WebKernelAI — technical SEO and security platformWebKernelAI home
WebKernelAI Security

Plugin Documentation

Learn how to install, configure, and secure your WordPress website using the WebKernelAI Security plugin.

Installation

1. Upload the plugin folder to your /wp-content/plugins/ directory or install via the WordPress Admin.

2. Activate the plugin through the 'Plugins' menu in WordPress.

3. Navigate to Settings → WebKernelAI Security.

4. Generate a secure site token to connect with your WebKernelAI dashboard.

Core Features

  • Secure token-authenticated REST API endpoints
  • Signed request validation using HMAC-SHA256
  • Nonce replay protection and timestamp freshness validation
  • File integrity inventory generation (SHA-256)
  • Centralized SEO metadata synchronization
  • Advanced Content Security Policy (CSP) management

Security Architecture

WebKernelAI Security implements a zero-trust architecture for WordPress communication:

// Request Headers Example

X-WK-Signature: [hmac_hash]

X-WK-Timestamp: [unix_timestamp]

X-WK-Nonce: [random_string]

Requests are validated for freshness, origin, and cryptographic signature before any operation is executed.

SEO & Technical Controls

Manage these Technical SEO elements directly from your dashboard:

Meta Title/Description
Canonical URLs
OpenGraph Metadata
Robots.txt management
LLMs.txt controls
Archive indexing

Latest Updates

v1.0.3

Improved Security Overview

Added REST route for security overview and theme update detection.

v1.0.2

Advanced HMAC Protection

Added HMAC request validation and production lock profiles.