Merge pull request #1487 from WordPress-Coding-Standards/feature/nonc…

…e-verification-errorcodes NonceVerification: use separate errorcodes for warning vs error
WordPress · Dec 18, 2018 · 262d002 · 262d002
2 parents 6a4c6c0 + 7b920b4
commit 262d002
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/WordPress/Sniffs/Security/NonceVerificationSniff.php b/WordPress/Sniffs/Security/NonceVerificationSniff.php
@@ -155,12 +155,17 @@ public function process_token( $stackPtr ) {
 			return;
 		}
 
+		$error_code = 'Missing';
+		if ( false === $this->superglobals[ $instance['content'] ] ) {
+			$error_code = 'Recommended';
+		}
+
 		// If we're still here, no nonce-verification function was found.
 		$this->addMessage(
 			'Processing form data without nonce verification.',
 			$stackPtr,
 			$this->superglobals[ $instance['content'] ],
-			'NoNonceVerification'
+			$error_code
 		);
 	}