Constants In PHP 7.2
  • 9.296. New Functions In PHP 5.4
  • 9.297. New Functions In PHP 5.5
  • 9.298. New Functions In PHP 5.6
  • 9.299. New Functions In PHP 7.0
  • 9.300. New Functions In PHP 7.1
  • 9.301. New Functions In PHP 7.2
  • 9.302. New Functions In PHP 7.3
  • 9.303. Next Month Trap
  • 9.304. No Boolean As Default
  • 9.305. No Choice
  • 9.306. No Class As Typehint
  • 9.307. No Class In Global
  • 9.308. No Count With 0
  • 9.309. No Direct Call To Magic Method
  • 9.310. No Direct Input To Wpdb
  • 9.311. No Direct Usage
  • 9.312. No Echo In Route Callable
  • 9.313. No Echo Outside View
  • 9.314. No Empty Regex
  • 9.315. No Global Modification
  • 9.316. No Hardcoded Hash
  • 9.317. No Hardcoded Ip
  • 9.318. No Hardcoded Path
  • 9.319. No Hardcoded Port
  • 9.320. No Isset With Empty
  • 9.321. No List With String
  • 9.322. No Magic With Array
  • 9.323. No Need For Else
  • 9.324. No Net For Xml Load
  • 9.325. No Parenthesis For Language Construct
  • 9.326. No Plus One
  • 9.327. No Public Access
  • 9.328. No Real Comparison
  • 9.329. No Reference For Ternary
  • 9.330. No Reference On Left Side
  • 9.331. No Return Or Throw In Finally
  • 9.332. No Return Used
  • 9.333. No Self Referencing Constant
  • 9.334. No String With Append
  • 9.335. No Substr Minus One
  • 9.336. No Substr() One
  • 9.337. No array_merge() In Loops
  • 9.338. No get_class() With Null
  • 9.339. Non Ascii Variables
  • 9.340. Non Static Methods Called In A Static
  • 9.341. Non-constant Index In Array
  • 9.342. Non-lowercase Keywords
  • 9.343. Nonce Creation
  • 9.344. Not A Scalar Type
  • 9.345. Not Not
  • 9.346. Null On New
  • 9.347. Objects Don’t Need References
  • 9.348. Old Style Constructor
  • 9.349. Old Style __autoload()
  • 9.350. One If Is Sufficient
  • 9.351. One Letter Functions
  • 9.352. One Variable String
  • 9.353. Only Variable Passed By Reference
  • 9.354. Only Variable Returned By Reference
  • 9.355. Or Die
  • 9.356. Order Of Declaration
  • 9.357. Overwriting Variable
  • 9.358. Overwritten Exceptions
  • 9.359. Overwritten Literals
  • 9.360. PHP 7.0 New Classes
  • 9.361. PHP 7.0 New Interfaces
  • 9.362. PHP 7.0 Removed Directives
  • 9.363. PHP 7.0 Scalar Typehints
  • 9.364. PHP 7.1 Microseconds
  • 9.365. PHP 7.1 Removed Directives
  • 9.366. PHP 7.1 Scalar Typehints
  • 9.367. PHP 7.2 Deprecations
  • 9.368. PHP 7.2 Object Keyword
  • 9.369. PHP 7.2 Removed Functions
  • 9.370. PHP 7.2 Scalar Typehints
  • 9.371. PHP 7.3 Last Empty Argument
  • 9.372. PHP 7.3 Removed Functions
  • 9.373. PHP 70 Removed Functions
  • 9.374. PHP 72 Removed Interfaces
  • 9.375. PHP Keywords As Names
  • 9.376. PHP5 Indirect Variable Expression
  • 9.377. PHP7 Dirname
  • 9.378. Parent First
  • 9.379. Parent, Static Or Self Outside Class
