plugin-icon

Kistn API Client

제작자: Christian Doebler·
Pushes installed plugin and theme inventory to the Kistn API for vulnerability monitoring.
버전
1.0.0
최근 업데이트일
Jul 1, 2026

Collects installed plugins, themes, and WordPress core, then pushes inventory to your Kistn server for centralized vulnerability monitoring.

Push flow:

  1. Preflight — asks the server which slugs need a fresh advisory check and which are known-private.
  2. Hash check — skips push if inventory unchanged.
  3. WPScan lookup — queries the WPScan vulnerability database only for stale, non-private slugs.
  4. Push — sends packages, vulnerability findings, advisory snapshots, and any newly-discovered private slugs.

Private packages (those absent from the WPScan database) are tracked server-side so subsequent runs never waste WPScan quota on them. When the server later confirms a package is public, the project owner is notified.

Configuration via Settings Kistn, or via constants in wp-config.php:

define( ‘KISTN_BASE_URL’, ‘https://your-server.example.com’ ); define( ‘KISTN_PROJECT_ID’, ‘your-project-uuid’ ); define( ‘KISTN_TOKEN’, ‘your-api-token’ ); define( ‘KISTN_WPSCAN_TOKEN’, ‘your-wpscan-api-token’ ); // optional, enables vulnerability lookups

External services

This plugin can connect to WPScan API to obtain latest security information about your installation. Use of this feature is optional. To use this feature, you need a WPScan account and your own API token.

When the feature is used, this plugin sends information about installed WordPress core, plugins and themes to retrieve latest security advisories about your installed components. The service is provided by “WPScan”: https://wpscan.com/terms/, https://automattic.com/privacy/.

무료유료 요금제에서
설치하면 WordPress.com 서비스 약관서드파티 플러그인 약관에 동의하게 됩니다.
테스트된 버전
WordPress 7.0
이 플러그인은 다운로드할 수 있으며 에서 사용할 수 있습니다.