New sniff to enforce early returns when there are nested conditions

[Crabcyborg]

Summary by CodeRabbit

Release Notes

• Refactor

  • Improved error handling and control flow throughout application for enhanced reliability and maintainability.
  • Strengthened defensive programming practices with better handling of missing or invalid inputs.
  • Optimized validation logic and early-exit patterns to reduce processing overhead.

• Chores

  • Added automated code quality checker to enforce consistent control-flow patterns in development.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

A comprehensive refactoring introduces a PHP_CodeSniffer sniff to detect and fix nested if statements convertible to early returns. The sniff has been applied systematically across dozens of controller, model, helper, and integration files, inverting conditions and restructuring control flow while preserving behavioral equivalence.

Changes

Cohort / File(s)	Summary
PHPCS Tooling phpcs-sniffs/Formidable/Sniffs/CodeAnalysis/FlipNestedIfToEarlyReturnSniff.php, phpcs-sniffs/Formidable/ruleset.xml	New sniff class detects patterns where final if block contains nested structures before return; applies fixes by negating conditions, dedenting bodies, and moving returns early. Ruleset updated to enforce the new rule.
Controllers - Addon & App classes/controllers/FrmAddonsController.php, classes/controllers/FrmAppController.php	Error handling and install-flow control paths inverted to early-return on non-error/non-update conditions; license validation restructured with early exits when requirements unmet.
Controllers - Forms & Fields classes/controllers/FrmFieldsController.php, classes/controllers/FrmFormsController.php, classes/controllers/FrmFormTemplatesController.php	Form lookup logic simplified with empty checks and early returns; form validation paths restructured; template navigation appending refactored with inverted conditionals.
Controllers - SMTP & Utilities classes/controllers/FrmSMTPController.php	Non-array input guard added with early return to prevent unintended iteration; array handling preserved with final return path guaranteed.
Helpers - Core & App classes/helpers/FrmAppHelper.php	Multiple control-flow inversions: admin-page detection guards AJAX/context; key truncation gated with early returns; UTF-8 encoding paths protected; icon helper callable checks inverted; generate_new_key visibility changed from private to public.
Helpers - Email & Entries classes/helpers/FrmEmailSummaryHelper.php, classes/helpers/FrmEntriesHelper.php, classes/helpers/FrmEntriesListHelper.php	Renewal-date computation inverted to early-return on missing dates; inbox-badge callability guarded with conditional updates; meta-ordering early-return for non-meta cases, type-based adjustments refactored.
Helpers - Forms & Tips classes/helpers/FrmFormsHelper.php, classes/helpers/FrmTipsHelper.php	API-form detection callable check inverted for early failure path; tip-link CTA logic restructured with early returns for missing links and conditional UTM parameter application.
Helpers - XML & XML/Honeypot classes/helpers/FrmXMLHelper.php	Form-status early-return added; error-checking block repositioned to execute only when form_status absent.
Models - Addon & Create classes/models/FrmAddon.php, classes/models/FrmCreateFile.php	License activation pre-checks inverted with early return on failed conditions; credential guards added with early false returns for invalid/inapplicable SSH states.
Models - Email & Entry classes/models/FrmEmail.php, classes/models/FrmEntry.php	Yahoo address-handling inverted; non-Yahoo returns early with provided address; page-count computation early-returns on falsy p_size with simplified page calculation.
Models - Validation & Values classes/models/FrmEntryValidate.php, classes/models/FrmEntryValues.php	Regex-creation early-return added for patterns without literal question mark; exclude-fields inclusion logic guarded with early exit when excludes empty.
Models - Field, Style, & Specific Types classes/models/FrmField.php, classes/models/FrmStyle.php, classes/models/fields/FrmFieldCaptcha.php, classes/models/fields/FrmFieldName.php	Cache invalidation moved to success path with early return on update failure; brace-trimming logic inverted with conditional parenthesis appending; captcha-type check added as guard; name-field autocomplete logic simplified with early non-match exit.
Models - Form API & Honeypot classes/models/FrmFormApi.php, classes/models/FrmHoneypot.php	Cache-retrieval paths restructured per multisite context with early returns; addon-inclusion categories logic reordered with upfront non-set return; honeypot CSS printing inverted to emit all selectors early on first print.
Payment Integrations - Square square/controllers/FrmSquareLiteActionsController.php, square/helpers/FrmSquareLiteConnectHelper.php	Border-radius field-shape handling restructured; server-response success logic inverted with early return on presence of body->success; pro-license check inverted to early-return when Pro unavailable; OAuth merchant-id flow gated with early false return and install call added on success.
Payment Integrations - Stripe stripe/controllers/FrmStrpLiteActionsController.php, stripe/helpers/FrmStrpLiteConnectHelper.php, stripe/helpers/FrmTransLiteAppHelper.php	Border-radius logic inverted with early empty-type return; server-response and OAuth account validation restructured with early failures; pro-license resolution reordered; utility helpers (payments-table check, shortcode processing, user-link building) guarded and early-returning on missing prerequisites.
Tests tests/phpunit/entries/test_FrmShowEntryShortcode.php	Expected-array filtering logic inverted to early-return on provided include_blank; blank-value removal applied only when include_blank not set.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• New rector rule PreparedValueToEarlyReturnRector #2670 — Applies the same "flip nested if to early return" refactoring pattern across many identical controller, model, and helper files in parallel.
• New sniff to add early returns to functions that are one big if #2803 — Adds PHP_CodeSniffer sniffs to enforce flipping nested if/else structures into early-return patterns, directly enabling the automated tooling used in this refactor.
• New early return sniff #2828 — Companion PR adding an early-return PHPCS sniff and applying matching control-flow refactors across the same set of files and functions.