  • 9.380. Parenthesis As Parameter
  • 9.381. Pathinfo() Returns May Vary
  • 9.382. Php 7 Indirect Expression
  • 9.383. Php 7.1 New Class
  • 9.384. Php 7.2 New Class
  • 9.385. Php7 Relaxed Keyword
  • 9.386. Phpinfo
  • 9.387. Possible Increment
  • 9.388. Possible Infinite Loop
  • 9.389. Pre-increment
  • 9.390. Prepare Placeholder
  • 9.391. Preprocess Arrays
  • 9.392. Preprocessable
  • 9.393. Print And Die
  • 9.394. Printf Number Of Arguments
  • 9.395. Private Function Usage
  • 9.396. Processing Collector
  • 9.397. Property Could Be Local
  • 9.398. Property Could Be Private Property
  • 9.399. Property Used In One Method Only
  • 9.400. Property Variable Confusion
  • 9.401. Queries In Loops
  • 9.402. Random Without Try
  • 9.403. Randomly Sorted Arrays
  • 9.404. Redeclared PHP Functions
  • 9.405. Redefined Class Constants
  • 9.406. Redefined Default
  • 9.407. Redefined Private Property
  • 9.408. Register Globals
  • 9.409. Relaxed Heredoc
  • 9.410. Relay Function
  • 9.411. Repeated Regex
  • 9.412. Repeated print()
  • 9.413. Reserved Keywords In PHP 7
  • 9.414. Results May Be Missing
  • 9.415. Rethrown Exceptions
  • 9.416. Return True False
  • 9.417. Return With Parenthesis
  • 9.418. Reuse Variable
  • 9.419. Safe Curl Options
  • 9.420. Same Conditions In Condition
  • 9.421. Same Variables Foreach
  • 9.422. Scalar Or Object Property
  • 9.423. Sequences In For
  • 9.424. Session Lazy Write
  • 9.425. Set Cookie Safe Arguments
  • 9.426. Setlocale() Uses Constants
  • 9.427. Several Instructions On The Same Line
  • 9.428. Short Open Tags
  • 9.429. Short Syntax For Arrays
  • 9.430. Should Always Prepare
  • 9.431. Should Be Single Quote
  • 9.432. Should Chain Exception
  • 9.433. Should Make Alias
  • 9.434. Should Make Ternary
  • 9.435. Should Preprocess Chr
  • 9.436. Should Regenerate Session Id
  • 9.437. Should Typecast
  • 9.438. Should Use Coalesce
  • 9.439. Should Use Constants
  • 9.440. Should Use Foreach
  • 9.441. Should Use Function
  • 9.442. Should Use Local Class
  • 9.443. Should Use Math
  • 9.444. Should Use Operator
  • 9.445. Should Use Prepared Statement
  • 9.446. Should Use SetCookie()
  • 9.447. Should Use array_column()
  • 9.448. Should Use array_filter()
  • 9.449. Should Use session_regenerateid()
  • 9.450. Silently Cast Integer
  • 9.451. Simple Global Variable
  • 9.452. Simple Switch
  • 9.453. Simplify Regex
  • 9.454. Slice Arrays First
  • 9.455. SlimPHP 1.0.0 Undefined Classes
  • 9.456. SlimPHP 1.1.0 Undefined Classes
  • 9.457. SlimPHP 1.2.0 Undefined Classes
  • 9.458. SlimPHP 1.3.0 Undefined Classes
  • 9.459. SlimPHP 1.5.0 Undefined Classes
  • 9.460. SlimPHP 1.6.0 Undefined Classes
  • 9.461. SlimPHP 2.0.0 Undefined Classes
  • 9.462. SlimPHP 2.1.0 Undefined Classes
