lightspeeddevelopment / lsx

comment.php

<?php
/**
 * The template for displaying Comment.
 *
 * @package lsx
 */

if ( isset( $GLOBALS['comment_depth'] ) ) {
	$depth = intval( $GLOBALS['comment_depth'] );
} else {
	$depth = 1;
}

$max_depth = intval( get_option( 'thread_comments_depth' ) );

echo get_avatar( $comment, '128' );

Are you sure get_avatar($comment, '128') of type false|string can be used in echo?

?>
<div class="media-body">
	<h4 class="media-heading"><?php echo get_comment_author_link(); ?></h4>

	<time datetime="<?php echo comment_date( 'c' ); ?>">

Are you sure the usage of comment_date('c') is correct as it seems to always return null.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'comment_date'.

		<a href="<?php echo esc_url( get_comment_link( $comment->comment_ID ) ); ?>">
			<?php
				printf(
					/* Translators: 1: post date, 2: post time */
					esc_html__( '%1$s on %2$s', 'lsx' ),
					get_comment_date(),

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'get_comment_date'.

					get_comment_time()

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'get_comment_time'.

				);
				?>
		</a>
	</time>

	<?php edit_comment_link( esc_html__( '(Edit)', 'lsx' ), '', '' ); ?>

	<?php if ( ! $comment->comment_approved ) : ?>
		<div class="alert alert-info">
			<?php esc_html_e( 'Your comment is awaiting moderation.', 'lsx' ); ?>
		</div>
	<?php endif; ?>

<?php
comment_text();

comment_reply_link(
	array(
		'depth'     => $depth,
		'max_depth' => $max_depth,
	)
);