Site Security Auditor

Site Security Auditor helps admins spot risks from outdated/inactive plugins, monitor file changes in plugins/themes, and review hardening settings like DISALLOW_FILE_EDIT or FORCE_SSL_ADMIN. It uses only WordPress core APIs and stores data in options.

Changeling

= 1.0 =
* Add full dashboard sections and escaping
* Fix text domain packaging

1. Upload the ZIP via Plugins → Add New → Upload Plugin
2. Activate
3. Go to Tools → Security Audit
4. Create/Update Baseline → Scan Now