  • 9.463. SlimPHP 2.2.0 Undefined Classes
  • 9.464. SlimPHP 2.3.0 Undefined Classes
  • 9.465. SlimPHP 2.4.0 Undefined Classes
  • 9.466. SlimPHP 2.5.0 Undefined Classes
  • 9.467. SlimPHP 2.6.0 Undefined Classes
  • 9.468. SlimPHP 3.0.0 Undefined Classes
  • 9.469. SlimPHP 3.1.0 Undefined Classes
  • 9.470. SlimPHP 3.2.0 Undefined Classes
  • 9.471. SlimPHP 3.3.0 Undefined Classes
  • 9.472. SlimPHP 3.4.0 Undefined Classes
  • 9.473. SlimPHP 3.5.0 Undefined Classes
  • 9.474. SlimPHP 3.6.0 Undefined Classes
  • 9.475. SlimPHP 3.7.0 Undefined Classes
  • 9.476. SlimPHP 3.8.0 Undefined Classes
  • 9.477. Slow Functions
  • 9.478. Sqlite3 Requires Single Quotes
  • 9.479. Static Loop
  • 9.480. Static Methods Called From Object
  • 9.481. Static Methods Can’t Contain $this
  • 9.482. Strange Name For Constants
  • 9.483. Strange Name For Variables
  • 9.484. Strange Names For Methods
  • 9.485. Strict Comparison With Booleans
  • 9.486. String May Hold A Variable
  • 9.487. Strings With Strange Space
  • 9.488. Strpos Too Much
  • 9.489. Strpos()-like Comparison
  • 9.490. Strtr Arguments
  • 9.491. Substring First
  • 9.492. Suspicious Comparison
  • 9.493. Switch Fallthrough
  • 9.494. Switch To Switch
  • 9.495. Switch With Too Many Default
  • 9.496. Switch Without Default
  • 9.497. Ternary In Concat
  • 9.498. Test Then Cast
  • 9.499. Throw Functioncall
  • 9.500. Throw In Destruct
  • 9.501. Thrown Exceptions
  • 9.502. Throws An Assignement
  • 9.503. Timestamp Difference
  • 9.504. Too Many Children
  • 9.505. Too Many Finds
  • 9.506. Too Many Injections
  • 9.507. Too Many Local Variables
  • 9.508. Too Many Native Calls
  • 9.509. Too Many Parameters
  • 9.510. Trailing Comma In Calls
  • 9.511. Typehinted References
  • 9.512. Uncaught Exceptions
  • 9.513. Unchecked Resources
  • 9.514. Unconditional Break In Loop
  • 9.515. Undefined ::class
  • 9.516. Undefined Caught Exceptions
  • 9.517. Undefined Class 2.0
  • 9.518. Undefined Class 2.1
  • 9.519. Undefined Class 2.2
  • 9.520. Undefined Class 2.3
  • 9.521. Undefined Class 2.4
  • 9.522. Undefined Class 2.5
  • 9.523. Undefined Class 3.0
  • 9.524. Undefined Class Constants
  • 9.525. Undefined Classes
  • 9.526. Undefined Constants
  • 9.527. Undefined Functions
  • 9.528. Undefined Insteadof
  • 9.529. Undefined Interfaces
  • 9.530. Undefined Parent
  • 9.531. Undefined Properties
  • 9.532. Undefined Trait
  • 9.533. Undefined Variable
  • 9.534. Undefined Zend 1.10
  • 9.535. Undefined Zend 1.11
  • 9.536. Undefined Zend 1.12
  • 9.537. Undefined Zend 1.8
  • 9.538. Undefined Zend 1.9
  • 9.539. Undefined static:: Or self::
  • 9.540. Unescaped Variables In Templates
  • 9.541. Unicode Escape Partial
  • 9.542. Unicode Escape Syntax
  • 9.543. Unitialized Properties
  • 9.544. Unknown Directive Name