Poem

🐰 Conditions flip, returns go early,
Nested ifs now dance more cleanly,
A sniff to guide each guard with care,
Early exits everywhere—
Simpler paths through logic's maze! ✨

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main objective of the PR: introducing a new PHP_CodeSniffer sniff that enforces early returns when nested conditions are present.
Docstring Coverage	✅ Passed	Docstring coverage is 98.18% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 11

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

classes/controllers/FrmSMTPController.php (1)

91-98: PHPDoc type hints conflict with the new guard, causing the Psalm error.

The @param array annotation tells Psalm that $upsell is always an array, making the ! is_array() check appear as dead code. Update the PHPDoc to reflect the defensive handling.

📝 Suggested fix

 	/**
 	 * Don't nag people to install WPForms
 	 *
 	 * `@since` 4.04.04
 	 *
-	 * `@param` array $upsell
+	 * `@param` mixed $upsell
 	 *
-	 * `@return` array
+	 * `@return` mixed
 	 */
 	public static function remove_wpforms_nag( $upsell ) {

square/helpers/FrmSquareLiteConnectHelper.php (1)

314-325: Fix undefined $password in the early-return and conditional-assignment paths.

Psalm/PHPStan flag $password as undefined at line 315 (early return) and line 324 (when $pro_license is falsy). At line 315, $password is never initialized. At line 324, $password remains undefined when the condition at line 320 fails.

🐛 Proposed fix

 	private static function maybe_get_pro_license() {
 		if ( ! FrmAppHelper::pro_is_installed() ) {
-			return ! empty( $password ) ? $password : false;
+			return false;
 		}
 
-		$pro_license = FrmAddonsController::get_pro_license();
-
-		if ( $pro_license ) {
-			$password = $pro_license;
-		}
-
-		return ! empty( $password ) ? $password : false;
+		$password = FrmAddonsController::get_pro_license();
+		return ! empty( $password ) ? $password : false;
 	}

🤖 Fix all issues with AI agents

In `@classes/controllers/FrmAddonsController.php`:
- Around line 1224-1242: Remove the unreachable trailing "return $result;"
leftover in FrmAddonsController.php: inside the error handling block that checks
is_wp_error($result) and handles the 'no_plugin_header' case,
wp_send_json_error() call, and the final return of the error array (which
already returns), delete the final redundant return $result; to eliminate dead
code and avoid confusion; reference the $result variable,
get_error_code()/get_error_message() usage and the wp_send_json_error() call
when locating the redundant statement.

In `@classes/controllers/FrmSMTPController.php`:
- Around line 100-103: The loop in FrmSMTPController that unsets upsell items
assumes each $plugin is an array with a 'slug' key and may throw notices; update
the foreach over $upsell to first validate the element (e.g., check
is_array($plugin) and isset($plugin['slug']) or array_key_exists('slug',
$plugin')) before calling str_contains on $plugin['slug'], and skip or unset
malformed entries accordingly to avoid errors when structure is unexpected.

