# TechDex WP Toolkit Capabilities

TechDex WP Toolkit for AI(TM) gives AI agents and human operators a structured execution layer for live WordPress work.

The toolkit is designed for inspect-first WordPress operations. It is not a general-purpose WordPress admin replacement, a browser automation script, a theme-development package, or a server-management tool.

## Operating Intent

TechDex WP Toolkit exists to make WordPress work more controlled and repeatable when an AI agent is involved.

Instead of asking an agent to click around wp-admin or improvise REST calls, the toolkit gives it a known command surface for supported actions. The normal workflow is:

1. Inspect the site.
2. Review the exact object that may change.
3. Make the smallest useful update.
4. Review the result.
5. Keep local history for supported changes.

## Standard Licensed Edition

The standard licensed edition is the core commercial toolkit. It is built for common WordPress content, structure, commerce, comment, and redirect work.

### Site And Context

- Verify WordPress authentication.
- Inspect the live site before making changes.
- Resolve limited project context when project files are available.
- Keep local history for supported mutating actions.
- Activate, validate, inspect, and deactivate a TechDex WP Toolkit license.

### Posts And Pages

- List posts and pages.
- Fetch one post or page before editing.
- Create posts from direct input, markdown files, HTML files, or structured JSON.
- Create pages from direct input, markdown files, or HTML files.
- Update supported post and page fields.
- Move posts or pages back to draft.
- Move posts or pages to trash.
- Permanently delete posts or pages when that is explicitly intended.

### Media

- List media items.
- Fetch one media item.
- Upload media.
- Update media metadata such as title, caption, description, and alt text.
- Assign uploaded or existing media where supported by the relevant content workflow.

### Categories, Tags, And Navigation

- List categories and tags.
- Create and update categories.
- Create and update tags.
- Inspect menus and exposed navigation objects.
- Fetch one navigation item.
- Update exposed navigation items where the target site supports REST updates.

### Widgets And Sidebars

- List widgets.
- Fetch one widget.
- Create supported widgets.
- Update supported widgets.
- Delete or move supported widgets to inactive widgets.
- List sidebars.
- Fetch one sidebar.
- Update sidebar widget order where WordPress exposes the write path.

### Comments

- List comments for moderation.
- Fetch one comment.
- Update one comment.
- Approve comments.
- Move comments to hold/pending.
- Mark comments as spam.
- Move comments to trash.
- Delete comments when needed.
- Check comment author URLs and follow redirects.
- Audit comments for post relevance, suspicious links, and spam-review signals.
- Optionally apply internal-link-only approvals during a comment audit.

### WooCommerce

- Summarize WooCommerce product availability.
- List products.
- Fetch one product.
- Create products.
- Update products.
- Assign product categories, tags, and brands.
- Set product status, slug, excerpt, featured media, virtual status, and downloadable status where supported.
- Configure variable pricing options for a WooCommerce product.

### Redirection

- Summarize Redirection plugin availability, groups, counts, and health.
- Inspect Redirection status and settings.
- List redirect rules.
- List redirect logs.
- List 404 logs.
- Audit 404 logs grouped by URL for redirect-candidate review.
- List Redirection groups.
- Trace one URL or path through redirect rules, redirect logs, and 404 logs.
- Create redirect rules.
- Fetch one redirect rule.
- Update redirect rules.
- Enable or disable redirect rules.
- Reset redirect hit counts.
- Delete redirect rules when explicitly intended.

## License Free Edition

The License Free edition is the premium edition. It includes everything in the standard licensed edition, removes activation requirements, and adds premium operator workflows.

Most premium workflows use the included TechDex Toolkit Companion plugin because WordPress or third-party plugins do not always expose a clean application-password REST path for those operations.

### Premium Settings And CSS

- Inspect supported WordPress settings.
- Update supported WordPress settings.
- Inspect live Additional CSS.
- Back up live Additional CSS.
- Diff a local CSS file against live Additional CSS.
- Update Additional CSS through the companion plugin.
- List Additional CSS backups exposed by the companion plugin.
- Restore an Additional CSS backup.

### Error Logs

- Read recent WordPress/PHP error log lines through the companion plugin.
- Read a bounded number of lines from known log sources.
- Inspect all discovered supported log sources in JSON mode.
- Avoid arbitrary file-path access.

### Comment Spam Control

- Inspect WordPress-native moderation keys and disallowed comment keys.
- List built-in spam-control templates.
- Preview recommended spam-control additions.
- Apply recommended spam-control additions when deliberately approved.
- Preserve existing site-specific entries by default.

### Writing Ping List

- Inspect the WordPress Writing update-services ping list.
- List built-in writing-ping templates.
- Preview recommended ping-list additions.
- Apply recommended ping-list additions when deliberately approved.
- Preserve existing site-specific entries by default.

### User Hygiene

- List users when the connected account has the required capability.
- Fetch one user.
- Audit users for account-hygiene signals.
- Check suspicious or malformed email patterns.
- Optionally check whether email domains resolve.
- Reset one user's password only after confirming the target login.
- Remove all roles from one user only after confirming the target login.

The toolkit does not create application passwords and does not expose broad user-deletion workflows.

### Wordfence

- Summarize Wordfence availability, WAF state, counts, and safe settings.
- Read a narrow firewall, brute-force, and rate-limit option set.
- Audit Wordfence options, blocks, security events, and blocked traffic.
- List built-in Wordfence security templates.
- Preview or apply safe Wordfence templates.
- Update only safe, allowlisted Wordfence options.
- List active Wordfence blocks.
- Create one explicit IP block.
- Delete one Wordfence block.
- Make one temporary block permanent.
- List recent live traffic, with blocked traffic as the default focus.
- List recent security events.

The Wordfence surface is intentionally narrow. It does not expose disabling the WAF, scan repair, license management, country blocking, raw database edits, or broad plugin-wide controls.

## What The Toolkit Does Not Do

- It does not replace human review.
- It does not make every WordPress action safe.
- It does not manage hosting accounts or servers.
- It does not perform direct database edits.
- It does not use browser automation as the primary execution path.
- It does not create application passwords.
- It does not support arbitrary raw REST mutations outside the command surface.
- It does not turn the delivered package into a source-code customization framework.

## Rule Of Thumb

If the toolkit exposes a command, treat it as the supported path.

If a capability is missing, request a toolkit update instead of asking an agent to patch the package, invent raw REST calls, or work around the guardrails.