  • 9.545. Unknown Pcre2 Option
  • 9.546. Unkown Regex Options
  • 9.547. Unpreprocessed Values
  • 9.548. Unreachable Code
  • 9.549. Unresolved Catch
  • 9.550. Unresolved Classes
  • 9.551. Unresolved Instanceof
  • 9.552. Unresolved Use
  • 9.553. Unserialize Second Arg
  • 9.554. Unset In Foreach
  • 9.555. Unthrown Exception
  • 9.556. Unused Arguments
  • 9.557. Unused Classes
  • 9.558. Unused Constants
  • 9.559. Unused Functions
  • 9.560. Unused Global
  • 9.561. Unused Inherited Variable In Closure
  • 9.562. Unused Interfaces
  • 9.563. Unused Label
  • 9.564. Unused Methods
  • 9.565. Unused Private Methods
  • 9.566. Unused Private Properties
  • 9.567. Unused Protected Methods
  • 9.568. Unused Returned Value
  • 9.569. Unused Traits
  • 9.570. Unused Use
  • 9.571. Unusual Case For PHP Functions
  • 9.572. Unverified Nonce
  • 9.573. Upload Filename Injection
  • 9.574. Use $wpdb Api
  • 9.575. Use === null
  • 9.576. Use Class Operator
  • 9.577. Use Const And Functions
  • 9.578. Use Constant As Arguments
  • 9.579. Use Count Recursive
  • 9.580. Use Instanceof
  • 9.581. Use List With Foreach
  • 9.582. Use Lower Case For Parent, Static And Self
  • 9.583. Use Named Boolean In Argument Definition
  • 9.584. Use Nullable Type
  • 9.585. Use Object Api
  • 9.586. Use PHP7 Encapsed Strings
  • 9.587. Use Pathinfo
  • 9.588. Use Positive Condition
  • 9.589. Use Slim
  • 9.590. Use System Tmp
  • 9.591. Use The Blind Var
  • 9.592. Use With Fully Qualified Name
  • 9.593. Use Wordpress Functions
  • 9.594. Use const
  • 9.595. Use is_countable
  • 9.596. Use json_decode() Options
  • 9.597. Use password_hash()
  • 9.598. Use pathinfo() Arguments
  • 9.599. Use random_int()
  • 9.600. Use session_start() Options
  • 9.601. Used Once Property
  • 9.602. Used Once Variables
  • 9.603. Used Once Variables (In Scope)
  • 9.604. Used Routes
  • 9.605. Useless Abstract Class
  • 9.606. Useless Brackets
  • 9.607. Useless Casting
  • 9.608. Useless Catch
  • 9.609. Useless Check
  • 9.610. Useless Constructor
  • 9.611. Useless Final
  • 9.612. Useless Global
  • 9.613. Useless Instructions
  • 9.614. Useless Interfaces
  • 9.615. Useless Parenthesis
  • 9.616. Useless Referenced Argument
  • 9.617. Useless Return
  • 9.618. Useless Switch
  • 9.619. Useless Unset
  • 9.620. Uses Default Values
  • 9.621. Using $this Outside A Class
  • 9.622. Using Short Tags
  • 9.623. Usort Sorting In PHP 7.0
  • 9.624. Var Keyword
  • 9.625. Variable Global
  • 9.626. Weak Typing
  • 9.627. While(List() = Each())
  • 9.628. Wordpress 4.0 Undefined Classes
  • 9.629. Wordpress 4.1 Undefined Classes
  • 9.630. Wordpress 4.2 Undefined Classes
  • 9.631. Wordpress 4.3 Undefined Classes
  • 9.632. Wordpress 4.4 Undefined Classes
  • 9.633. Wordpress 4.5 Undefined Classes
