Changeset 13816 for trunk/src/bp-activity/bp-activity-embeds.php

Timestamp:

04/27/2024 05:51:41 PM (20 months ago)

Author:

imath

Message:

Activity component: improve PHP code standards using WPCS

See #7228 (trunk)

File:

• trunk/src/bp-activity/bp-activity-embeds.php (modified) (3 diffs)

trunk/src/bp-activity/bp-activity-embeds.php

@@ -73 +73 @@
     // Grab contents of CSS file and do some rudimentary CSS protection.
     $css = file_get_contents( $css['file'] );
-    $css = wp_kses( $css, array( "\'", '\"' ) );
-
-    printf( '<style type="text/css">%s</style>', $css );
+
+    printf( '<style type="text/css">%s</style>', wp_kses( $css, array( "\'", '\"' ) ) );
 }
 add_action( 'embed_head', 'bp_activity_embed_add_inline_styles', 20 );
@@ -122 +121 @@
  */
 function bp_activity_embed_excerpt( $content = '' ) {
+    // Escaping is made in `bp-activity/bp-activity-filters.php`.
+    // phpcs:ignore WordPress.Security.EscapeOutput
     echo bp_activity_get_embed_excerpt( $content );
 }
@@ -318 +319 @@
             printf( '<div class="bp-activity-embed-display-media %s" style="max-width:%spx">%s</div>',
                 $thumb_width < $float_width ? 'two-col' : 'one-col',
-                $thumb_width < $float_width ? $width : $thumb_width,
+                $thumb_width < $float_width ? intval( $width ) : intval( $thumb_width ),
+                // phpcs:ignore WordPress.Security.EscapeOutput
                 $content
             );