{"id":327252,"date":"2026-07-06T20:24:10","date_gmt":"2026-07-06T20:24:10","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/website-scorecard\/"},"modified":"2026-07-06T20:23:36","modified_gmt":"2026-07-06T20:23:36","slug":"trustbeacon-auditor","status":"publish","type":"plugin","link":"https:\/\/vec.wordpress.org\/plugins\/trustbeacon-auditor\/","author":23516211,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"0.1.7","stable_tag":"0.1.7","tested":"7.0","requires":"6.0","requires_php":"7.4","requires_plugins":null,"header_name":"TrustBeacon Auditor","header_author":"Jason Michael Canon","header_description":"Audits basic public trust signals including DNS, SSL, security headers, SPF, DMARC, DKIM, CAA, DNSSEC, CDN indicators, and visible WordPress security plugin signals.","assets_banners_color":"","last_updated":"2026-07-06 20:23:36","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/itechguide.com\/trustbeacon-auditor\/","header_author_uri":"https:\/\/itechguide.com\/","rating":0,"author_block_rating":0,"active_installs":0,"downloads":37,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"0.1.7":{"tag":"0.1.7","author":"fiatlux5775","date":"2026-07-06 20:23:36"}},"upgrade_notice":[],"ratings":[],"assets_icons":{"icon-256x256.jpg":{"filename":"icon-256x256.jpg","revision":3598298,"resolution":"256x256","location":"assets","locale":"","width":256,"height":256}},"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":["0.1.7"],"block_files":[],"assets_screenshots":[],"screenshots":{"1":"Admin audit report with trust score, grade, findings, and recommendations."}},"plugin_section":[],"plugin_tags":[145801,14328,600,145798,1536],"plugin_category":[54],"plugin_contributors":[270394],"plugin_business_model":[],"class_list":["post-327252","plugin","type-plugin","status-publish","hentry","plugin_tags-dmarc","plugin_tags-dns","plugin_tags-security","plugin_tags-spf","plugin_tags-ssl","plugin_category-security-and-spam-protection","plugin_contributors-fiatlux5775","plugin_committers-fiatlux5775"],"banners":[],"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/trustbeacon-auditor\/assets\/icon-256x256.jpg?rev=3598298","icon_2x":"https:\/\/ps.w.org\/trustbeacon-auditor\/assets\/icon-256x256.jpg?rev=3598298","generated":false},"screenshots":[],"raw_content":"<!--section=description-->\n<p>TrustBeacon Auditor provides a plain-English report of basic public trust signals for the WordPress site where it is installed.<\/p>\n\n<p>The plugin checks public configuration signals such as:<\/p>\n\n<ul>\n<li>MX records<\/li>\n<li>SPF records<\/li>\n<li>DMARC records<\/li>\n<li>Common DKIM selectors<\/li>\n<li>SSL certificate availability<\/li>\n<li>HTTP security headers<\/li>\n<li>CAA records<\/li>\n<li>DNSSEC indicators when supported by the server<\/li>\n<li>Cloudflare indicators in public response headers<\/li>\n<li>Public security plugin indicators visible in page HTML<\/li>\n<\/ul>\n\n<p>The report includes a simple trust score, trust level, findings, recommendations, and business impact explanations.<\/p>\n\n<p>Important: TrustBeacon Auditor evaluates publicly visible trust indicators. It is not a security certification, penetration test, malware scanner, compliance audit, or guarantee that a website is secure.<\/p>\n\n<h3>External services<\/h3>\n\n<p>TrustBeacon Auditor performs remote HTTPS requests to websites selected\nby the site administrator in order to audit publicly available trust\nsignals.<\/p>\n\n<p>The plugin connects directly to the website being audited to inspect\ninformation such as:<\/p>\n\n<ul>\n<li>SSL certificate availability<\/li>\n<li>HTTP response headers<\/li>\n<li>Cloudflare detection<\/li>\n<li>Security plugin indicators<\/li>\n<\/ul>\n\n<p>Data transmitted:<\/p>\n\n<ul>\n<li>The domain name entered by the administrator.<\/li>\n<li>Standard HTTP request headers, including a User-Agent string.