  • 9.634. Wordpress 4.6 Undefined Classes
  • 9.635. Wordpress 4.7 Undefined Classes
  • 9.636. Wordpress 4.8 Undefined Classes
  • 9.637. Wordpress 4.9 Undefined Classes
  • 9.638. Wordpress Usage
  • 9.639. Wpdb Best Usage
  • 9.640. Wpdb Prepare Or Not
  • 9.641. Written Only Variables
  • 9.642. Wrong Class Location
  • 9.643. Wrong Number Of Arguments
  • 9.644. Wrong Optional Parameter
  • 9.645. Wrong Parameter Type
  • 9.646. Wrong Range Check
  • 9.647. Wrong fopen() Mode
  • 9.648. Yoda Comparison
  • 9.649. ZF3 Usage Of Deprecated
  • 9.650. Zend Classes
  • 9.651. Zend Interface
  • 9.652. Zend Trait
  • 9.653. Zend Typehinting
  • 9.654. ZendConfig
  • 9.655. __DIR__ Then Slash
  • 9.656. __debugInfo() Usage
  • 9.657. __toString() Throws Exception
  • 9.658. crypt() Without Salt
  • 9.659. error_reporting() With Integers
  • 9.660. eval() Without Try
  • 9.661. ext/apc
  • 9.662. ext/dba
  • 9.663. ext/ereg
  • 9.664. ext/fdf
  • 9.665. ext/mcrypt
  • 9.666. ext/mhash
  • 9.667. ext/ming
  • 9.668. ext/mysql
  • 9.669. func_get_arg() Modified
  • 9.670. include_once() Usage
  • 9.671. list() May Omit Variables
  • 9.672. mcrypt_create_iv() With Default Values
  • 9.673. move_uploaded_file Instead Of copy
  • 9.674. parse_str() Warning
  • 9.675. preg_match_all() Flag
  • 9.676. preg_replace With Option e
  • 9.677. self, parent, static Outside Class
  • 9.678. set_exception_handler() Warning
  • 9.679. time() Vs strtotime()
  • 9.680. var_dump()… Usage
  • 9.681. zend-authentication 2.5.0 Undefined Classes
  • 9.682. zend-authentication Usage
  • 9.683. zend-barcode 2.5.0 Undefined Classes
  • 9.684. zend-barcode 2.6.0 Undefined Classes
  • 9.685. zend-barcode Usage
  • 9.686. zend-cache 2.5.0 Undefined Classes
  • 9.687. zend-cache 2.6.0 Undefined Classes
  • 9.688. zend-cache 2.7.0 Undefined Classes
  • 9.689. zend-cache Usage
  • 9.690. zend-captcha 2.5.0 Undefined Classes
  • 9.691. zend-captcha 2.6.0 Undefined Classes
  • 9.692. zend-captcha 2.7.0 Undefined Classes
  • 9.693. zend-captcha Usage
  • 9.694. zend-code 2.5.0 Undefined Classes
  • 9.695. zend-code 2.6.0 Undefined Classes
  • 9.696. zend-code 3.0.0 Undefined Classes
  • 9.697. zend-code 3.1.0 Undefined Classes
  • 9.698. zend-code 3.2.0 Undefined Classes
  • 9.699. zend-code Usage
  • 9.700. zend-config 2.5.x
  • 9.701. zend-config 2.6.x
  • 9.702. zend-config 3.0.x
  • 9.703. zend-config 3.1.x
  • 9.704. zend-console 2.5.0 Undefined Classes
  • 9.705. zend-console 2.6.0 Undefined Classes
  • 9.706. zend-console Usage
  • 9.707. zend-crypt 2.5.0 Undefined Classes
  • 9.708. zend-crypt 2.6.0 Undefined Classes
  • 9.709. zend-crypt 3.0.0 Undefined Classes
  • 9.710. zend-crypt 3.1.0 Undefined Classes
  • 9.711. zend-crypt 3.2.0 Undefined Classes
  • 9.712. zend-crypt Usage
