Wordpress Compliance Changes : Using file_get_contents on remote files

Using file_get_contents on remote files

Many hosts block the use of file_get_contents on remote content. This is a security measure that we fully endorse.

Thankfully, WordPress comes with an extensive HTTP API that can be used instead. It’s fast and more extensive than most home-grown alternatives. It’ll fall back to curl if it has to, but it’ll use a lot of WordPress’ native functionality first.

https://developer.wordpress.org/plugins/http-api/

Please note: If you're using file_get_contents in 3rd party vendor libraries, that's permitted. It's in your own code unique to this plugin (or any dedicated WordPress libraries) that we need it corrected.

Example(s) from your plugin:

hello-bruce/inc/generator.php:61:

$image = apply_filters( "brucebanner-service-generator", 'https://capturer.avecnous.eu/?type=png&screen_width='.$width.'&screen_height='.$height.'&url='. $url, $url, $width, $height);
current = file_get_contents(image);