WebKernelAI Security

WebKernelAI Security connects your WordPress site to the WebKernelAI platform.

The plugin can:

• expose secure token-authenticated REST endpoints for WebKernelAI dashboard actions
• enforce signed requests with HMAC + timestamp + nonce replay protection
• restrict API access to trusted WebKernelAI hosts
• apply rate limiting for authentication attempts and security reporting endpoints
• provide file hash inventory for integrity checks (hashes only, no file contents)
• sync SEO metadata (title, description, canonical, OG fields)
• apply security header and CSP configuration
• support advanced CSP controls including manual policy editing for advanced users
• apply robots.txt and llms.txt controls
• apply random-page and taxonomy archive controls
• enable granular per-endpoint feature controls for safer operations
• support production lock profile and advanced security policy rollback history

All analysis and recommendations run in WebKernelAI cloud.

External services

This plugin connects to WebKernelAI cloud services.

It sends data to:

• https://webkernelai.com
• your configured WebKernelAI dashboard/backend endpoint

What data is sent:

• site connection data (site URL, API endpoint, token-authenticated requests)
• file integrity data (path, SHA-256 hash, file size, modification time)
• SEO sync payloads (IDs and configured metadata fields)
• security/text control payloads (selected options and policy text)

When data is sent:

• when an administrator connects the site from WebKernelAI dashboard
• when dashboard actions request scans, sync, or configuration apply operations

Service links:

• Terms of Service: https://webkernelai.com/terms
• Privacy Policy: https://webkernelai.com/privacy