wpsecscan is an open-source CLI tool for defensive security scanning of WordPress sites. It performs over 200 checks, aggregates CVEs, supports AI-assisted remediation, and covers multiple compliance frameworks, making it valuable for security professionals and administrators.
wpsecscan is a Security & compliance platforms product. It focuses on automating comprehensive security scanning and remediation for WordPress sites. It is built as an open-source project for security professionals and WordPress administrators. wpsecscan is open source under the AGPL-3.0 license. It runs on the command line, and it can be self-hosted.
Behind wpsecscan is Bryan Flowers, and the product first shipped in 2026. Development happens publicly on GitHub with 238 commits in the last 90 days. PulseGate's similarity index finds few close equivalents — wpsecscan occupies a relatively distinct niche. Key capabilities include wordPress scanning, CVE aggregation, and AI remediation.
Latest indexed changes and source events
Other apps tracked under the same category.