← All checks

Plugin Stack Health Check

Find maintenance, ownership and recovery risks hidden in a growing WordPress plugin stack.

1. Do you have an owner and business purpose recorded for every active plugin?

Unknown ownership makes removal, renewal and incident decisions slow.

2. Are core, plugin and theme updates tested before production?

A staging copy and a written rollback point reduce update risk.

3. Have abandoned, unlisted and duplicated plugins been reviewed in the last quarter?

Include custom plugins and extensions installed from ZIP files.

4. Are licence ownership, renewal dates and vendor accounts documented?

Expired licences often block security updates when they are needed most.

5. Has a full restore been tested recently, not only a backup job?

A successful backup notification does not prove the archive can be restored.

6. Are unused plugins removed and administrator access limited?

Inactive code and broad admin access still increase the attack and maintenance surface.