# Changelog - BroodWeb Malware Scanner All notable changes to this plugin are documented here. --- ## [1.4.1] - 2026-06-04 ### Added - Added a private emergency recovery link for restoring quarantined files if wp-admin access is broken. - Added recovery-link storage in quarantine metadata and optional admin email notification after quarantine. --- ## [1.4.0] - 2026-05-01 ### Added - Added integrity monitor, login security, activity log, vulnerability review, and firewall-lite modules to the free plugin. - Added a Go Pro information tab explaining Pro features from inside the free plugin. - Added stronger WordPress core verification during scanning. ### Changed - Moved custom login URL controls into the Login Security tab. - Removed integrity-monitor controls from the general Settings tab because Integrity now has its own dedicated feature area. - WordPress core files are now verified against WordPress.org checksums before content heuristics run. - Official WordPress core files that match the official source are suppressed from scan results. - Changed core files and unexpected files inside WordPress core directories now receive clearer, higher-signal findings. - Improved scan report layout spacing around the WordPress Core Restore card. --- ## [1.3.2] - 2026-04-25 ### Changed - Version bump to stay in sync with BroodWeb Malware Scanner Pro 1.3.2. --- ## [1.3.1] - 2026-04-16 ### Changed - Version bump to stay in sync with BroodWeb Malware Scanner Pro 1.3.1. --- ## [1.3.0] - 2026-04-13 ### Changed - Rebranded plugin metadata for BroodWeb Malware Scanner. - Fixed the plugin text domain loading path for packaged installs. - Fixed integrity monitor scheduling so the active cron hook is not cleared on every request. - Cleaned the release package for WordPress.org submission. - Polished admin text and packaging metadata. ### Improved - Added a WordPress core checksum fast path to reduce false positives. - Improved JavaScript-aware pattern matching. - Improved minified and bundled JavaScript detection. - Reduced noisy external URL findings in JavaScript/CSS assets. - Reduced false positives from JavaScript variable function syntax. --- ## [1.2.0] - 2026-03-15 ### Added - Custom Login URL support. - Database scanner for selected WordPress tables. - Scheduled scans with email alerts. - File integrity monitor. - Quarantine system with restore and delete actions. - Whitelist support. - JSON and CSV scan report exports. ### Improved - Chunked AJAX scanning to reduce timeouts on large sites. - Optional entropy analysis for obfuscated payload detection. - Spam keyword detection in file content. --- ## [1.1.0] - 2026-01-20 ### Added - WordPress core checksum verification through WordPress.org APIs. - Optional WordPress.org plugin checksum verification. - Visitor cloaking behavior detection. - XOR-decoded JavaScript loader detection. - Late front-end script injection detection. ### Improved - Risk scoring with critical, high, medium, low, and info levels. - Minimum report score threshold to suppress low-signal findings. --- ## [1.0.0] - 2025-12-01 ### Added - Initial release. - Recursive file scanner with suspicious code patterns. - Suspicious filename pattern matching. - File permission checks. - Recent modification flag. - Risk score calculation and sortable results table. - Quarantine and restore actions. - Admin menu under Tools > BroodWeb Malware Scanner.