In `@classes/helpers/FrmEmailSummaryHelper.php`:
- Around line 191-206: Remove the unreachable trailing "return false;" after the
computed renewal date is returned in the method that computes renewal dates (the
block using $first_form_date, YEARLY_PERIOD, BEFORE_RENEWAL_PERIOD,
self::get_date_from_today and self::save_options). Specifically, locate the
method in FrmEmailSummaryHelper that returns $renewal_date (it already returns
false earlier when !$first_form_date), delete the final dead "return false;" so
control flow is clean and there are no unreachable statements.

In `@classes/helpers/FrmTipsHelper.php`:
- Around line 94-104: The final return in FrmTipsHelper.php is unreachable due
to the earlier return of $cta_link; remove the dead statement "return
FrmAppHelper::admin_upgrade_link( $tip['link'], $tip['page'] );" so control and
returns are consistent; locate the block handling $cta_link and $tip
(references: $cta_link, $tip, FrmAppHelper::maybe_add_missing_utm and
FrmAppHelper::admin_upgrade_link) and delete the unreachable return to eliminate
dead code.

In `@classes/models/FrmCreateFile.php`:
- Around line 282-297: The code builds a sanitized $stored_credentials but
returns $credentials and leaves an unreachable "return false;"—fix by either (A)
returning the sanitized $stored_credentials instead of $credentials (so
sensitive fields are removed and port is appended), or (B) persisting
$stored_credentials (e.g., via the existing persistence mechanism used
elsewhere) and then returning an appropriate success value; remove the dead
"return false;" after the return and ensure changes occur in the FrmCreateFile
method/block where $stored_credentials is created so the sanitized credentials
are actually used or saved.

In `@classes/models/FrmEntryValidate.php`:
- Around line 523-530: The code uses a falsy check on $pattern to detect the
first segment which fails when the first segment is "0" or empty; in the loop
over $parts (from explode('\?',$pattern)) replace the falsy check with a proper
first-iteration detection—either call array_shift to handle the first part
separately or introduce an explicit boolean flag (e.g., $isFirst = true) and
flip it after processing the first part—so that segments like "0" or leading
empty segments are preserved and subsequent parts are wrapped as optional groups
exactly as intended.

In `@classes/models/FrmStyle.php`:
- Around line 338-345: The current logic uses rtrim($output, '()') which strips
all trailing parentheses and then appends one ), breaking nested groups; update
the normalization in the method using $output (in FrmStyle.php) to balance
parentheses instead: count occurrences of '(' and ')' in $output (e.g., using
substr_count) and if there are more ')' than '(' remove only the excess closing
parens from the end, if there are more '(' than ')' append the needed number of
')' to balance, and otherwise leave $output untouched; replace the rtrim(...)
plus str_contains(...) block with this parity-based trimming/append logic so
nested parentheses like calc((...)) remain valid.

In
`@phpcs-sniffs/Formidable/Sniffs/CodeAnalysis/FlipNestedIfToEarlyReturnSniff.php`:
- Around line 250-320: The applyFix method currently declares an unused
parameter $funcOpener; remove $funcOpener from the method signature of applyFix
in FlipNestedIfToEarlyReturnSniff and update all call sites to stop passing that
argument (search for applyFix(...) usages to update them). Ensure only the
function signature and callers are changed—no other logic needs modification—and
run static analysis/tests to confirm no remaining references to $funcOpener.

In `@stripe/helpers/FrmStrpLiteConnectHelper.php`:
- Around line 409-411: Remove the unreachable dead code after the unconditional
return true in the FrmStrpLiteConnectHelper class method that currently contains
both "return true;" and "return false;": delete the trailing "return false;" so
the method only returns once, and run tests to ensure behavior is unchanged;
reference the method inside FrmStrpLiteConnectHelper where the two return
statements appear to locate and fix this.
- Around line 588-598: The code references an undefined $password when Pro is
not installed; update the early-return branch that checks
FrmAppHelper::pro_is_installed() to return false directly (rather than
referencing $password), so change the block that currently does "return ! empty(
$password ) ? $password : false;" to simply "return false;". Keep the later
logic that calls FrmAddonsController::get_pro_license() and assigns $password
when a pro license exists, then return the non-empty $password as before.
- Around line 183-185: The current method in FrmStrpLiteConnectHelper.php
returns a literal string ('Response from server was not successful') before a
second return ($body->data ?? array()), making the latter unreachable; remove
the dead first return and instead ensure the function returns the parsed body
data (e.g., return $body->data ?? []), or if an error case is intended, convert
the early literal into a conditional branch that returns the error only when the
response is unsuccessful and otherwise returns $body->data; update the function
(the block containing the two return statements) accordingly.

