Reducing the Plugin Review team’s workload through automation


Date: February 19, 2021 

Category: Make WordPress Meta

To help the Plugin Review team make the most of their contribution time and improve the security of all plugins distributed on, Meta team contributors have built a code scanner that detects potential security risks such as unescaped SQL queries in plugin code. This is installed as a plugin on, and displays results in a metabox on the plugin edit screen accessible to reviewers.

The Plugin Review team has been sharing feedback on the quality of the results, which has let Meta contributors to refine the tool to improve the noise-to-signal ratio that makes any automated checker a