WordPress Plugin Auditor

WordPress Plugin Auditor MCP Connector for Claude

A+

This MCP gives your AI agent the ability to securely list and audit all installed plugins on a WordPress site. Perfect for security sweeps, maintenance reports, and identifying outdated or inactive plugins.

1 tools Official Updated Jun 28, 2026 Official Vinkius Partner

Managing dozens of WordPress sites for clients? Give your AI agent the power to audit their plugin ecosystem without ever giving out full admin passwords or risking manual database edits.

The Superpowers

  • Security Sweeps: Ask the AI to "Check if the client has any inactive plugins that should be deleted for security." It will instantly retrieve the list and status of every plugin.
  • Maintenance Reporting: Automatically generate a monthly report of all active plugins and their versions to send to your clients.
  • Zero-Trust Safety: This is a purely read-only tool. The AI can list the plugins, but it cannot deactivate, delete, or install new ones. It uses native WordPress Application Passwords for strict scoping.
plugin-managementsecurity-auditmaintenancevulnerability-scanningsite-health

1 tools expose this connector's capabilities to your AI agent.

audit_wordpress_plugins

It will return the name, version, author, and status (active/inactive) for each plugin. Very useful for security and maintenance checks. Lists all installed WordPress plugins along with their current status and version

See how to talk to your AI agent using WordPress Plugin Auditor.

Can you audit my WordPress site and tell me which plugins are currently inactive?

I've audited your site. You have 12 plugins installed, and 2 are currently inactive: 1. Hello Dolly (v1.7.2) 2. Classic Editor (v1.6.3) I recommend deleting these if you no longer use them to improve security.

No. This MCP only calls the `GET` endpoint for plugins. It cannot modify your site's plugin configuration.

Related Connectors