[WordPress] 外掛分享： SiteSignal

Name: SiteSignal
Rating: 5 (2 reviews)
Author: sitesignal

10+

安裝啟用

★★★★★

5/5 分（2 則評價）

89 天前

最後更新

—

問題解決

WordPress 5.0+ PHP 7.4+ v1.0.0 上架：2025-10-28

內容目錄

1 內容簡介
2 外掛標籤
3 開發者團隊
4 原文外掛簡介
5 延伸相關外掛

內容簡介

總結：SiteSignal是一個強大的WordPress監控外掛程式，能提供全面的安全、效能和完整性洞察。

問題與答案：
1. SiteSignal外掛程式連接到哪些外部服務？
答：包括ip-api.com、api.wordpress.org和api.github.com。

2. SiteSignal外掛程式的主要功能有哪些？
答：包括登錄監控、WordPress核心狀態監控、插件監控、主題監控、文件完整性檢查、WooCommerce整合、REST API支援和同步功能。

3. SiteSignal外掛程式提供哪些安全功能？
答：包括API金鑰驗證、REST API端點的安全驗證、輸入檢查與驗證、文件完整性監控和登錄嘗試追踪。

4. SiteSignal外掛程式的REST API端點有哪些？
答：包括網站信息、登錄嘗試記錄、核心版本狀態、活動插件信息、主題信息、文件完整性檢查結果和WooCommerce訂單。

5. SiteSignal外掛程式的使用案例有哪些？
答：包括網站安全監控、維護管理、文件完整性驗證、外部監控整合和WooCommerce商店監控。

6. SiteSignal外掛程式的系統要求是什麼？
答：要求WordPress 5.0或更高版本，PHP 7.4或更高版本，並建議安裝WooCommerce外掛程式。

外掛標籤

admin login security integrity monitoring

開發者團隊

👤 sitesignal

⬇ 下載最新版 (v1.0.0) 或搜尋安裝

① 下載 ZIP → 後台「外掛 › 安裝外掛 › 上傳外掛」
② 後台搜尋「SiteSignal」→ 直接安裝（推薦）

原文外掛簡介

SiteSignal is an AI Visibility & Website Health Platform designed to help organisations understand how their brand is represented by AI systems and maintain the technical clarity, stability, and reliability those systems rely on.
SiteSignal unifies five core areas:
– AI Visibility — how often and how accurately AI systems mention your brand
– AI Visibility Strategy — insights and recommendations for improving visibility
– Website Health — foundational structural and technical signals
– Website Performance — speed, stability, and reliability
– Technical Audits — continuous assessment of clarity, structure, metadata, and discoverability factors
The SiteSignal WordPress plugin acts as a secure data connection between your website and the SiteSignal platform. It collects verified technical, structural, security, and performance signals from your site and transmits them to your SiteSignal dashboard for continuous analysis and monitoring.
Through this plugin, SiteSignal is able to:
– Monitor foundational website health signals
– Track performance stability and availability
– Validate structural clarity and technical integrity
– Support continuous technical audits
– Ensure accurate and consistent data for AI visibility analysis
The plugin does not perform optimisation, marketing actions, or visibility manipulation. Its role is strictly to provide reliable technical data that powers analysis inside the SiteSignal platform.
External Services: This plugin connects to external services including ip-api.com for IP geolocation, api.wordpress.org for WordPress core information, and api.github.com for enhanced plugin analysis. See the “External Services” section below for complete details about data transmission and privacy.
Key Features

Login Monitoring – Track successful and failed login attempts with detailed information including IP addresses, user agents, and geographic data
WordPress Core Status – Monitor WordPress version and check for available updates
Plugin Monitoring – Track active plugins, their versions, and available updates with intermediate version information
Theme Monitoring – Monitor active theme status and available updates
File Integrity Checking – Verify WordPress core files against official checksums to detect unauthorized modifications
WooCommerce Integration – Monitor recent orders when WooCommerce is active
REST API Support – External access to monitoring data via secure API endpoints
Sync Functionality – Incremental data synchronization with external monitoring systems

Security Features

API key verification with external monitoring systems
Secure authentication for REST API endpoints
Input sanitization and validation
File integrity monitoring with checksum verification
Login attempt tracking with geographic information
Nonce protection for form submissions

REST API Endpoints
When an API key is configured, the following endpoints are available:

/wp-site-monitor/v1/site-info – General site information
/wp-site-monitor/v1/logins – Login attempt logs
/wp-site-monitor/v1/logins/sync – Incremental login data sync
/wp-site-monitor/v1/core-version – WordPress core version status
/wp-site-monitor/v1/plugins – Active plugins information
/wp-site-monitor/v1/themes – Theme information
/wp-site-monitor/v1/integrity – File integrity check results
/wp-site-monitor/v1/orders – WooCommerce orders (if WooCommerce is active)

Use Cases

Website Security Monitoring – Track login attempts and detect suspicious activity
Maintenance Management – Monitor WordPress core, plugin, and theme updates across multiple sites
File Integrity Verification – Detect unauthorized changes to WordPress core files
External Monitoring Integration – Connect with external monitoring systems via REST API
WooCommerce Store Monitoring – Keep track of recent orders and store activity

Requirements

WordPress 5.0 or higher
PHP 7.4 or higher
Optional: WooCommerce plugin for order monitoring features

External Services
This plugin connects to the following external services to provide its functionality:
IP Geolocation Service (ip-api.com)

Purpose: Obtain geographical location information for login monitoring and security analysis
Data sent: User’s IP address only
When: Each time a user logs in to your WordPress site (if geolocation is enabled)
Frequency: Once per login attempt
Data retention: This plugin does not store data from this service permanently
Privacy Policy: http://ip-api.com/docs/legal
Terms of Service: http://ip-api.com/docs/legal
User Control: Site administrators can disable geolocation in plugin settings

WordPress Core API (api.wordpress.org)

Purpose: Check for available WordPress core updates, plugin information, and core file checksums
Data sent: Current WordPress version, site URL (as User-Agent header), plugin slugs, and locale information
When: During scheduled update checks and plugin analysis (typically daily)
Frequency: Multiple times per day during normal plugin operation
Data retention: This plugin does not store data from this service permanently
Privacy Policy: https://wordpress.org/about/privacy/
Terms of Service: https://wordpress.org/about/gpl/
User Control: This is essential for plugin functionality and cannot be disabled

GitHub API (api.github.com)

Purpose: Analyze plugin update information from GitHub repositories for enhanced update type detection
Data sent: Repository information and release data requests
When: During plugin update analysis (when available)
Frequency: During plugin update checks (typically daily)
Data retention: This plugin caches repository information temporarily (24 hours)
Privacy Policy: https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement
Terms of Service: https://docs.github.com/en/site-policy/github-terms/github-terms-of-service
User Control: This is part of the enhanced plugin analysis feature

Data Handling and Privacy

Local Storage: All monitoring data is stored locally in your WordPress database
No Personal Data: The plugin does not collect personal user information beyond what’s necessary for monitoring
Data Retention: Login logs are automatically deleted based on your configured retention period (default: 90 days)
External Transmission: Data is only sent to external services as described above
User Rights: Site administrators can clear all plugin data at any time

GDPR Compliance
This plugin respects user privacy and GDPR guidelines:
* IP address geolocation is optional and can be disabled
* Login monitoring data is stored locally and automatically purged
* No personal data is transmitted to external services beyond IP addresses for geolocation
* Users can request deletion of their monitoring data through the site administrator
Disabling External Services

Geolocation: Can be disabled in plugin settings (Settings > Geolocation)
WordPress API: Cannot be disabled as it’s essential for core functionality
GitHub API: Used automatically when available, no separate disable option

Privacy Policy
Data Collection
SiteSignal collects and stores the following information locally in your WordPress database:

Login Attempts: Usernames, IP addresses, user agents, timestamps, and login success/failure status
System Information: WordPress version, plugin/theme information, file checksums
WooCommerce Data: Order information if WooCommerce is active (order IDs, customer names, amounts, status)

External Services
This plugin connects to external services as detailed in the “External Services” section above:
* IP geolocation via ip-api.com (optional)
* WordPress core information via api.wordpress.org (required)
* GitHub repository analysis via api.github.com (automatic)
Data Retention

Login logs are automatically deleted based on your configured retention period (default: 90 days)
System monitoring data is refreshed during each check
External service data is not stored permanently

User Rights

Site administrators can clear all plugin data at any time
Geolocation can be disabled in plugin settings
Users can request deletion of their login attempt data through the site administrator

GDPR Compliance
This plugin respects user privacy and follows GDPR guidelines. No personal data is transmitted to external services except IP addresses for optional geolocation purposes.

延伸相關外掛

文章

文章

內容簡介

外掛標籤

開發者團隊

原文外掛簡介

延伸相關外掛

Apply Filters