-
Notifications
You must be signed in to change notification settings - Fork 0
Home
Nick Hamze edited this page Apr 2, 2026
·
2 revisions
Bouncer is a plugin behavior firewall for WordPress. It watches what your plugins actually do—database access, outbound HTTP, hook registrations, and file changes—and compares that behavior to per-plugin manifests (behavioral contracts). Optional AI scanning analyzes structural fingerprints (not your source code) to help catch suspicious updates before they do damage.
- Database — Queries attributed to the plugin that ran them; unexpected table access is flagged.
- Outbound HTTP — Requests checked against declared domains per plugin.
- Hooks — Sensitive hook registrations monitored for anomalies.
- File integrity — Checksums for plugin files; unexpected changes trigger alerts.
- Installation — Requirements and first steps
- Concepts — Manifests, Monitor vs Enforce, severities
- Configuration — Settings overview
- WP-CLI — Command-line reference
- Narrative and positioning: README in the main repository
- WordPress.org listing and long description: see the plugin’s readme on WordPress.org when published
- Bugs and ideas: Issues
Bouncer is built by Regionally Famous.