🧹 Nitpick comments (3)

classes/helpers/FrmFormsHelper.php (1)

2125-2131: Simplify boolean return for readability.

You can return the truthiness directly to reduce noise.

♻️ Proposed tweak

-		$api = FrmProFormState::get_from_request( 'a', 0 );
-
-		return $api ? true : false;
+		$api = FrmProFormState::get_from_request( 'a', 0 );
+		return (bool) $api;

classes/models/FrmEntryValues.php (1)

316-326: LGTM! Early return pattern correctly applied.

The refactoring preserves the original logic while introducing an early exit when exclude_fields is empty, avoiding unnecessary computation. The logic flow is clear: include check → early return if no exclusions → exclusion check.

Optional simplification: Since we've established the early return pattern, lines 322-324 could be further simplified:

♻️ Optional: Simplify the exclusion check

 $is_excluded = $this->is_field_in_array( $field, $this->exclude_fields );

-if ( $is_excluded ) {
-	$is_included = false;
-}
-
-return $is_included;
+return ! $is_excluded && $is_included;

Or using another early return:

 $is_excluded = $this->is_field_in_array( $field, $this->exclude_fields );

-if ( $is_excluded ) {
-	$is_included = false;
+if ( $is_excluded ) {
+	return false;
 }

 return $is_included;

square/helpers/FrmSquareLiteConnectHelper.php (1)

200-210: Remove the now‑unreachable fallback return.

After the new error return on Line 208, the fallback return $body->data ?? array(); on Line 210 can never execute. Consider removing it to avoid confusion.

♻️ Proposed cleanup

-		return $body->data ?? array();

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Unreachable code detected.

Line 1242 return $result; is unreachable. All code paths before it either return or terminate:

• Line 1225: returns early for non-WP_Error
• Line 1230: returns for no_plugin_header error
• Line 1234: wp_send_json_error() terminates execution
• Lines 1237-1240: returns error array

This appears to be leftover from the refactoring. The line should be removed.

🐛 Proposed fix

 		return array(
 			'message' => $result->get_error_message(),
 			'success' => false,
 		);
-
-		return $result;
 	}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if ( ! is_wp_error( $result ) ) {
	return $result;
	}
	return array(
	'message' => $result->get_error_message(),
	'success' => false,
	);
	}
	// Ignore the invalid header message that shows with nested plugins.
	if ( $result->get_error_code() === 'no_plugin_header' ) {
	return $result;
	}
	if ( wp_doing_ajax() ) {
	wp_send_json_error( array( 'error' => $result->get_error_message() ) );
	}
	return array(
	'message' => $result->get_error_message(),
	'success' => false,
	);
	return $result;
	if ( ! is_wp_error( $result ) ) {
	return $result;
	}
	// Ignore the invalid header message that shows with nested plugins.
	if ( $result->get_error_code() === 'no_plugin_header' ) {
	return $result;
	}
	if ( wp_doing_ajax() ) {
	wp_send_json_error( array( 'error' => $result->get_error_message() ) );
	}
	return array(
	'message' => $result->get_error_message(),
	'success' => false,
	);
	}

🤖 Prompt for AI Agents

In `@classes/controllers/FrmAddonsController.php` around lines 1224 - 1242, Remove
the unreachable trailing "return $result;" leftover in FrmAddonsController.php:
inside the error handling block that checks is_wp_error($result) and handles the
'no_plugin_header' case, wp_send_json_error() call, and the final return of the
error array (which already returns), delete the final redundant return $result;
to eliminate dead code and avoid confusion; reference the $result variable,
get_error_code()/get_error_message() usage and the wp_send_json_error() call
when locating the redundant statement.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Potential error if array element lacks expected structure.

