=== AegisSpamGuard ===
Contributors: aegisify
Donate link: https://aegisify.com/aegisspam
Tags: spam, antispam, firewall, security, bot-blocker
Requires at least: 6.8
Tested up to: 6.9
Requires PHP: 8.2
Stable tag: 1.1.10
License: GPLv2 or later
License URI: https://www.gnu.org/licenses/gpl-2.0.html

AegisSpam blocks spam and abusive requests early, adds allow/deny lists, and logs actions for lightweight WordPress protection.

== Description ==

**AegisSpam Guard** provides early-stage protection against spam, bots, and abusive traffic by inspecting requests *before WordPress templates are loaded*.  
It delivers **basic security and spam prevention** without slowing down your site.

### Key Capabilities
* Blocks or challenges malicious requests before WordPress initializes
* Prevents spam submissions across comments, forms, and REST endpoints
* Basic firewall rules designed for performance and safety
* Optional free installation registration for update and license services
* Clear logging for blocked or failed security checks

AegisSpam Guard is ideal for users who want **essential protection without complexity**.

== Features ==

* **Basic Firewall Protection**
  Intercepts suspicious requests before WordPress templates are executed.

* **Spam Detection Engine**
  Uses request heuristics and validation checks to reduce spam and abuse.

* **Early Request Filtering**
  Protects WordPress before themes, plugins, or templates load.

* **Allow / Deny Lists**
  Manually allow or block IPs and request patterns.

* **Security Logs**
  View blocked and challenged requests for auditing and troubleshooting.

* **Optional Free Installation Registration**
  Allows update and license services only with explicit admin consent.

== Installation ==

1. Upload the plugin files to `/wp-content/plugins/aegisspam`
2. Activate the plugin through the WordPress **Plugins** menu
3. Navigate to **AegisSpam Guard → Dashboard**
4. Configure basic security and firewall settings as needed

Troubleshooting and log location: /wp-content/uploads/aegisspamguard/aegisspam.log

== Frequently Asked Questions ==

= Does AegisSpam Guard slow down my site? =
No. All checks occur before WordPress templates load, minimizing overhead.

= Does this plugin send data externally? =
Only if you explicitly register the free installation. No data is sent automatically.

= Is this a full WAF? =
No. AegisSpam Guard provides **basic security and spam protection**. Advanced WAF features are available in AegisWAF.

= Can I see what was blocked? =
Yes. All blocks and challenges are logged in the Security Logs.

== Screenshots ==

1. Dashboard overview
2. Basic Security (Firewall) settings
3. Security logs
4. License & registration page

== Changelog ==
= 1.1.9 =
* Version alignment for WordPress.org submission
* Security hardening: improved sanitization/escaping/nonce handling (see plugin review notes)

= 1.1.6 =
* Improved license activation, deactivation, and status handling
* Fixed PHP fatal and parse errors in admin and core classes
* Improved free installation registration logic with explicit consent
* Added robust error logging for failed security and license actions
* Code cleanup and WordPress.org compliance improvements

= 1.1.5 =
* Improved spam detection logic
* UI and performance enhancements

== Upgrade Notice ==

= 1.1.6 =
Critical stability and compliance update. Recommended for all users.
