Linux 软件免费装
Banner图

WebKernelAI Security

开发者 aamirsahil
更新时间 2026年7月18日 21:25
PHP版本: 7.4 及以上
WordPress版本: 7.1
版权: GPLv2 or later
版权网址: 版权信息

标签

security wordpress security malware scanner csp technical seo

下载

1.0.5 1.0.1 1.0.4 1.0.3 1.0.2

详情介绍:

WebKernelAI is a Technical SEO and Website Security platform. The WebKernelAI Security plugin is a highly secure connector that links WordPress to the WebKernelAI dashboard for centralized security policy management, malware scanning, plugin auditing, user account management, file integrity monitoring, Web Application Firewall (WAF), and advanced site controls. This plugin is a read/execute connector only. It does not store or expose sensitive credentials. All communication is cryptographically signed using HMAC-SHA256 + Ed25519 asymmetric keys. Every request must pass multi-layer signature verification before any action is executed. There is no way for any third party to hijack the site token or impersonate the dashboard. Official Website: https://webkernelai.com Security Plugin: https://webkernelai.com/plugins/security/ Documentation: https://webkernelai.com/docs/security/ WebKernelAI helps developers, businesses, and production websites improve:

安装:

  1. Upload the plugin folder to /wp-content/plugins/
  2. Activate the plugin through WordPress admin
  3. Open Settings → WebKernelAI Security
  4. Generate a secure site token
  5. Connect your website with the WebKernelAI dashboard

常见问题:

Does the plugin send file contents to WebKernelAI?

No. The plugin sends integrity metadata and hashes only for supported scan modes.

Can someone hijack my site token?

No. Every REST request requires a valid HMAC-SHA256 signature derived from the shared pairing token plus Ed25519 asymmetric signature verification for critical operations. Without the private key, it is cryptographically impossible to forge a valid request.

Can I disable CSP or security headers?

Yes. Security headers and CSP policies can be managed through the WebKernelAI dashboard.

Can I manually customize CSP rules?

Yes. Advanced CSP editing and enforcement controls are supported.

Does the plugin support replay attack protection?

Yes. Signed requests include nonce replay protection and timestamp freshness validation.

Can I roll back security policy changes?

Yes. Security policy versioning supports rollback to previous configurations.

Does the plugin support Technical SEO workflows?

Yes. The plugin integrates directly with WebKernelAI Technical SEO Audit and metadata synchronization systems.

Can WebKernelAI update the plugin remotely?

Yes. Version 1.0.5 adds a secure signed remote update endpoint that allows the WebKernelAI dashboard to push plugin updates using WordPress's native upgrader, without requiring manual admin access.

Can WebKernelAI delete admin users from my site?

The plugin allows the dashboard to delete non-primary users. The first registered user (primary administrator) and the last remaining user on the site are permanently protected from remote deletion by server-side safety rules.

更新日志:

1.0.5 1.0.4 1.0.3 1.0.2 1.0.1 1.0.0