<\/li>\n<\/ul>\n\n<p>These requests occur only when an administrator initiates an audit.<\/p>\n\n<p>No personal visitor information is collected, stored, or transmitted.<\/p>\n\n<p>The plugin does not use any third-party commercial APIs.<\/p>\n\n<p>Privacy Policy:\nhttps:\/\/itechguide.com\/privacy-policy\/<\/p>\n\n<p>Terms of Use:\nhttps:\/\/itechguide.com\/terms-of-use\/<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Upload the plugin folder to the <code>\/wp-content\/plugins\/<\/code> directory, or install the plugin ZIP through the WordPress Plugins screen.<\/li>\n<li>Activate the plugin through the Plugins screen.<\/li>\n<li>Open the Trust Auditor page in the WordPress admin menu.<\/li>\n<li>Click Run Audit.<\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id=\"does%20this%20plugin%20scan%20private%20files%20or%20private%20server%20data%3F\"><h3>Does this plugin scan private files or private server data?<\/h3><\/dt>\n<dd><p>No. It checks public trust indicators for the installed site.<\/p><\/dd>\n<dt id=\"does%20a%20high%20score%20prove%20my%20site%20is%20secure%3F\"><h3>Does a high score prove my site is secure?<\/h3><\/dt>\n<dd><p>No. A high score means the checked public trust signals look good. It does not prove that the site is secure.<\/p><\/dd>\n<dt id=\"does%20a%20low%20score%20prove%20my%20site%20was%20hacked%3F\"><h3>Does a low score prove my site was hacked?<\/h3><\/dt>\n<dd><p>No. A low score means that one or more public trust signals may be missing, weak, or unavailable.<\/p><\/dd>\n<dt id=\"why%20does%20dkim%20detection%20say%20no%20common%20selector%20was%20found%3F\"><h3>Why does DKIM detection say no common selector was found?<\/h3><\/dt>\n<dd><p>DKIM selectors vary by mail provider. The plugin checks several common selectors, but some providers use custom selector names.<\/p><\/dd>\n<dt id=\"why%20is%20dnssec%20sometimes%20informational%3F\"><h3>Why is DNSSEC sometimes informational?<\/h3><\/dt>\n<dd><p>Some PHP environments cannot query DNSSEC records reliably. In that case, the plugin avoids punishing the score for a check it cannot verify.<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>0.1.3<\/h4>\n\n<ul>\n<li>Revised scoring so INFO findings are excluded and WARN findings receive partial credit instead of harsh zero-point treatment.<\/li>\n<li>Adjusted grade labels to better reflect public trust signals rather than full security certification.<\/li>\n<\/ul>\n\n<h4>0.1.1<\/h4>\n\n<ul>\n<li>Standardized plugin name, slug, text domain, prefix, contributor metadata, licensing, and WordPress.org readme format.<\/li>\n<li>Replaced mixed class prefixes with TBAUD-prefixed classes.<\/li>\n<li>Replaced raw HTTP header fetching with the WordPress HTTP API.<\/li>\n<li>Added safer DNS lookup wrapper and defensive handling for unavailable DNS constants.<\/li>\n<li>Added escaping, sanitization, nonce name, capability checks, and translatable admin strings.<\/li>\n<\/ul>\n\n<h4>0.1.0<\/h4>\n\n<ul>\n<li>Initial development version.<\/li>\n<\/ul>","raw_excerpt":"Audit public trust signals including DNS, SSL, security headers, SPF, DMARC, DKIM, CAA, DNSSEC, and CDN indicators.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/327252","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=327252"}],"author":[{"embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/fiatlux5775"}],"wp:attachment":[{"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=327252"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=327252"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=327252"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=327252"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=327252"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/vec.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=327252"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}