FleetWP Docs
Platform

Security & performance

Automated hardening audits, performance sampling, broken-link scans, and PHP error tracking.

FleetWP continuously inspects each connected site and surfaces issues on the per-site diagnostic pages and fleet rollups.

Security audit

A scan cron runs the connector's hardening audit (a set of checks covering common WordPress hardening: file permissions, exposed files, admin config, TLS, and more). Each failing check becomes a security finding keyed by its problem label; when a later scan finds the issue resolved, the finding is marked fixed automatically.

New high or critical findings raise a security alert to your enabled channels.

Performance

The same scan records a performance sample for every connected site — loopback timing, memory, and database query counts — so you can watch trends and spot regressions on the site's Performance page.

Run a broken-link scan from the site's Broken Links page. The connector probes links using an SSRF-safe request (TLS verification on) and reports any that are broken. New broken links raise a links alert.

PHP errors

The signed heartbeat ingests recent PHP errors, deduplicated by level and message so a repeating error doesn't flood the list. New fatal or parse errors raise an errors alert.

Every one of these features can be toggled per site on the site's Settings page, and disabled features are skipped by the crons — so you only pay attention to what you've opted into.

On this page