=== RestArmor Security ===
Contributors: rakib417
Tags: security, rest api, xml-rpc, disable rest api, protection
Requires at least: 5.8
Tested up to: 6.9
Requires PHP: 7.4
Stable tag: 2.3
License: GPLv2 or later
License URI: https://www.gnu.org/licenses/gpl-2.0.html

Advanced security suite. Blocks REST API, disables XML-RPC, prevents user enumeration, and secures endpoints.

== Description ==

RestArmor Security is a "Plug & Play" security suite that hardens your WordPress site instantly upon activation. No complex setup required.

**Features:**
* **Disable XML-RPC:** Blocks XML-RPC attacks and Pingbacks.
* **Block REST API:** Restricts API access to logged-in users only.
* **Stop User Enumeration:** Blocks bot scans for /?author=1.
* **Hide WP Version:** Removes version number from source code.
* **Admin Indicator:** Shows security status in the admin bar.

== Installation ==

1. Upload the plugin files to the `/wp-content/plugins/rest-armor-security` directory, or install the plugin through the WordPress plugins screen.
2. Activate the plugin through the 'Plugins' screen in WordPress.
3. Look for the "RestArmor: Active" shield in your admin toolbar.

== Changelog ==

= 2.3 =
* Security: Hardened User Enumeration check (replaced $_REQUEST with strict $_GET and sanitization).
* Fix: Updated Text Domain to match plugin slug (rest-armor-security).
* New: Added Admin Bar status indicator.

= 2.2 =
* Initial Release (Renamed to RestArmor Security).