Pantheon provides static site analysis as a service for WordPress sites to make best practice recommendations on site configurations. These reports are found in the Site Dashboard under the Status tab, and are accessible by site team members.
Every site is unique, with its own individual configuration, content, audience, and so forth. On Pantheon they're all built with one of two CMS frameworks, Drupal or WordPress, and have the same architectural requirements. Therefore, it's possible to provide recommendations that fit the vast majority of use cases using a technique known as static program analysis by gathering performance & behavior patterns to see how a site works.
This mechanism does not actually perform requests on your site, and in doing so avoids the observer effect. It's non-intrusive, so no installation or configuration is required. Finally, it's completely automated for consistent reports and results.
In short, you get a fast, repeatable report that can help detect common problems and provide introspection into your site.
WP Launch Check is a site audit extension for WP-CLI designed for Pantheon customers. While designed initially for the Pantheon Dashboard it is intended to be fully usable outside of Pantheon.
To manually perform a site audit using WP Launch Check from the command line (using Terminus), run:
terminus wp <site>.<env> -- launchcheck <subcommand>
This check verifies that Cron is enabled and what jobs are scheduled. It is enabled by default, but it if has been disabled you'll receive the following message:
Cron appears to be disabled, make sure DISABLE_WP_CRON is not defined in your wp-config.php.
This displays database stats such as the number of rows in the options table, options being auto-loaded, tables using InnoDB storage engine (suggests a query to run if not), transients, and expired transients.
InnoDB has row level locking; MYISAM has table level locking. If a query is being performed on a table with MYISAM storage engine, no other query can modify the data until the first has given up its lock, which can result in tremendous performance issues for web applications. To learn how to move your tables to InnoDB, see Moving MySQL tables from MyISAM to InnoDB.
This check will display a list of exploited patterns in code, the file name that has the exploit, line number, and match.
This tells you if Object Caching and Redis are enabled.
If you receive an error similar to the following, you'll need to move the
object-cache.php from the plugin directory to
wp-content/object-cache.php. For more information, see Installing Redis on Drupal or WordPress.
Cannot redeclare class WP_Object_Cache in /srv/bindings/0fef773f42984256a4f6feec2556a5ed/code/wp-content/plugins/wp-redis/object-cache.php
This check lists all your enabled plugins and alerts you when they need to be updated. It also checks for any vulnerabilities.
- Green: All of your plugins are up-to-date
- Yellow: Highlighted plugins need to be updated
- Red: Displays all vulnerabilities and unsupported plugins
Displays the files that references sessions. If any are found, you'll be prompted to install the WordPress Native PHP Sessions plugin.
If you have a feature request, message enhancements, or found a bug, please look at the project's issues and submit a new issue if someone else has not already posted it. Pull requests are always welcome!
If you have a Drupal site, see Launch Check - Drupal Performance and Configuration Analysis.