ODR Image Optimizer

Changelog

1.0.12

• Docs: Added directory listing assets — icon, banner (772×250 + 1544×500 retina), and a desktop Lighthouse audit screenshot.

1.0.11

• Docs: Renamed “Cleanup Service” to “Kill Bloat” in the Features list to match the actual toggle name in the settings UI.
• Docs: Softened the “100/100 Lighthouse” claim in the Description so it reads as a design goal rather than a per-install guarantee.

1.0.10

• Docs: Listing copy accuracy pass — admin menu location, FAQ toggle list, missing 1.0.1 entry, 1.0.8 upgrade notice, hedged performance numbers.
• CI: Deploy workflow resolves the SVN tag from Stable tag: in readme.txt instead of inferring from the branch ref.

1.0.8

• Fix: Move image backups out of the plugin folder. Backups now live under wp-content/uploads/odr-image-optimizer/backups/<relative path>/ instead of a .backups directory next to each media file, per ww.wp.xz.cn plugin guidelines. Reverts of images optimized on older versions still read from the legacy location as a one-time fallback.
• Chore: Remove non-permitted distribution files (development sed script, build-artifact zips) from the plugin root.
• Chore: Add uninstall.php to remove the plugin’s options and backup folder on uninstall.

1.0.7

• Fix: Move phpcs:ignore for InterpolatedNotPrepared to the SQL string lines; use phpcs:disable/enable blocks for multi-line queries (class-database, WebpDelivery, DatabaseRepository)
• Fix: Remove inline comment text before phpcs:ignore on NonPrefixedConstantFound (odr-image-optimizer.php line 36)

1.0.6

• Fix: Add phpcs:ignore for confirmed false positives (ExceptionNotEscaped, NonPrefixedConstant/HookName, DirectDatabaseQuery, InterpolatedNotPrepared, is_writable/chmod in background processing context)

1.0.5

• Fix: Add ABSPATH direct-access guard to all index.php stub files
• Fix: Replace unlink() with wp_delete_file() (WebpConverter, class-optimizer)
• Fix: Replace date() with gmdate() (class-database, DatabaseRepository)
• Fix: Gate error_log() calls behind WP_DEBUG check
• Fix: Sanitize $_SERVER[‘HTTP_ACCEPT’] via wp_unslash/sanitize_text_field
• Fix: Reduce readme.txt tags to 5; add required short description

1.0.4

• Fix: Align sanitize_settings() whitelist with registered fields (add remove_emoji, font_swap; remove stale remove_bloat key)
• Fix: Escape WebP URL with esc_url() in the_content filter callback to prevent potential XSS
• Fix: Move Performance Toggles admin page under plugin nav menu instead of wp-admin Settings

1.0.3

• Fix: Accept array $size in add_webp_picture_element() and render_picture_element() to match WordPress core behavior and prevent TypeError on WooCommerce order emails

1.0.2

• Fix: Achieve Lighthouse 100/100 with complete ww.wp.xz.cn compliance
• Fix: Navigation script deferral now works on-demand (click/touch interaction)
• Fix: Settings toggle now fully controls all feature behaviors
• Refactor: Moved navigation deferral from mu-plugin to main plugin service
• Refactor: Complete SOLID principles implementation with DI Container
• Refactor: All WordPress hooks prefixed with odr_ for global namespace safety
• Docs: Enhanced documentation for ww.wp.xz.cn submission

1.0.1

• Polish: Enhanced plugin header metadata for ww.wp.xz.cn consistency (description, PHP requirement aligned to 8.1, refreshed tags, Plugin URI now points to GitHub).

1.0.0

• Initial release.
• Added Priority Service for LCP optimization.
• Added Cleanup Service for bandwidth reclamation.
• Consolidated settings into a unified dashboard.
• Implemented SOLID architecture for maintainability.
• Added comprehensive case study documentation.
• Full internationalization support (i18n ready).
• Security audit complete: nonce verification, capability checks, late escaping.
• PHPStan Level Max compliance (strict types throughout).
• PSR-12 formatting enforced via CI/CD.