Workflows

PDowney · web-flow · commit 8d9ab90c0ecb · 2025-05-31T18:20:01.000-04:00
diff --git a/.github/ISSUE_TEMPLATE/phpstan-failure.md b/.github/ISSUE_TEMPLATE/phpstan-failure.md
@@ -0,0 +1,37 @@
+---
+title: "PHPStan for WordPress Analysis Failed - PHP {{ env.PHP_VERSION }}"
+labels: ["bug", "phpstan", "static-analysis", "wordpress"]
+assignees: []
+---
+
+## PHPStan for WordPress Static Analysis Failure
+
+**PHP Version:** {{ env.PHP_VERSION }}
+**Workflow Run:** [{{ env.RUN_ID }}]({{ env.WORKFLOW_URL }})
+**Date:** {{ date | date('YYYY-MM-DD') }}
+
+### Description
+The PHPStan for WordPress static analysis check has failed during the automated testing process.
+
+### What happened?
+PHPStan for WordPress detected potential code issues during static analysis. This could indicate:
+
+- Type safety issues specific to WordPress APIs
+- Potential bugs or inconsistencies in WordPress plugin code
+- WordPress coding standard violations
+- Incorrect usage of WordPress functions or hooks
+
+### Next Steps
+1. Review the workflow logs at the link above
+2. Check the specific PHPStan error messages
+3. Fix any identified code issues
+4. Ensure WordPress-specific type annotations are correct
+5. Re-run the workflow to verify fixes
+
+### Additional Information
+- This check uses WordPress-specific PHPStan rules
+- The analysis helps catch WordPress-related coding issues early
+- Consider updating code to follow WordPress best practices
+
+---
+*This issue was automatically created by the PHPStan for WordPress workflow failure.*
diff --git a/.github/workflows/wordpress-plugin-check.yml b/.github/workflows/wordpress-plugin-check.yml
@@ -592,6 +592,15 @@ jobs:
       - name: Security Check for known vulnerabilities in dependencies
         uses: symfonycorp/security-checker-action@v5
 
+      - name: WordPress Vulnerability Scanner
+        uses: jazzsequence/action-wordpress-vulnerability-scanner@1.0.1
+
+      - name: WordPress Vulnerability Check
+        uses: umutphp/wp-vulnerability-check-github-action@v18
+        with:
+          path: '.'
+          token: ${{ secrets.GITHUB_TOKEN }}
+
       - name: Create issue on security vulnerability
         if: ${{ failure() }}
         uses: JasonEtco/create-an-issue@v2
@@ -610,7 +619,7 @@ jobs:
     strategy:
       matrix:
         php-version: ['7.4', '8.0', '8.1', '8.2', '8.3', '8.4']
-        wp-version: ['6.0', '6.1', '6.2', '6.3', '6.4', '6.5', '6.6', '6.7', 'latest', 'nightly']
+        wp-version: ['6.0', 'latest', 'nightly']
       fail-fast: false
 
     services:
@@ -771,7 +780,9 @@ jobs:
                   fi
               fi
           
+              # First, ensure database doesn't exist (ignore errors)
               mysql --user="$DB_USER" --password="$DB_PASS"$EXTRA -e "DROP DATABASE IF EXISTS $DB_NAME" || true
+              # Now create fresh database with force flag
               mysqladmin create $DB_NAME --user="$DB_USER" --password="$DB_PASS"$EXTRA --force
           }
           
@@ -882,3 +893,38 @@ jobs:
         with:
           filename: .github/ISSUE_TEMPLATE/wp-version-test-failure.md
           update_existing: false
+
+  phpstan-wordpress:
+    name: PHPStan for WordPress (PHP ${{ matrix.php-version }})
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        php-version: ['7.4', '8.0', '8.1', '8.2', '8.3', '8.4']
+      fail-fast: false
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup PHP ${{ matrix.php-version }}
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: ${{ matrix.php-version }}
+          extensions: mysqli, curl, zip, intl, gd, mbstring, fileinfo, xml
+          coverage: none
+          tools: composer:v2
+
+      - name: PHPStan for WordPress
+        uses: dingo-d/phpstan-wp-action@v2
+
+      - name: Create issue on PHPStan failure
+        if: ${{ failure() }}
+        uses: JasonEtco/create-an-issue@v2
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          PHP_VERSION: ${{ matrix.php-version }}
+          RUN_ID: ${{ github.run_id }}
+          WORKFLOW_URL: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}
+        with:
+          filename: .github/ISSUE_TEMPLATE/phpstan-failure.md
+          update_existing: false
diff --git a/README.md b/README.md
@@ -1,9 +1,9 @@
 # Simple WP Optimizer
 
 ![GitHub License](https://img.shields.io/github/license/EngineScript/Simple-WP-Optimizer)
-![WordPress Plugin Version](https://img.shields.io/badge/version-1.5.4-blue)
+![WordPress Plugin Version](https://img.shields.io/badge/version-1.5.5-blue)
 ![WordPress Plugin Required PHP Version](https://img.shields.io/badge/php-7.4--8.4-green)
-![WordPress Plugin: Tested WP Version](https://img.shields.io/badge/wordpress-5.0--6.4-green)
+![WordPress Plugin: Tested WP Version](https://img.shields.io/badge/wordpress-6.0--6.8-green)
 
 A lightweight WordPress plugin designed to optimize your website by removing unnecessary scripts, styles, and header elements that can slow down your site.
 
@@ -67,7 +67,7 @@ Yes, hiding the WordPress version can provide a minor security benefit by making
 ### Requirements
 
 - PHP 7.4 or higher
-- WordPress 5.6 or higher
+- WordPress 6.0 or higher
 - Composer (for development and testing)
 
 ### Setting up the development environment
@@ -79,13 +79,13 @@ Yes, hiding the WordPress version can provide a minor security benefit by making
 
 ### PHP 8.x Compatibility
 
-This plugin is fully compatible with PHP versions 7.4 through 8.2. For testing with PHP 8.x, we provide a custom PHPUnit runner script that helps avoid common compatibility issues between PHPUnit and newer PHP versions:
+This plugin is fully compatible with PHP versions 7.4 through 8.4. For testing with PHP 8.x, we provide a custom PHPUnit runner script that helps avoid common compatibility issues between PHPUnit and newer PHP versions:
 
 ```bash
 # For PHP 7.4 (standard testing)
 composer test
 
-# For PHP 8.0, 8.1, and 8.2 (using the custom runner)
+# For PHP 8.0, 8.1, 8.2, 8.3, and 8.4 (using the custom runner)
 composer test:php8
 ```
 
@@ -107,8 +107,8 @@ This ensures our plugin stays up-to-date with the latest WordPress versions with
 
 The plugin includes a comprehensive PHPUnit test suite that runs automatically on GitHub Actions. Our testing matrix includes:
 
-- PHP versions: 7.4, 8.0, 8.1, 8.2
-- Latest WordPress version
+- PHP versions: 7.4, 8.0, 8.1, 8.2, 8.3, 8.4
+- WordPress versions: 6.0, latest, nightly
 - Both single site and multisite installations
 
 This ensures code quality and compatibility across different PHP versions and WordPress configurations.