  • 9.713. zend-db 2.5.0 Undefined Classes
  • 9.714. zend-db 2.6.0 Undefined Classes
  • 9.715. zend-db 2.7.0 Undefined Classes
  • 9.716. zend-db 2.8.0 Undefined Classes
  • 9.717. zend-db Usage
  • 9.718. zend-debug 2.5.0 Undefined Classes
  • 9.719. zend-debug Usage
  • 9.720. zend-di 2.5.0 Undefined Classes
  • 9.721. zend-di 2.6.0 Undefined Classes
  • 9.722. zend-di Usage
  • 9.723. zend-dom 2.5.0 Undefined Classes
  • 9.724. zend-dom 2.6.0 Undefined Classes
  • 9.725. zend-dom Usage
  • 9.726. zend-escaper 2.5.0 Undefined Classes
  • 9.727. zend-escaper Usage
  • 9.728. zend-eventmanager 2.5.0 Undefined Classes
  • 9.729. zend-eventmanager 2.6.0 Undefined Classes
  • 9.730. zend-eventmanager 3.0.0 Undefined Classes
  • 9.731. zend-eventmanager 3.1.0 Undefined Classes
  • 9.732. zend-eventmanager 3.2.0 Undefined Classes
  • 9.733. zend-eventmanager Usage
  • 9.734. zend-feed 2.5.0 Undefined Classes
  • 9.735. zend-feed 2.6.0 Undefined Classes
  • 9.736. zend-feed 2.7.0 Undefined Classes
  • 9.737. zend-feed 2.8.0 Undefined Classes
  • 9.738. zend-feed Usage
  • 9.739. zend-file 2.5.0 Undefined Classes
  • 9.740. zend-file 2.6.0 Undefined Classes
  • 9.741. zend-file 2.7.0 Undefined Classes
  • 9.742. zend-file Usage
  • 9.743. zend-filter 2.5.0 Undefined Classes
  • 9.744. zend-filter 2.6.0 Undefined Classes
  • 9.745. zend-filter 2.7.0 Undefined Classes
  • 9.746. zend-filter Usage
  • 9.747. zend-form 2.5.0 Undefined Classes
  • 9.748. zend-form 2.6.0 Undefined Classes
  • 9.749. zend-form 2.7.0 Undefined Classes
  • 9.750. zend-form 2.8.0 Undefined Classes
  • 9.751. zend-form 2.9.0 Undefined Classes
  • 9.752. zend-form Usage
  • 9.753. zend-http 2.5.0 Undefined Classes
  • 9.754. zend-http 2.6.0 Undefined Classes
  • 9.755. zend-http 2.7.0 Undefined Classes
  • 9.756. zend-http Usage
  • 9.757. zend-i18n 2.5.0 Undefined Classes
  • 9.758. zend-i18n 2.6.0 Undefined Classes
  • 9.759. zend-i18n 2.7.0 Undefined Classes
  • 9.760. zend-i18n Usage
  • 9.761. zend-i18n resources Usage
  • 9.762. zend-i18n-resources 2.5.x
  • 9.763. zend-inputfilter 2.5.0 Undefined Classes
  • 9.764. zend-inputfilter 2.6.0 Undefined Classes
  • 9.765. zend-inputfilter 2.7.0 Undefined Classes
  • 9.766. zend-inputfilter Usage
  • 9.767. zend-json 2.5.0 Undefined Classes
  • 9.768. zend-json 2.6.0 Undefined Classes
  • 9.769. zend-json 3.0.0 Undefined Classes
  • 9.770. zend-json Usage
  • 9.771. zend-loader 2.5.0 Undefined Classes
  • 9.772. zend-loader Usage
  • 9.773. zend-log 2.5.0 Undefined Classes
  • 9.774. zend-log 2.6.0 Undefined Classes
  • 9.775. zend-log 2.7.0 Undefined Classes
  • 9.776. zend-log 2.8.0 Undefined Classes
  • 9.777. zend-log 2.9.0 Undefined Classes
  • 9.778. zend-log Usage
  • 9.779. zend-mail 2.5.0 Undefined Classes
  • 9.780. zend-mail 2.6.0 Undefined Classes
