Professional WordPress Diagnostics —
Without Risk

A top-level 0–100 score that grades your site across its most impactful performance and safety dimensions — refreshed on demand via AJAX.

• PHP version (8.1+ recommended)
• Pending WordPress core & plugin updates
• Autoloaded options size (warn at 500 KB, critical at 800 KB)
• Orphaned postmeta, HTTPS enforcement, WP_DEBUG status

A quick-stats summary and module card grid so you can jump directly to the diagnostic area that needs attention.

• Clickable module cards for fast navigation
• At-a-glance site environment summary
• Fully mobile responsive across all pages

Read-only queries that surface potential database bottlenecks without modifying a single row.

• Table bloat — lists all tables exceeding 50 MB with exact sizes
• Autoloaded options with Top 10 / Show All toggle, color-coded by severity
• Orphaned postmeta, usermeta, and term relationships; revision bloat detection
• Options table audit — expired transients, oversized options, and active transient count

Maps the full footprint of every third-party plugin and theme on your WordPress installation.

• Custom database tables and cron jobs outside WordPress core
• REST API Map — every registered route, color-coded by HTTP method
• Full Hook Inspector — $wp_filter dump with dark-mode modal and pop-out view

Inspects every script and stylesheet WordPress has enqueued on the front end — with file-level size data.

• Separated JavaScript and CSS sections with individual file sizes
• Running totals per category so you can gauge payload at a glance
• Source attribution — identifies which plugin or theme registered each enqueued asset
• Graceful fallback when CDNs don't return Content-Length headers

Understand what WordPress background tasks are actually doing — and which ones aren't running at all.

• Standard WP-Cron jobs with next run timestamp and recurrence interval
• Overdue event detection — flags any event whose scheduled time has passed and not yet fired
• Action Scheduler jobs — pending, failed, and completed counts at a glance
• All jobs sorted chronologically by next scheduled run

Every autoloaded option is loaded into PHP memory on every single page request, regardless of whether it's needed.

• Total autoload size with tiered thresholds — warning at 500 KB, critical at 800 KB
• Plugin attribution — groups options by prefix to identify which plugin is responsible
• Full sorted list of individual offenders with per-item size and "How to Disable" guidance

Pre-flight compatibility checks for WordPress core upgrades — surface breaking changes before they break production.

• Deprecated Functions Inventory — every deprecated function, the version it was deprecated in, and its recommended replacement
• Breaking Hooks Detector — scans the live $wp_filter for hooks renamed or removed in recent WordPress releases
• Plugin Compatibility Matrix — calls the WordPress.org API to flag plugins not tested against your running WP version

Proactive alerts for things that will break your site in the near future — surfaced before they become emergencies.

• SSL Certificate Expiry — live certificate check, red alert when ≤15 days remain
• PHP end-of-life flags, stale plugin count, and expired API key / license inventory
• Update Risk Analysis — detects major version jumps (e.g. 1.x → 2.x) and flags high database migration risk

A complete technical profile of your hosting environment — surfaced directly inside WordPress admin.

• All critical php.ini directives: memory limit, max execution time, OPcache status, error display, and more
• Every relevant wp-config.php constant with its live value and a plain-language flag for any problems
• Recommended extension check, full loaded extension inventory (searchable), and complete database details

Parses your PHP error log and groups recurring issues by severity — so you stop scrolling through raw log files and start fixing what matters.

• Total error count, log file location, and top critical errors at a glance
• Grouped by severity — critical, performance, and informational — with occurrence counts
• Read-only: never writes, clears, or modifies your error log

Three read-only security inspections that surface privilege creep, tampered plugin files, and exposed REST endpoints — before an attacker finds them.

• User & Role Audit — every account grouped by role, with flags for non-admins holding dangerous capabilities like unfiltered_html or edit_plugins
• Plugin Checksum Verifier — compares installed plugin files against WordPress.org checksums to detect unauthorized modifications
• REST API Route Inspector — registered routes with permission callbacks, so you know exactly what's publicly accessible
• Capability Escalation Flags — surfaces user accounts with capabilities granted directly outside the standard role hierarchy

Inspects your media library and permalink layer for orphaned files, broken references, and stale rewrite rules that quietly degrade user experience.

• Media Library Health — detects missing physical files, unattached media, and attachments with broken metadata
• Rewrite Rules Inspector — active rules, stale state detection, and identification of plugin-added rules that may conflict
• Broken Reference Detection — scans post content for attachment IDs that no longer exist in the database
• Zero writes to the database or filesystem — purely observational diagnostics

Server-side proxy estimates for LCP, CLS, and INP — correlated directly with detected performance issues so you know what to fix first.

• Largest Contentful Paint, Cumulative Layout Shift, and Interaction to Next Paint estimates from server metrics
• Per-metric signals and actionable recommendations tied to your actual asset weight, TTFB, and external dependencies
• Color-coded Good / Needs Work / Poor ratings so you can prioritize improvements at a glance

Captures per-request execution time, peak memory, database query counts, and hook timelines — the data you need to pinpoint exactly where slowdowns originate.

• Live snapshot of the current request: execution time, memory delta, query count, and total query time
• Slow query detection with per-query timing when SAVEQUERIES is enabled
• Hook Timeline Visualisation — opt-in capture renders a bar chart of relative time spent per action and filter callback
• Page-level historical diagnostics captured passively on every frontend visit

Correlates PHP errors, slow queries, hook data, external dependencies, and plugin context to surface the most probable cause of each issue — not just symptoms.

• Cross-references data from multiple collectors to identify correlated root causes automatically
• Severity and confidence ratings on every finding — critical, performance, or informational
• Evidence trail per finding — shows exactly which data points from which modules contributed to each correlation
• Actionable summary: spend less time guessing and more time resolving the actual problem

Surfaces overlapping hooks, duplicate script enqueues, priority extremes, and competing plugin functionality — the silent causes of erratic site behavior.

• Hook conflict detection — identifies multiple plugins fighting over the same WordPress hook
• Duplicate asset detection — finds redundant JavaScript and CSS being loaded by different plugins
• Competing plugin analysis — flags when multiple active plugins serve the same function (e.g., two caching plugins)
• Priority extremes detection — flags callbacks registered at PHP_INT_MAX or PHP_INT_MIN, a hallmark of plugins overriding each other

Tracks every outbound HTTP request your WordPress site makes — because a slow or failing third-party API can silently cripple your page load times.

• Per-host summary with request count, average latency, max latency, and error rate
• Slow request threshold (500ms+) and failing request identification with status codes
• Blocking vs. non-blocking classification — understand which external calls are holding up page rendering
• Passive background collection — hooks into the WordPress HTTP API; no special testing mode required

Rolling snapshots of execution time, memory usage, and query counts over time — so you catch regressions the moment they start, not after clients report slowdowns.

• Automatic trend analysis: improving, stable, or regressing — tracked across every snapshot
• Historical snapshot table with execution time, peak memory, query count, PHP version, and active plugin count
• No personal data stored — only anonymous system-level performance metrics