The code accesses $plugin['slug'] without verifying $plugin is an array with a 'slug' key. If any element is malformed, this will trigger a notice or error.

🛡️ Suggested defensive check

 		foreach ( $upsell as $k => $plugin ) {
-			if ( str_contains( $plugin['slug'], 'wpforms' ) ) {
+			if ( is_array( $plugin ) && isset( $plugin['slug'] ) && str_contains( $plugin['slug'], 'wpforms' ) ) {
 				unset( $upsell[ $k ] );
 			}
 		}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	foreach ( $upsell as $k => $plugin ) {
	if ( str_contains( $plugin['slug'], 'wpforms' ) ) {
	unset( $upsell[ $k ] );
	}
	foreach ( $upsell as $k => $plugin ) {
	if ( is_array( $plugin ) && isset( $plugin['slug'] ) && str_contains( $plugin['slug'], 'wpforms' ) ) {
	unset( $upsell[ $k ] );
	}

🤖 Prompt for AI Agents

In `@classes/controllers/FrmSMTPController.php` around lines 100 - 103, The loop
in FrmSMTPController that unsets upsell items assumes each $plugin is an array
with a 'slug' key and may throw notices; update the foreach over $upsell to
first validate the element (e.g., check is_array($plugin) and
isset($plugin['slug']) or array_key_exists('slug', $plugin')) before calling
str_contains on $plugin['slug'], and skip or unset malformed entries accordingly
to avoid errors when structure is unexpected.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Unreachable code: return false; on line 206 will never execute.

After the early return refactoring, the control flow always either:

1. Returns false at line 192 if $first_form_date is falsy, or
2. Returns $renewal_date at line 204 after computing and saving it.

Line 206 is dead code that should be removed.

Proposed fix

 	$options['renewal_date'] = $renewal_date;
 	self::save_options( $options );
 	return $renewal_date;
-
-	return false;
 }

🤖 Prompt for AI Agents

In `@classes/helpers/FrmEmailSummaryHelper.php` around lines 191 - 206, Remove the
unreachable trailing "return false;" after the computed renewal date is returned
in the method that computes renewal dates (the block using $first_form_date,
YEARLY_PERIOD, BEFORE_RENEWAL_PERIOD, self::get_date_from_today and
self::save_options). Specifically, locate the method in FrmEmailSummaryHelper
that returns $renewal_date (it already returns false earlier when
!$first_form_date), delete the final dead "return false;" so control flow is
clean and there are no unreachable statements.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Dead code on line 104 — unreachable return statement.

The early-return refactoring introduced dead code. Line 104 can never execute because line 102 always returns before it. Remove the unreachable return statement.

Proposed fix

 		if ( is_array( $tip['link'] ) ) {
 			$cta_link = FrmAppHelper::maybe_add_missing_utm( $cta_link, $tip['link'] );
 		}

 		return $cta_link;
-
-		return FrmAppHelper::admin_upgrade_link( $tip['link'], $tip['page'] );
 	}

🤖 Prompt for AI Agents

In `@classes/helpers/FrmTipsHelper.php` around lines 94 - 104, The final return in
FrmTipsHelper.php is unreachable due to the earlier return of $cta_link; remove
the dead statement "return FrmAppHelper::admin_upgrade_link( $tip['link'],
$tip['page'] );" so control and returns are consistent; locate the block
handling $cta_link and $tip (references: $cta_link, $tip,
FrmAppHelper::maybe_add_missing_utm and FrmAppHelper::admin_upgrade_link) and
delete the unreachable return to eliminate dead code.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Critical: Unreachable code and unused variable indicate incomplete refactor.

Two issues in this segment:

1. Line 297 is unreachable dead code — return false; can never execute because return $credentials; on line 295 always executes first when the early guard passes.

2. $stored_credentials is computed but never used — The code builds $stored_credentials with port appended and sensitive fields unset, but then returns $credentials instead. This means:

   • The sensitive fields (password, private_key, public_key) are still present in the returned value
   • All modifications to $stored_credentials are wasted

Was the intent to return $stored_credentials (sanitized credentials), or is there a missing update_option() call to persist it?