  • 9.781. zend-mail 2.7.0 Undefined Classes
  • 9.782. zend-mail 2.8.0 Undefined Classes
  • 9.783. zend-mail Usage
  • 9.784. zend-math 2.5.0 Undefined Classes
  • 9.785. zend-math 2.6.0 Undefined Classes
  • 9.786. zend-math 2.7.0 Undefined Classes
  • 9.787. zend-math 3.0.0 Undefined Classes
  • 9.788. zend-math Usage
  • 9.789. zend-memory 2.5.0 Undefined Classes
  • 9.790. zend-memory Usage
  • 9.791. zend-mime 2.5.0 Undefined Classes
  • 9.792. zend-mime 2.6.0 Undefined Classes
  • 9.793. zend-mime Usage
  • 9.794. zend-modulemanager 2.5.0 Undefined Classes
  • 9.795. zend-modulemanager 2.6.0 Undefined Classes
  • 9.796. zend-modulemanager 2.7.0 Undefined Classes
  • 9.797. zend-modulemanager 2.8.0 Undefined Classes
  • 9.798. zend-modulemanager Usage
  • 9.799. zend-mvc 2.5.x
  • 9.800. zend-mvc 2.6.x
  • 9.801. zend-mvc 2.7.x
  • 9.802. zend-mvc 3.0.x
  • 9.803. zend-mvc 3.1.0 Undefined Classes
  • 9.804. zend-mvc Usage
  • 9.805. zend-navigation 2.5.0 Undefined Classes
  • 9.806. zend-navigation 2.6.0 Undefined Classes
  • 9.807. zend-navigation 2.7.0 Undefined Classes
  • 9.808. zend-navigation 2.8.0 Undefined Classes
  • 9.809. zend-navigation Usage
  • 9.810. zend-paginator 2.5.0 Undefined Classes
  • 9.811. zend-paginator 2.6.0 Undefined Classes
  • 9.812. zend-paginator 2.7.0 Undefined Classes
  • 9.813. zend-paginator Usage
  • 9.814. zend-progressbar 2.5.0 Undefined Classes
  • 9.815. zend-progressbar Usage
  • 9.816. zend-serializer 2.5.0 Undefined Classes
  • 9.817. zend-serializer 2.6.0 Undefined Classes
  • 9.818. zend-serializer 2.7.0 Undefined Classes
  • 9.819. zend-serializer 2.8.0 Undefined Classes
  • 9.820. zend-serializer Usage
  • 9.821. zend-server 2.5.0 Undefined Classes
  • 9.822. zend-server 2.6.0 Undefined Classes
  • 9.823. zend-server 2.7.0 Undefined Classes
  • 9.824. zend-server Usage
  • 9.825. zend-servicemanager 2.5.0 Undefined Classes
  • 9.826. zend-servicemanager 2.6.0 Undefined Classes
  • 9.827. zend-servicemanager 2.7.0 Undefined Classes
  • 9.828. zend-servicemanager 3.0.0 Undefined Classes
  • 9.829. zend-servicemanager 3.1.0 Undefined Classes
  • 9.830. zend-servicemanager 3.2.0 Undefined Classes
  • 9.831. zend-servicemanager 3.3.0 Undefined Classes
  • 9.832. zend-servicemanager Usage
  • 9.833. zend-session 2.5.0 Undefined Classes
  • 9.834. zend-session 2.6.0 Undefined Classes
  • 9.835. zend-session 2.7.0 Undefined Classes
  • 9.836. zend-session 2.8.0 Undefined Classes
  • 9.837. zend-session Usage
  • 9.838. zend-soap 2.5.0 Undefined Classes
  • 9.839. zend-soap 2.6.0 Undefined Classes
  • 9.840. zend-soap Usage
  • 9.841. zend-stdlib 2.5.0 Undefined Classes
  • 9.842. zend-stdlib 2.6.0 Undefined Classes
  • 9.843. zend-stdlib 2.7.0 Undefined Classes
  • 9.844. zend-stdlib 3.0.0 Undefined Classes
