84 lines (63 loc) · 1.17 KB

sanctify-php Priority List

Table of Contents

MUST (Critical - Core Analysis)
SHOULD (Important - WordPress Focus)
COULD (Nice to Have - Future)

MUST (Critical - Core Analysis)

ID	Task	Status
M1	Implement standalone security checks (SQL, XSS, CSRF, etc.)	✓ DONE
M2	Weak crypto detection (flag MD5/SHA1, recommend SHAKE3-256/BLAKE3)	✓ DONE
M3	Post-quantum crypto advisory (Kyber/Dilithium recommendations)	✓ DONE
M4	Complete taint tracking for all PHP superglobals	✓ DONE
M5	Config file parsing (YAML/JSON)	PENDING

SHOULD (Important - WordPress Focus)

ID	Task	Status
S1	WordPress hook security analysis	PENDING
S2	WordPress capability escalation detection	PENDING
S3	Auto-fix for common issues (strict_types, esc_html, etc.)	PENDING
S4	SARIF output format for CI integration	PENDING
S5	LSP server for IDE integration	PENDING
S6	Add Guix/Nix package definitions	PENDING

COULD (Nice to Have - Future)

ID	Task	Status
C1	Laravel-specific security rules	PENDING
C2	Symfony-specific security rules	PENDING
C3	Performance impact analysis	PENDING
C4	Automated PR review comments via GitHub Actions	PENDING