🐛 Proposed fix (assuming intent was to return sanitized credentials)

 		if ( ! ( $has_creds || $can_ssh ) ) {
 			return false;
 		}
 
 		$stored_credentials = $credentials;
 
 		if ( ! empty( $stored_credentials['port'] ) ) {
 			// Save port as part of hostname to simplify above code.
 			$stored_credentials['hostname'] .= ':' . $stored_credentials['port'];
 		}
 
 		unset( $stored_credentials['password'], $stored_credentials['port'], $stored_credentials['private_key'], $stored_credentials['public_key'] );
 
-		return $credentials;
-
-		return false;
+		return $credentials;

If $stored_credentials was meant to be saved or returned instead, please clarify the intended behavior.

🤖 Prompt for AI Agents

In `@classes/models/FrmCreateFile.php` around lines 282 - 297, The code builds a
sanitized $stored_credentials but returns $credentials and leaves an unreachable
"return false;"—fix by either (A) returning the sanitized $stored_credentials
instead of $credentials (so sensitive fields are removed and port is appended),
or (B) persisting $stored_credentials (e.g., via the existing persistence
mechanism used elsewhere) and then returning an appropriate success value;
remove the dead "return false;" after the return and ensure changes occur in the
FrmCreateFile method/block where $stored_credentials is created so the sanitized
credentials are actually used or saved.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Guard against breaking nested parentheses (Line 338-345).

rtrim( $output, '()' ) strips all trailing parentheses, then you append a single ). This collapses nested expressions like calc((100% - 10px)) into an unbalanced value (calc((100% - 10px)), which can corrupt valid CSS. If nested parentheses are valid inputs, this is a regression.

Consider skipping this normalization when multiple openings exist (or only trimming excess closings). For example:

🔧 Possible fix

-		// Remove extra braces from the end.
-		if ( ! in_array( substr( $output, -1 ), array( '(', ')' ), true ) ) {
-			return $output;
-		}
-
-		$output = rtrim( $output, '()' );
-
-		if ( str_contains( $output, '(' ) ) {
-			$output .= ')';
-		}
+		// Remove extra braces from the end.
+		if ( ! in_array( substr( $output, -1 ), array( '(', ')' ), true ) ) {
+			return $output;
+		}
+
+		// Avoid collapsing valid nested parentheses (e.g. calc((...))).
+		if ( substr_count( $output, '(' ) > 1 ) {
+			return $output;
+		}
+
+		$output = rtrim( $output, '()' );
+
+		if ( str_contains( $output, '(' ) ) {
+			$output .= ')';
+		}

🤖 Prompt for AI Agents

In `@classes/models/FrmStyle.php` around lines 338 - 345, The current logic uses
rtrim($output, '()') which strips all trailing parentheses and then appends one
), breaking nested groups; update the normalization in the method using $output
(in FrmStyle.php) to balance parentheses instead: count occurrences of '(' and
')' in $output (e.g., using substr_count) and if there are more ')' than '('
remove only the excess closing parens from the end, if there are more '(' than
')' append the needed number of ')' to balance, and otherwise leave $output
untouched; replace the rtrim(...) plus str_contains(...) block with this
parity-based trimming/append logic so nested parentheses like calc((...)) remain
valid.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Remove unused $funcOpener parameter.
The parameter is never read, which trips static analysis and adds dead API surface.

🧩 Proposed fix

-    if ( true === $fix ) {
-        $this->applyFix( $phpcsFile, $ifToken, $returnToken, $lastToken, $funcOpener );
-    }
+    if ( true === $fix ) {
+        $this->applyFix( $phpcsFile, $ifToken, $returnToken, $lastToken );
+    }

- private function applyFix( File $phpcsFile, $ifToken, $returnToken, $returnSemicolon, $funcOpener ) {
+ private function applyFix( File $phpcsFile, $ifToken, $returnToken, $returnSemicolon ) {

🧰 Tools

🪛 PHPMD (2.15.0)

250-250: Avoid unused parameters such as '$funcOpener'. (undefined)

(UnusedFormalParameter)

🤖 Prompt for AI Agents

In
`@phpcs-sniffs/Formidable/Sniffs/CodeAnalysis/FlipNestedIfToEarlyReturnSniff.php`
around lines 250 - 320, The applyFix method currently declares an unused
parameter $funcOpener; remove $funcOpener from the method signature of applyFix
in FlipNestedIfToEarlyReturnSniff and update all call sites to stop passing that
argument (search for applyFix(...) usages to update them). Ensure only the
function signature and callers are changed—no other logic needs modification—and
run static analysis/tests to confirm no remaining references to $funcOpener.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Unreachable dead code after return statement.

