89 lines
2.2 KiB
PHP
89 lines
2.2 KiB
PHP
<?php
|
|
defined('ABSPATH') or die();
|
|
class rsssl_hardening {
|
|
private static $_this;
|
|
public $risk_naming;
|
|
function __construct()
|
|
{
|
|
if (isset(self::$_this))
|
|
wp_die(sprintf(__('%s is a singleton class and you cannot create a second instance.', 'really-simple-ssl'), get_class($this)));
|
|
add_filter( 'rsssl_do_action', array($this, 'hardening_data'), 10, 3 );
|
|
|
|
add_action("admin_init", array($this, "load_translations"));
|
|
self::$_this = $this;
|
|
}
|
|
|
|
public function load_translations(){
|
|
$this->risk_naming = [
|
|
'l' => __('low-risk', 'really-simple-ssl'),
|
|
'm' => __('medium-risk', 'really-simple-ssl'),
|
|
'h' => __('high-risk', 'really-simple-ssl'),
|
|
'c' => __('critical', 'really-simple-ssl'),
|
|
];
|
|
}
|
|
|
|
function hardening_data( array $response, string $action, $data ): array {
|
|
if ( ! rsssl_user_can_manage() ) {
|
|
return $response;
|
|
}
|
|
if ($action === 'hardening_data') {
|
|
$response = $this->get_stats( $data );
|
|
}
|
|
|
|
return $response;
|
|
}
|
|
|
|
static function this()
|
|
{
|
|
return self::$_this;
|
|
}
|
|
|
|
/* Public Section 2: DataGathering */
|
|
|
|
/**
|
|
* @param $data
|
|
*
|
|
* @return array
|
|
*/
|
|
public function get_stats($data): array
|
|
{
|
|
if ( ! rsssl_user_can_manage() ) {
|
|
return [];
|
|
}
|
|
|
|
$vulEnabled = rsssl_get_option('enable_vulnerability_scanner');
|
|
//now we fetch all plugins that have an update available.
|
|
|
|
$stats = [
|
|
'updates' => $this->getAllUpdatesCount(),
|
|
'lastChecked' => time(),
|
|
'riskNaming' => $this->risk_naming,
|
|
'vulEnabled' => $vulEnabled,
|
|
];
|
|
|
|
$repsonse = [
|
|
"request_success" => true,
|
|
'data' => apply_filters('rsssl_vulnerability_data', $stats),
|
|
];
|
|
return $repsonse;
|
|
}
|
|
|
|
/**
|
|
* Gets the count of all available updates for core, plugins, and themes.
|
|
*
|
|
* @return int The count of all available updates.
|
|
*/
|
|
public function getAllUpdatesCount(): int
|
|
{
|
|
$updatesData = wp_get_update_data();
|
|
// Checks if the 'counts' key exists in the array and it's an array itself.
|
|
if (isset($updatesData['counts']) && is_array($updatesData['counts'])) {
|
|
//we only want core, plugins and themes.
|
|
$updatesCounts = array_slice($updatesData['counts'], 0, 3);
|
|
return array_sum($updatesCounts);
|
|
}
|
|
// Fallback return in case there's no 'counts' key or it's not an array.
|
|
return 0;
|
|
}
|
|
}
|