外掛標籤
開發者團隊
原文外掛簡介
LukaCodes Comment Shield is a lightweight, no-bloat plugin that gives you three independent tools to protect your WordPress comment section from spam:
Disable Website Field — Removes the URL/website field from the comment form. Works with all themes, including those that hardcode the field (CSS fallback included).
Strip Links from Comments — Automatically removes all hyperlinks from comment content — both on display and before saving to the database. Spammers get zero benefit from posting links.
reCAPTCHA v3 — Adds Google’s invisible bot-score protection to your comment form. No checkbox, no puzzle, no friction for real users. Bots are silently blocked server-side.
All three features are independent — enable only what you need.
Why Comment Shield?
Most anti-spam plugins are heavy, require accounts, or add ugly CAPTCHAs. LukaCodes Comment Shield is different:
~25 KB total — no external libraries, no jQuery dependency
Settings page with live key testing — verify your reCAPTCHA keys before enabling
Link stripping preview — paste any comment text and see exactly what gets removed
Graceful fallback: if Google’s API is unreachable, comments are held for moderation (never lost)
Trusted users (administrators) bypass reCAPTCHA automatically
WP Coding Standards compliant — fully escaped output, nonce-protected AJAX
reCAPTCHA v3 — How it works
When a visitor submits a comment, our JavaScript silently requests a score token from Google. The token is sent with the comment and verified server-side against your minimum score threshold (configurable from 0.1 to 1.0). No user interaction required.
Third-Party Services
This plugin optionally uses Google reCAPTCHA v3, a third-party service provided by Google LLC.
What it does: Detects bots and spam on your comment form without user interaction.
When data is sent: Only when reCAPTCHA v3 is enabled in settings. A token is sent to Google’s API (https://www.google.com/recaptcha/api/siteverify) when a visitor submits a comment.
What data is sent: The visitor’s IP address and a reCAPTCHA token.
Google Privacy Policy: https://policies.google.com/privacy
Google Terms of Service: https://policies.google.com/terms
This service is entirely optional. If you do not enter API keys or enable reCAPTCHA, no data is sent to Google.