Line 185 is unreachable because line 183 always returns. This appears to be leftover code from the early-return refactoring that should be removed.

🐛 Proposed fix to remove unreachable code

 		return 'Response from server was not successful';
-
-		return $body->data ?? array();
 	}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	return 'Response from server was not successful';
	return $body->data ?? array();
	return 'Response from server was not successful';
	}

🤖 Prompt for AI Agents

In `@stripe/helpers/FrmStrpLiteConnectHelper.php` around lines 183 - 185, The
current method in FrmStrpLiteConnectHelper.php returns a literal string
('Response from server was not successful') before a second return ($body->data
?? array()), making the latter unreachable; remove the dead first return and
instead ensure the function returns the parsed body data (e.g., return
$body->data ?? []), or if an error case is intended, convert the early literal
into a conditional branch that returns the error only when the response is
unsuccessful and otherwise returns $body->data; update the function (the block
containing the two return statements) accordingly.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Unreachable dead code after return statement.

Line 411 is unreachable because line 409 always returns true. This leftover code from the refactoring should be removed.

🐛 Proposed fix to remove unreachable code

 		return true;
-
-		return false;
 	}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	return true;
	return false;
	return true;
	}

🤖 Prompt for AI Agents

In `@stripe/helpers/FrmStrpLiteConnectHelper.php` around lines 409 - 411, Remove
the unreachable dead code after the unconditional return true in the
FrmStrpLiteConnectHelper class method that currently contains both "return
true;" and "return false;": delete the trailing "return false;" so the method
only returns once, and run tests to ensure behavior is unchanged; reference the
method inside FrmStrpLiteConnectHelper where the two return statements appear to
locate and fix this.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Undefined variable $password causes broken logic.

When Pro is not installed, line 589 references $password which has never been defined. The variable is only assigned on line 595, which is unreachable when Pro is not installed.

Based on the method's purpose and docstring, when Pro is not installed, this should return false so the caller falls back to the UUID.

🐛 Proposed fix

 	private static function maybe_get_pro_license() {
 		if ( ! FrmAppHelper::pro_is_installed() ) {
-			return ! empty( $password ) ? $password : false;
+			return false;
 		}
 
 		$pro_license = FrmAddonsController::get_pro_license();
-
-		if ( $pro_license ) {
-			$password = $pro_license;
-		}
-
-		return ! empty( $password ) ? $password : false;
+		return $pro_license ? $pro_license : false;
 	}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if ( ! FrmAppHelper::pro_is_installed() ) {
	return ! empty( $password ) ? $password : false;
	}
	if ( $pro_license ) {
	$password = $pro_license;
	}
	$pro_license = FrmAddonsController::get_pro_license();
	if ( $pro_license ) {
	$password = $pro_license;
	}
	return ! empty( $password ) ? $password : false;
	private static function maybe_get_pro_license() {
	if ( ! FrmAppHelper::pro_is_installed() ) {
	return false;
	}
	$pro_license = FrmAddonsController::get_pro_license();
	return $pro_license ? $pro_license : false;
	}

🧰 Tools

🪛 GitHub Check: PHPStan

[failure] 589-589:
Variable $password in empty() is never defined.

---

[failure] 589-589:
Undefined variable: $password

🪛 GitHub Check: Psalm

[failure] 589-589: UndefinedVariable
stripe/helpers/FrmStrpLiteConnectHelper.php:589:20: UndefinedVariable: Cannot find referenced variable $password (see https://psalm.dev/024)

🤖 Prompt for AI Agents

In `@stripe/helpers/FrmStrpLiteConnectHelper.php` around lines 588 - 598, The code
references an undefined $password when Pro is not installed; update the
early-return branch that checks FrmAppHelper::pro_is_installed() to return false
directly (rather than referencing $password), so change the block that currently
does "return ! empty( $password ) ? $password : false;" to simply "return
false;". Keep the later logic that calls FrmAddonsController::get_pro_license()
and assigns $password when a pro license exists, then return the non-empty
$password as before.

[Crabcyborg]

This sniff isn't refactoring well and tying to reference undefined variables.

Closing for now.