Simula Security Telemetry for Wordfence

2.2.2

• Fixed incident log timestamps to prefer the original Wordfence hit timestamp over the export run time.
• Added bounded INFO, WARN, and CRITICAL levels to Wordfence incident log events.
• Added dashboard filtering by instance_name across metrics and incident logs.
• Renamed the plugin, admin page slug, option keys, cron hooks, and WP-CLI command to the Simula Security Telemetry naming.

2.1.0

• Added incident privacy controls for IPs, URL and referer query strings, referers, user agents, private/internal IP ranges, and retention notes.

2.0.0

• Changed the default fast export interval to 15 minutes.
• Added a slow collector for scan, two-factor, WordPress posture, and Wordfence posture metrics.
• Added WP-CLI export, status, and incident cursor commands.
• Added optional JSON Lines incident output.
• Added source freshness, Wordfence posture, and WordPress posture metrics.
• Replaced unbounded error message labels with bounded error type labels.
• Added a Grafana dashboard and sample Prometheus alert rules.

1.0.0

• Added configurable WP-Cron export intervals.
• Added per-metric-family enable and disable controls.
• Added incident log export for blocked Wordfence requests.
• Added incident cursor tracking and manual cursor reset for backfill.
• Added current exporter and incident state visibility in the admin UI.
• Added expanded Wordfence telemetry including failed logins, rate limiting, brute force activity, lockouts, two-factor coverage, scan findings, and top attack sources.