PHP Security Checker
Here’s an interesting utility (that most WordPress users will have seen already since it’s mentioned on the news part of the dashboard: a PHP Security Checker.
I’m not sure how it works; it sounds like it just scans PHP scripts and returns references to possibly dodgy bits of code. Donncha O Caoimh of Holy Shmoly! raised a point that I never really thought about - the security of WordPress themes. However much the creators of WordPress like to point out that their template files don’t require knowledge of PHP, that doesn’t mean you can’t put PHP in them to do whatever you like… Maybe this utility will help.