  • 9.845. zend-stdlib 3.1.0 Undefined Classes
  • 9.846. zend-stdlib Usage
  • 9.847. zend-tag 2.5.0 Undefined Classes
  • 9.848. zend-tag 2.6.0 Undefined Classes
  • 9.849. zend-tag Usage
  • 9.850. zend-test 2.5.0 Undefined Classes
  • 9.851. zend-test 2.6.0 Undefined Classes
  • 9.852. zend-test 3.0.0 Undefined Classes
  • 9.853. zend-test 3.1.0 Undefined Classes
  • 9.854. zend-test Usage
  • 9.855. zend-text 2.5.0 Undefined Classes
  • 9.856. zend-text 2.6.0 Undefined Classes
  • 9.857. zend-text Usage
  • 9.858. zend-uri
  • 9.859. zend-uri 2.5.x
  • 9.860. zend-validator 2.6.x
  • 9.861. zend-validator 2.7.x
  • 9.862. zend-validator 2.8.x
  • 9.863. zend-validator 2.9.0 Undefined Classes
  • 9.864. zend-validator Usage
  • 9.865. zend-view 2.5.0 Undefined Classes
  • 9.866. zend-view 2.6.0 Undefined Classes
  • 9.867. zend-view 2.7.0 Undefined Classes
  • 9.868. zend-view 2.8.0 Undefined Classes
  • 9.869. zend-view 2.9.0 Undefined Classes
  • 9.870. zend-view Usage
  • 9.871. zend-xmlrpc 2.5.0 Undefined Classes
  • 9.872. zend-xmlrpc 2.6.0 Undefined Classes
  • 9.873. zend-xmlrpc Usage
• 10. Real Code Cases
  • 10.1. Introduction
  • 10.2. Examples
• 11. Reports
  • 11.1. Configuring a report before the audit
  • 11.2. Generating a report after the audit
  • 11.3. Common behavior
  • 11.4. Ambassador
  • 11.5. Clustergrammer
  • 11.6. Code Flower
  • 11.7. Code Sniffer
  • 11.8. Composer
  • 11.9. Dependency Wheel
  • 11.10. Inventories
  • 11.11. Json
  • 11.12. Marmelab
  • 11.13. Owasp
  • 11.14. PhpCompilation
  • 11.15. PhpConfiguration
  • 11.16. PlantUml
  • 11.17. RadwellCode
  • 11.18. SimpleTable
  • 11.19. Stats
  • 11.20. Text
  • 11.21. Uml
  • 11.22. Xml
• 12. Configuration
  • 12.1. Summary
  • 12.2. Common Behavior
  • 12.3. Engine configuration
  • 12.4. Project Configuration
  • 12.5. Adding/Excluding files
  • 12.6. Specific analyser configurations
  • 12.7. Configuring analysis to be run
  • 12.8. Check Install
• 13. Glossary
• 14. Ideas
• 15. List of contributors
• 16. Annex
  • 16.1. Supported Themes
  • 16.2. Supported Reports
  • 16.3. Supported PHP Extensions
  • 16.4. Supported Frameworks
  • 16.5. Applications
  • 16.6. Recognized Libraries
  • 16.7. New analyzers
  • 16.8. PHP Error messages
  • 16.9. External services
  • 16.10. External links
  • 16.11. Themes configuration
  • 16.12. Analyze
  • 16.13. Cakephp
  • 16.14. ClassReview
  • 16.15. Coding Conventions
  • 16.16. CompatibilityPHP53
  • 16.17. CompatibilityPHP54
  • 16.18. CompatibilityPHP55
  • 16.19. CompatibilityPHP56
  • 16.20. CompatibilityPHP70
  • 16.21. CompatibilityPHP71
  • 16.22. CompatibilityPHP72
  • 16.23. CompatibilityPHP73
  • 16.24. Dead code
  • 16.25. Performances
  • 16.26. Security
  • 16.27. Slim
  • 16.28. Suggestions
  • 16.29. Wordpress
  • 16.30. ZendFramework